<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=521127644762074&amp;ev=PageView&amp;noscript=1">

Fairwinds Insights Release Notes 8.6-10: Spotlight on Policies and NSA Hardening Guidance

Fairwinds Insights has been enhanced over the last month to include a number of new features and bug fixes. The Kubernetes governance platform ensures users can configure settings to ensure security risks are minimized and cost optimized while providing guardrails for developers to ship applications faster. 

Spotlight: NSA Kubernetes Hardening Guidance

As part of our NSA Kubernetes Hardening Guide, we’ve provided information on how using Insights can help improve  pod security, network access, authentication and authorization, audit logging and threat detection and upgrade and application security practices. Now included in Fairwinds Insights is the ability to export a report for users to guide clusters towards NSA hardening. This report will show the NSA policy, the relevant Insights check and the number of Action Items that require resolving.

Spotlight: Enhanced Policy Configuration

We’ve redesigned the Policy page to now show a list of all policies built-in to Insights as well as any OPA policies added by users. Users are now able to see the severity of every policy as well as whether they will currently block admission requests or the CI/CD pipeline. We’ve also started to use OPA v2 when creating new policies using the Insights UI. 

Insights Release Notes

8.10.0

Policy Configurator

We have redesigned the Policy page in Insights. The Policy page will now show a list of all Policies that come as part of Insights as well as any OPA policies added by users. Users are now able to see the severity of every Policy as well as whether they will currently block admission requests or the CI/CD pipeline. Furthermore, users are now able to set these values using the Insights CLI to customize policies to their needs.

Insights CI Script 2.0

A new Insights CI script is available for our users to use in their CI/CD pipelines. The new 2.0 Insights CI script will now block admission requests and CI/CD pipelines according to the values set in the Policy for Admission and CI. Users using the Auto Scan feature will automatically use this new script version. The 2.0 script also defaults to blocking only on Action Items that have High or Critical severity.

8.9.0

Creating New Policies in Insights Using OPA v2

When creating new Policies using the Insights UI, we will be using OPA v2. The biggest change here is a YAML instance is no longer required. All v1 Policies will continue to work, and are still able to be edited from within the Insights web UI. OPA v2 is only available with Insights Agent 2.x. To learn more about the differences between OPA v1 and v2, check out V1 and V2 Insights OPA Policies.

8.7.0

CSV Export of NSA Hardening Guidance

Users are now able to export a report guiding their clusters towards NSA hardening. This report will show the NSA policy, the relevant Insights check and the number of Action Items that require resolving. In order to obtain the report, go to the Action Items page, select a cluster from the top left drop down and click the Export > Export NSA Report button.

8.6.0-8.10.0

Bug Fixes and Improvements Roundup

  • Workloads can now be exported even when filtered
  • Fixed the display of Admission Controller chart when displaying percentages
  • Deleting a cluster now requires typing in the cluster name before confirmation
  • Fixed missing Name field and duplicated Namespace field when exporting Action Items
  • Improvement to Pluto Action Items description and titles
  • Added instructions for setting up CI integration for different platforms
  • Removed nodes that were showing blank in the Node Capacity chart
  • Fixed issue with the contact form
  • Updated Insights CI script
  • Fixed ordering of Top Issues chart in Repositories
  • Improvements to make the Cluster Overview page load faster
  • New background for login pages
  • Fixed popups getting cut off when hovering over Top Issues chart in Home
  • Some workload metrics were showing N/A incorrectly

See how Fairwinds Insights reduces your Kubernetes risk!