v4.7.0

NCTL 4.7.x Release Notes

v4.7.4

Major Changes

  • Using nctl to install Kyverno Operator and Nirmata Kube Controller follow secure-by-default standards (i.e., provide readonly access to resources).
  • Removed nctl install command. The recommended installation method for Enterprise Kyverno and Operator is via Helm.
  • nctl scan kubernetes now include K8s best practices policies out-of-the-box.
  • Add support for Kyverno 1.14’s ValidatingPolicy in nctl scan kubernetes command.
  • Changes to nctl login command. By default login is for NCH.

Enhancements

  • Include cluster name in SARIF reports.
  • Remove redundant logs from nctl scan command.
  • Exclude specific files or directories when using nctl scan repository command.
  • Support for --analyze flag for nctl scan repository command.
  • Added support for csv as a policy report output format.
  • Added severity field in detailed scan reports.
  • Support for directories in nctl scan remediate command.