diff --git a/RELEASING.md b/RELEASING.md
index 5497205b5..0acafdcb2 100644
--- a/RELEASING.md
+++ b/RELEASING.md
@@ -46,17 +46,17 @@
5. Create an annotated git tag and push it to the `upstream`. This will trigger the [`.github/workflows/release.yaml`] workflow
```
- git tag -v0.15.0-rc -m 'Release v0.15.0-rc'
- git push upstream v0.15.0-rc
+ git tag -v0.15.0 -m 'Release v0.15.0'
+ git push upstream v0.15.0
```
6. Verify that the `release` workflow has built and published the following artifacts
1. Trivy-operator container images published to DockerHub
- `docker.io/aquasec/trivy-operator:0.15.0-rc`
+ `docker.io/aquasec/trivy-operator:0.15.0`
2. Trivy-operator container images published to Amazon ECR Public Gallery
- `public.ecr.aws/aquasecurity/trivy-operator:0.15.0-rc`
+ `public.ecr.aws/aquasecurity/trivy-operator:0.15.0`
2. Trivy-operator container images published to GitHub Container Registry
- `ghcr.io/aquasecurity/trivy-operator:0.15.0-rc`
+ `ghcr.io/aquasecurity/trivy-operator:0.15.0`
7. Publish the Helm chart by manually triggering the [`.github/workflows/publish-helm-chart.yaml`] workflow
8. Publish docs on by manually triggering the [`.github/workflows/publish-docs.yaml`] workflow
9. Submit trivy-operator Operator to OperatorHub and ArtifactHUB by opening the PR to the repository.
diff --git a/deploy/helm/Chart.yaml b/deploy/helm/Chart.yaml
index 18138a7b7..8489cee49 100644
--- a/deploy/helm/Chart.yaml
+++ b/deploy/helm/Chart.yaml
@@ -6,12 +6,12 @@ type: application
# This is the chart version. This version number should be incremented each time you make changes
# to the chart and its templates, including the app version.
# Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 0.15.0-rc
+version: 0.15.0
# This is the version number of the application being deployed. This version number should be
# incremented each time you make changes to the application. Versions are not expected to
# follow Semantic Versioning. They should reflect the version the application is using.
-appVersion: 0.15.0-rc
+appVersion: 0.15.0
# kubeVersion: A SemVer range of compatible Kubernetes versions (optional)
diff --git a/deploy/helm/README.md b/deploy/helm/README.md
index cff21fe0a..f8d8da49a 100644
--- a/deploy/helm/README.md
+++ b/deploy/helm/README.md
@@ -1,6 +1,6 @@
# trivy-operator
-  
+  
Keeps security report resources updated
diff --git a/deploy/helm/templates/specs/cis-1.23.yaml b/deploy/helm/templates/specs/cis-1.23.yaml
index 040a18316..5d5becaf4 100644
--- a/deploy/helm/templates/specs/cis-1.23.yaml
+++ b/deploy/helm/templates/specs/cis-1.23.yaml
@@ -6,7 +6,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: 0.15.0-rc
+ app.kubernetes.io/version: 0.15.0
app.kubernetes.io/managed-by: kubectl
spec:
cron: {{ .Values.compliance.cron | quote}}
diff --git a/deploy/helm/templates/specs/nsa-1.0.yaml b/deploy/helm/templates/specs/nsa-1.0.yaml
index c5e28a04b..db8e18dff 100644
--- a/deploy/helm/templates/specs/nsa-1.0.yaml
+++ b/deploy/helm/templates/specs/nsa-1.0.yaml
@@ -6,7 +6,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
spec:
cron: {{ .Values.compliance.cron | quote }}
diff --git a/deploy/helm/templates/specs/pss-baseline.yaml b/deploy/helm/templates/specs/pss-baseline.yaml
index ff7a110e6..1d3fdc71a 100644
--- a/deploy/helm/templates/specs/pss-baseline.yaml
+++ b/deploy/helm/templates/specs/pss-baseline.yaml
@@ -6,7 +6,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: 0.15.0-rc
+ app.kubernetes.io/version: 0.15.0
app.kubernetes.io/managed-by: kubectl
spec:
cron: {{ .Values.compliance.cron | quote }}
diff --git a/deploy/helm/templates/specs/pss-restricted.yaml b/deploy/helm/templates/specs/pss-restricted.yaml
index ec44936ac..bd0c9f102 100644
--- a/deploy/helm/templates/specs/pss-restricted.yaml
+++ b/deploy/helm/templates/specs/pss-restricted.yaml
@@ -6,7 +6,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: 0.15.0-rc
+ app.kubernetes.io/version: 0.15.0
app.kubernetes.io/managed-by: kubectl
spec:
cron: {{ .Values.compliance.cron | quote }}
diff --git a/deploy/static/namespace.yaml b/deploy/static/namespace.yaml
index 9f259314a..17e6a19eb 100644
--- a/deploy/static/namespace.yaml
+++ b/deploy/static/namespace.yaml
@@ -6,5 +6,5 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
diff --git a/deploy/static/trivy-operator.yaml b/deploy/static/trivy-operator.yaml
index 578b04a2b..3b558a25e 100644
--- a/deploy/static/trivy-operator.yaml
+++ b/deploy/static/trivy-operator.yaml
@@ -2094,7 +2094,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
---
# Source: trivy-operator/templates/config.yaml
@@ -2106,7 +2106,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
---
# Source: trivy-operator/templates/config.yaml
@@ -2118,7 +2118,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
data:
---
@@ -2131,7 +2131,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
data:
nodeCollector.volumes: "[{\"hostPath\":{\"path\":\"/var/lib/etcd\"},\"name\":\"var-lib-etcd\"},{\"hostPath\":{\"path\":\"/var/lib/kubelet\"},\"name\":\"var-lib-kubelet\"},{\"hostPath\":{\"path\":\"/var/lib/kube-scheduler\"},\"name\":\"var-lib-kube-scheduler\"},{\"hostPath\":{\"path\":\"/var/lib/kube-controller-manager\"},\"name\":\"var-lib-kube-controller-manager\"},{\"hostPath\":{\"path\":\"/etc/systemd\"},\"name\":\"etc-systemd\"},{\"hostPath\":{\"path\":\"/lib/systemd\"},\"name\":\"lib-systemd\"},{\"hostPath\":{\"path\":\"/etc/kubernetes\"},\"name\":\"etc-kubernetes\"},{\"hostPath\":{\"path\":\"/etc/cni/net.d/\"},\"name\":\"etc-cni-netd\"}]"
@@ -2153,7 +2153,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
data:
trivy.repository: "ghcr.io/aquasecurity/trivy"
@@ -2183,7 +2183,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
spec:
replicas: 1
@@ -2203,7 +2203,7 @@ spec:
automountServiceAccountToken: true
containers:
- name: "trivy-operator"
- image: "ghcr.io/aquasecurity/trivy-operator:0.15.0-rc"
+ image: "ghcr.io/aquasecurity/trivy-operator:0.15.0"
imagePullPolicy: IfNotPresent
env:
- name: OPERATOR_NAMESPACE
@@ -2327,7 +2327,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
rules:
- apiGroups:
@@ -2354,7 +2354,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
roleRef:
apiGroup: rbac.authorization.k8s.io
@@ -2374,7 +2374,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
data:
# example
@@ -2424,7 +2424,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
---
# Source: trivy-operator/templates/rbac.yaml
@@ -2775,7 +2775,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
rbac.authorization.k8s.io/aggregate-to-view: "true"
rbac.authorization.k8s.io/aggregate-to-edit: "true"
@@ -2800,7 +2800,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
rbac.authorization.k8s.io/aggregate-to-view: "true"
rbac.authorization.k8s.io/aggregate-to-edit: "true"
@@ -2825,7 +2825,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
rbac.authorization.k8s.io/aggregate-to-view: "true"
rbac.authorization.k8s.io/aggregate-to-edit: "true"
@@ -2849,7 +2849,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
roleRef:
apiGroup: rbac.authorization.k8s.io
@@ -2869,7 +2869,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
rules:
- apiGroups:
@@ -2899,7 +2899,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
roleRef:
apiGroup: rbac.authorization.k8s.io
@@ -2919,7 +2919,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
spec:
clusterIP: None
diff --git a/docs/docs/crds/clustercompliance-report.md b/docs/docs/crds/clustercompliance-report.md
index 54de95a8f..9cf71af2e 100644
--- a/docs/docs/crds/clustercompliance-report.md
+++ b/docs/docs/crds/clustercompliance-report.md
@@ -1346,7 +1346,7 @@ status:
"app.kubernetes.io/instance": "trivy-operator",
"app.kubernetes.io/managed-by": "kubectl",
"app.kubernetes.io/name": "trivy-operator",
- "app.kubernetes.io/version": "0.15.0-rc"
+ "app.kubernetes.io/version": "0.15.0"
},
"name": "cis",
"resourceVersion": "8985",
diff --git a/docs/docs/crds/configaudit-report.md b/docs/docs/crds/configaudit-report.md
index 8442091c2..4cf29a01d 100644
--- a/docs/docs/crds/configaudit-report.md
+++ b/docs/docs/crds/configaudit-report.md
@@ -36,7 +36,7 @@ report:
scanner:
name: Trivy
vendor: Aqua Security
- version: '0.15.0-rc'
+ version: '0.15.0'
summary:
criticalCount: 2
highCount: 0
diff --git a/docs/docs/crds/exposedsecret-report.md b/docs/docs/crds/exposedsecret-report.md
index 2abb87c3e..b4f1a1e3f 100644
--- a/docs/docs/crds/exposedsecret-report.md
+++ b/docs/docs/crds/exposedsecret-report.md
@@ -34,7 +34,7 @@ metadata:
report:
artifact:
repository: myimagewithsecret
- tag: v0.15.0-rc
+ tag: v0.15.0
registry:
server: index.docker.io
scanner:
diff --git a/docs/docs/crds/rbacassessment-report.md b/docs/docs/crds/rbacassessment-report.md
index e525b4e0a..baa7cfb44 100644
--- a/docs/docs/crds/rbacassessment-report.md
+++ b/docs/docs/crds/rbacassessment-report.md
@@ -177,7 +177,7 @@ report:
scanner:
name: Trivy
vendor: Aqua Security
- version: '0.15.0-rc'
+ version: '0.15.0'
summary:
criticalCount: 1
highCount: 0
diff --git a/docs/docs/design/caching_scan_results_by_repo_digest.md b/docs/docs/design/caching_scan_results_by_repo_digest.md
index 5f8baa045..f8dc62d00 100644
--- a/docs/docs/design/caching_scan_results_by_repo_digest.md
+++ b/docs/docs/design/caching_scan_results_by_repo_digest.md
@@ -129,5 +129,5 @@ We can't use something like ownerReference since it would delete all vulnerabili
a gate.
* Both Trivy-Operator CLI and Trivy-Operator Operator can read and leverage ClusterVulnerabilityReports.
-[Standalone]: https://aquasecurity.github.io/trivy-operator/v0.15.0-rc/integrations/vulnerability-scanners/trivy/#standalone
-[ClientServer]: https://aquasecurity.github.io/trivy-operator/v0.15.0-rc/integrations/vulnerability-scanners/trivy/#clientserver
+[Standalone]: https://aquasecurity.github.io/trivy-operator/v0.15.0/integrations/vulnerability-scanners/trivy/#standalone
+[ClientServer]: https://aquasecurity.github.io/trivy-operator/v0.15.0/integrations/vulnerability-scanners/trivy/#clientserver
diff --git a/docs/docs/design/design_compliance_report.md b/docs/docs/design/design_compliance_report.md
index 47fbaef00..8a17f9bb6 100644
--- a/docs/docs/design/design_compliance_report.md
+++ b/docs/docs/design/design_compliance_report.md
@@ -542,7 +542,7 @@ metadata:
name: clustercompliancereports.aquasecurity.github.io
labels:
app.kubernetes.io/managed-by: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
spec:
group: aquasecurity.github.io
scope: Cluster
@@ -678,7 +678,7 @@ metadata:
name: clustercompliancedetailreports.aquasecurity.github.io
labels:
app.kubernetes.io/managed-by: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
spec:
group: aquasecurity.github.io
versions:
diff --git a/docs/docs/design/design_vuln_scan_job_in_same_namespace_of_workload.md b/docs/docs/design/design_vuln_scan_job_in_same_namespace_of_workload.md
index 397c6ea5a..66f8e42bf 100644
--- a/docs/docs/design/design_vuln_scan_job_in_same_namespace_of_workload.md
+++ b/docs/docs/design/design_vuln_scan_job_in_same_namespace_of_workload.md
@@ -219,6 +219,6 @@ With this approach trivy operator will not have to worry about managing(create/d
- As we will run scan job with service account of workload and if there are some very strict PSP defined in the cluster
then scan job will be blocked due to the PSP.
-[ECR registry configuration]: https://aquasecurity.github.io/trivy-operator/v0.15.0-rc/integrations/managed-registries/#amazon-elastic-container-registry-ecr
+[ECR registry configuration]: https://aquasecurity.github.io/trivy-operator/v0.15.0/integrations/managed-registries/#amazon-elastic-container-registry-ecr
[IAM role to service account]: https://docs.aws.amazon.com/eks/latest/userguide/specify-service-account-role.html
[Trivy fs command]: https://github.com/aquasecurity/trivy-operator/blob/main/docs/design/design_trivy_file_system_scanner.md
diff --git a/docs/docs/vulnerability-scanning/managed-registries.md b/docs/docs/vulnerability-scanning/managed-registries.md
index b9f522f76..ef38a7306 100644
--- a/docs/docs/vulnerability-scanning/managed-registries.md
+++ b/docs/docs/vulnerability-scanning/managed-registries.md
@@ -40,7 +40,7 @@ metadata:
labels:
app.kubernetes.io/name: trivy-operator
app.kubernetes.io/instance: trivy-operator
- app.kubernetes.io/version: "0.15.0-rc"
+ app.kubernetes.io/version: "0.15.0"
app.kubernetes.io/managed-by: kubectl
azure.workload.identity/use: "true"
annotations:
diff --git a/docs/tutorials/grafana-dashboard.md b/docs/tutorials/grafana-dashboard.md
index 3e665f025..3ae364646 100644
--- a/docs/tutorials/grafana-dashboard.md
+++ b/docs/tutorials/grafana-dashboard.md
@@ -92,7 +92,7 @@ Next, we can install the operator with the following command:
helm install trivy-operator aqua/trivy-operator \
--namespace trivy-system \
--create-namespace \
- --version 0.15.0-rc \
+ --version 0.15.0 \
--values trivy-values.yaml
```
diff --git a/docs/tutorials/private-registries.md b/docs/tutorials/private-registries.md
index 84b4c47fa..a0ddd4e1b 100644
--- a/docs/tutorials/private-registries.md
+++ b/docs/tutorials/private-registries.md
@@ -47,7 +47,7 @@ Lastly, we can deploy the operator inside our cluster with referencing our new `
helm upgrade --install trivy-operator aqua/trivy-operator \
--namespace trivy-system \
--create-namespace \
- --version 0.15.0-rc
+ --version 0.15.0
--values ./values.yaml
```
@@ -57,7 +57,7 @@ Alternatively, it is possible to set the values directly through Helm instead of
helm upgrade --install trivy-operator aqua/trivy-operator \
--namespace trivy-system \
--create-namespace \
- --version 0.15.0-rc
+ --version 0.15.0
--set="trivy.command=fs"
--set="trivyOperator.scanJobPodTemplateContainerSecurityContext.runAsUser=0"
```
@@ -230,7 +230,7 @@ Lastly, we can deploy the operator inside our cluster with referencing our new `
helm upgrade --install trivy-operator aqua/trivy-operator \
--namespace trivy-system \
--create-namespace \
- --version 0.15.0-rc
+ --version 0.15.0
--values ./values.yaml
```
@@ -240,7 +240,7 @@ Alternatively, it is possible to set the values directly through Helm instead of
helm upgrade --install trivy-operator aqua/trivy-operator \
--namespace trivy-system \
--create-namespace \
- --version 0.15.0-rc
+ --version 0.15.0
--set-json='operator.privateRegistryScanSecretsNames={"app":"dockerconfigjson-github-com"}'
```
@@ -262,4 +262,4 @@ trivy-operator 1/1 1 1 99s
The last way that you could give the Trivy operator access to your private container registry is through managed registries. In this case, the container registry and your Kubernetes cluster would have to be on the same cloud provider; then you can define access to your container namespace as part of the IAM account. Once defined, trivy will already have the permissions for the registry.
-For additional information, please refer to the [documentation on managed registries.](https://aquasecurity.github.io/trivy-operator/v0.15.0-rc/docs/vulnerability-scanning/managed-registries/)
+For additional information, please refer to the [documentation on managed registries.](https://aquasecurity.github.io/trivy-operator/v0.15.0/docs/vulnerability-scanning/managed-registries/)
diff --git a/mkdocs.yml b/mkdocs.yml
index dc652a6a3..b932ed31f 100644
--- a/mkdocs.yml
+++ b/mkdocs.yml
@@ -87,7 +87,7 @@ extra:
provider: mike
var:
prev_git_tag: "v0.14.1"
- chart_version: "0.15.0-rc"
+ chart_version: "0.15.0"
plugins:
- search