v2.3.3

What's Changed

• Upgraded Go version to 1.23
• Bump github.com/np-guard/netpol-analyzer from 1.2.1 to 1.3.1 by @dependabot in #523
• Bump the k8s group across 1 directory with 3 updates by @dependabot in #528
• Bump sigs.k8s.io/gateway-api from 1.1.0 to 1.2.1 by @dependabot in #496

Full Changelog: v2.3.2...v2.3.3

v2.3.2

What's Changed

• Bump golang.org/x/net from v0.24.0 to v0.33.0 to fix a security vulnerability by @adisos in #510
• Bump github.com/np-guard/netpol-analyzer from 1.2.0 to 1.2.1 by @dependabot in #482
• Bump github.com/stretchr/testify from 1.9.0 to 1.10.0 by @dependabot in #494

Full Changelog: v2.3.1...v2.3.2

v2.3.1

What's Changed

• Support for Gateway-API Routes by @zivnevo in #461 and in #466
• Upgrade Go version to 1.22
• Bumped k8s.io packages from v0.29.1 to v0.30.0
• Bump ubi9/ubi-minimal from 104cf11 to 1b6d711 by @dependabot in #464

Full Changelog: v2.3.0...v2.3.1

v2.3.0

What's Changed

• Allow setting a non-default named dns port via API by @zivnevo in #428
• Expose Prometheus-scrapable ports to all pods in the cluster by @zivnevo in #434
• Upgrade to go 1.21 by @zivnevo in #385
• Bump ubi9/ubi-minimal from a7d837b to 104cf11 by @dependabot in #443
• Bump github.com/np-guard/netpol-analyzer from 1.1.0 to 1.2.0 by @dependabot in #450
• Bump google.golang.org/protobuf from 1.31.0 to 1.33.0 by @dependabot in #377
• Bump golang.org/x/net from 0.19.0 to 0.23.0 by @dependabot in #391

Full Changelog: v2.2.1...v2.3.0

v2.2.1

Changes from v2.2.0:

• Improved heuristics for identifying network addresses - network address can now be the suffix of a command-line argument or an environment variable value.
• Fixed an issue with handling CronJob resources
• Skipping a connection from a workload to itself
• Bumped github.com/np-guard/netpol-analyzer from v1.0.1 to v1.1.0.
• Bumped k8s.io packages from v0.29.1 to v0.29.2

v2.2.0

Changes from v2.1.0:

• PoliciesSynthesizer has a new exported method: ErrorPtrs(). This methods works just like the old method Errors(), but returns a slice of pointers to FileProcessingError structs. The new method might be more useful if the returned slice is to be used as a slice of interfaces.
• Bumped K8s dependencies to version 0.29.1

v2.1.0

Changes from v2.0.0:

• Support for workload of kind Pod
• Internal: A dedicated class for scanning a directory for YAML files.

v2.0.0

API changes from v1.9.0, which break backwards compatibility:

• All code now resides in a single package called analyzer. Hence, exported types from the common package are now under analyzer.
• NotK8sResourceError and MalformedYamlDocError types are no longer available. Both are replaced by FailedReadingFileError.
• Not finding any Kubernetes workload in the set of given resource, is now a critical error.
• Lots of internal types and functions are no longer exported.

Other changes from v1.9.0:

• PoliciesSynthesizer has two new methods: PoliciesFromInfos and ConnectionsFromInfos. These functions skip scanning file-system directories and rather directly analyze resources given in a slice of resource.Info (as defined in k8s.io/cli-runtime/pkg/resource).
• YAML parsing is now done using the fsscanner package from github.com/np-guard/netpol-analyzer.
• Adding missing docstrings for exported types and functions.

v1.9.0

Changes from v1.8.0:

• Using Golang 1.20
• Upgraded K8s API to v0.28.2 (note: NetworkPolicy resource in v0.28 and later no longer has a status field)

v1.8.0

Changes from v1.7.0:

• Much improved discovery of network addresses in workload resources, cleaning potential URLs, as well as looking at fields such as container[i].command and volumes[i].configMap. This allows identifying many more required connections.
• Pods behind Services that are referenced by Route and Ingress resources, now have their ingress open to in-cluster connections.
• Avoid reporting OpenShift resources as "not a K8s resource".
• Simplified Makefile; using Makefile commands in CI.
• Added unit testing for the analyzer package.
• Bug fix: Labels for ReplicaSet pods were set incorrectly.