ROX-6639: Red Hat Advanced Cluster Security for Kubernetes includes a new policy criteria for vulnerabilities severity score in an image’s contents. It provides a more accurate reflection of risk than a CVSS score.
ROX-6991 and ROX-7058: Previously, CSV exports of security risks were inconsistent with the RHACS user interface.
ROX-7004: Previously, CVE-2016-4074 was reported as a false positive when images contained the component
jq 1.6-r0 or
ROX-7270: Previously, under certain conditions, searched images would not correctly index and display.
ROX-7276: Previously, improper handling of very short-lived tokens caused the GitLab OIDC authentication provider to prematurely log users out.
ROX-6639: Red Hat Advanced Cluster Security for Kubernetes includes a new default policy to flag fixable high or important severity vulnerabilities in images.
ROX-7133: Red Hat Advanced Cluster Security for Kubernetes now calculates the image risk using a score assigned to the severity rating of a vulnerability rather than the CVSS score. Doing this provides a more accurate reflection of an image’s risk.
It includes Central, Sensor, Admission Controller, and Compliance.
It also includes
Scans images and nodes.
Stores image scan results and vulnerability definitions.
Collects runtime activity in Kubernetes or OpenShift Container Platform clusters.