This topic lists the latest changes to kritis-validation-hook.

November 2020

Version Image address Release date Description
v0.2.6.4-g94b0940-aliyun registry.cn-hangzhou.aliyuncs.com/acs/kritis-server:v0.2.6.4-g94b0940-aliyun November 16, 2020 New features: supports signature verification for Container Service for Kubernetes (ACK) images whose image versions are immutable.

August 2020

Version Image address Release date Description
v0.2.5.26-g75d5297-aliyun registry.cn-hangzhou.aliyuncs.com/acs/kritis-server:v0.2.5.26-g75d5297-aliyun August 12, 2020 New features:
  • If a container image fails to pass the signature verification, a cluster event is generated in the kube-system namespace. The cause of this event is FailedKritisAdmission.
  • Supports the dry run mode. By default, this mode is disabled.

    When the dry run mode is enabled, container images that fail to pass the signature verification can be deployed. If an image that fails to pass the signature verification is deployed, a cluster event is generated in the kube-system namespace. The cause of this event is DryRunKritisAdmission.

June 2020

Version Image address Release date Description
v0.2.4.1-ge5c1265-aliyun registry.cn-hangzhou.aliyuncs.com/acs/kritis-server:v0.2.4.1-ge5c1265-aliyun June 22, 2020 Supports signature verification for signed Container Registry images in different regions.

April 2020

Version Image address Release date Description
v0.2.3.1-00e70883-aliyun registry.cn-hangzhou.aliyuncs.com/acs/kritis-server:v0.2.3.1-00e70883-aliyun April 7, 2020 Improves program performance and optimizes log content.

March 2020

Version Image address Release date Description
v0.2.2.3-fe8a6319-aliyun registry.cn-hangzhou.aliyuncs.com/acs/kritis-server:v0.2.2.3-fe8a6319-aliyun March 18, 2020 New features: kritis-validation-hook is integrated with Container Registry. You can verify the signatures of KMS-signed images. This ensures that only trusted images are deployed in clusters of Container Service for Kubernetes (ACK).