release: prepare v0.14.0 official (#1269)

Signed-off-by: chenk <hen.keinan@gmail.com>

RELEASING.md

@@ -46,17 +46,17 @@
 5. Create an annotated git tag and push it to the `upstream`. This will trigger the [`.github/workflows/release.yaml`] workflow
 
    ```
-   git tag -v0.14.0-rc -m 'Release v0.14.0-rc'
-   git push upstream v0.14.0-rc
+   git tag -v0.14.0 -m 'Release v0.14.0'
+   git push upstream v0.14.0
    ```
 
 6. Verify that the `release` workflow has built and published the following artifacts
    1. Trivy-operator container images published to DockerHub
-       `docker.io/aquasec/trivy-operator:0.14.0-rc`
+       `docker.io/aquasec/trivy-operator:0.14.0`
    2. Trivy-operator container images published to Amazon ECR Public Gallery
-       `public.ecr.aws/aquasecurity/trivy-operator:0.14.0-rc`
+       `public.ecr.aws/aquasecurity/trivy-operator:0.14.0`
    2. Trivy-operator container images published to GitHub Container Registry
-       `ghcr.io/aquasecurity/trivy-operator:0.14.0-rc`
+       `ghcr.io/aquasecurity/trivy-operator:0.14.0`
 7. Publish the Helm chart by manually triggering the [`.github/workflows/publish-helm-chart.yaml`] workflow
 8. Publish docs on <https://aquasecurity.github.io/trivy-operator/> by manually triggering the [`.github/workflows/publish-docs.yaml`] workflow
 9. Submit trivy-operator Operator to OperatorHub and ArtifactHUB by opening the PR to the <https://github.com/k8s-operatorhub/community-operators> repository.

deploy/helm/Chart.yaml

@@ -6,12 +6,12 @@ type: application
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 0.14.0-rc
+version: 0.14.0
 
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application. Versions are not expected to
 # follow Semantic Versioning. They should reflect the version the application is using.
-appVersion: 0.14.0-rc
+appVersion: 0.14.0
 
 # kubeVersion: A SemVer range of compatible Kubernetes versions (optional)
 

deploy/helm/templates/specs/cis-1.23.yaml

@@ -6,7 +6,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: 0.14.0-rc
+    app.kubernetes.io/version: 0.14.0
     app.kubernetes.io/managed-by: kubectl
 spec:
   cron: {{ .Values.compliance.cron | quote}}

deploy/helm/templates/specs/nsa-1.0.yaml

@@ -6,7 +6,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 spec:
   cron: {{ .Values.compliance.cron | quote }}

deploy/helm/templates/specs/pss-baseline.yaml

@@ -6,7 +6,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: 0.14.0-rc
+    app.kubernetes.io/version: 0.14.0
     app.kubernetes.io/managed-by: kubectl
 spec:
   cron: {{ .Values.compliance.cron | quote }}

deploy/helm/templates/specs/pss-restricted.yaml

@@ -6,7 +6,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: 0.14.0-rc
+    app.kubernetes.io/version: 0.14.0
     app.kubernetes.io/managed-by: kubectl
 spec:
   cron: {{ .Values.compliance.cron | quote }}

deploy/static/namespace.yaml

@@ -6,5 +6,5 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl

deploy/static/trivy-operator.yaml

@@ -1764,7 +1764,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 ---
 # Source: trivy-operator/templates/config.yaml
@@ -1776,7 +1776,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 ---
 # Source: trivy-operator/templates/config.yaml
@@ -1788,7 +1788,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 data:
 ---
@@ -1801,7 +1801,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 data:
   nodeCollector.volumes: "[{\"hostPath\":{\"path\":\"/var/lib/etcd\"},\"name\":\"var-lib-etcd\"},{\"hostPath\":{\"path\":\"/var/lib/kubelet\"},\"name\":\"var-lib-kubelet\"},{\"hostPath\":{\"path\":\"/var/lib/kube-scheduler\"},\"name\":\"var-lib-kube-scheduler\"},{\"hostPath\":{\"path\":\"/var/lib/kube-controller-manager\"},\"name\":\"var-lib-kube-controller-manager\"},{\"hostPath\":{\"path\":\"/etc/systemd\"},\"name\":\"etc-systemd\"},{\"hostPath\":{\"path\":\"/lib/systemd\"},\"name\":\"lib-systemd\"},{\"hostPath\":{\"path\":\"/etc/kubernetes\"},\"name\":\"etc-kubernetes\"},{\"hostPath\":{\"path\":\"/etc/cni/net.d/\"},\"name\":\"etc-cni-netd\"}]"
@@ -1823,7 +1823,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 data:
   trivy.repository: "ghcr.io/aquasecurity/trivy"
@@ -1853,7 +1853,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 spec:
   replicas: 1
@@ -1873,7 +1873,7 @@ spec:
       automountServiceAccountToken: true
       containers:
         - name: "trivy-operator"
-          image: "ghcr.io/aquasecurity/trivy-operator:0.14.0-rc"
+          image: "ghcr.io/aquasecurity/trivy-operator:0.14.0"
           imagePullPolicy: IfNotPresent
           env:
             - name: OPERATOR_NAMESPACE
@@ -1989,7 +1989,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 rules:
   - apiGroups:
@@ -2016,7 +2016,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -2036,7 +2036,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 data:
 # example
@@ -2086,7 +2086,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 ---
 # Source: trivy-operator/templates/rbac.yaml
@@ -2417,7 +2417,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
     rbac.authorization.k8s.io/aggregate-to-view: "true"
     rbac.authorization.k8s.io/aggregate-to-edit: "true"
@@ -2442,7 +2442,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
     rbac.authorization.k8s.io/aggregate-to-view: "true"
     rbac.authorization.k8s.io/aggregate-to-edit: "true"
@@ -2467,7 +2467,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
     rbac.authorization.k8s.io/aggregate-to-view: "true"
     rbac.authorization.k8s.io/aggregate-to-edit: "true"
@@ -2491,7 +2491,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -2511,7 +2511,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 rules:
   - apiGroups:
@@ -2541,7 +2541,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 roleRef:
   apiGroup: rbac.authorization.k8s.io
@@ -2561,7 +2561,7 @@ metadata:
   labels:
     app.kubernetes.io/name: trivy-operator
     app.kubernetes.io/instance: trivy-operator
-    app.kubernetes.io/version: "0.14.0-rc"
+    app.kubernetes.io/version: "0.14.0"
     app.kubernetes.io/managed-by: kubectl
 spec:
   clusterIP: None

docs/docs/crds/clustercompliance-report.md

@@ -1346,7 +1346,7 @@ status:
             "app.kubernetes.io/instance": "trivy-operator",
             "app.kubernetes.io/managed-by": "kubectl",
             "app.kubernetes.io/name": "trivy-operator",
-            "app.kubernetes.io/version": "0.14.0-rc"
+            "app.kubernetes.io/version": "0.14.0"
         },
         "name": "cis",
         "resourceVersion": "8985",

docs/docs/crds/configaudit-report.md

@@ -36,7 +36,7 @@ report:
   scanner:
     name: Trivy 
     vendor: Aqua Security
-    version: '0.14.0-rc'
+    version: '0.14.0'
   summary:
     criticalCount: 2
     highCount: 0

docs/docs/crds/exposedsecret-report.md

@@ -34,7 +34,7 @@ metadata:
 report:
   artifact:
     repository: myimagewithsecret
-    tag: v0.14.0-rc
+    tag: v0.14.0
   registry:
     server: index.docker.io
   scanner:

docs/docs/crds/rbacassessment-report.md

@@ -177,7 +177,7 @@ report:
   scanner:
     name: Trivy
     vendor: Aqua Security
-    version: '0.14.0-rc'
+    version: '0.14.0'
   summary:
     criticalCount: 1
     highCount: 0

docs/docs/design/caching_scan_results_by_repo_digest.md

@@ -129,5 +129,5 @@ We can't use something like ownerReference since it would delete all vulnerabili
   a gate.
 * Both Trivy-Operator CLI and Trivy-Operator Operator can read and leverage ClusterVulnerabilityReports.
 
-[Standalone]: https://aquasecurity.github.io/trivy-operator/v0.14.0-rc/integrations/vulnerability-scanners/trivy/#standalone
-[ClientServer]: https://aquasecurity.github.io/trivy-operator/v0.14.0-rc/integrations/vulnerability-scanners/trivy/#clientserver
+[Standalone]: https://aquasecurity.github.io/trivy-operator/v0.14.0/integrations/vulnerability-scanners/trivy/#standalone
+[ClientServer]: https://aquasecurity.github.io/trivy-operator/v0.14.0/integrations/vulnerability-scanners/trivy/#clientserver

docs/tutorials/grafana-dashboard.md

@@ -92,7 +92,7 @@ Next, we can install the operator with the following command:
 helm install trivy-operator aqua/trivy-operator \
   --namespace trivy-system \
   --create-namespace \
-  --version 0.14.0-rc \
+  --version 0.14.0 \
   --values trivy-values.yaml
 ```
 

docs/tutorials/private-registries.md

@@ -47,7 +47,7 @@ Lastly, we can deploy the operator inside our cluster with referencing our new `
 helm upgrade --install trivy-operator aqua/trivy-operator \
   --namespace trivy-system \
   --create-namespace \
-  --version 0.14.0-rc
+  --version 0.14.0
   --values ./values.yaml
 ```
 
@@ -57,7 +57,7 @@ Alternatively, it is possible to set the values directly through Helm instead of
 helm upgrade --install trivy-operator aqua/trivy-operator \
   --namespace trivy-system \
   --create-namespace \
-  --version 0.14.0-rc
+  --version 0.14.0
   --set="trivy.command=fs"
   --set="trivyOperator.scanJobPodTemplateContainerSecurityContext.runAsUser=0"
 ```
@@ -230,7 +230,7 @@ Lastly, we can deploy the operator inside our cluster with referencing our new `
 helm upgrade --install trivy-operator aqua/trivy-operator \
   --namespace trivy-system \
   --create-namespace \
-  --version 0.14.0-rc
+  --version 0.14.0
   --values ./values.yaml
 ```
 
@@ -240,7 +240,7 @@ Alternatively, it is possible to set the values directly through Helm instead of
 helm upgrade --install trivy-operator aqua/trivy-operator \
   --namespace trivy-system \
   --create-namespace \
-  --version 0.14.0-rc
+  --version 0.14.0
   --set-json='operator.privateRegistryScanSecretsNames={"app":"dockerconfigjson-github-com"}'
 ```
 
@@ -262,4 +262,4 @@ trivy-operator   1/1     1            1           99s
 
 The last way that you could give the Trivy operator access to your private container registry is through managed registries. In this case, the container registry and your Kubernetes cluster would have to be on the same cloud provider; then you can define access to your container namespace as part of the IAM account. Once defined, trivy will already have the permissions for the registry.
 
-For additional information, please refer to the [documentation on managed registries.](https://aquasecurity.github.io/trivy-operator/v0.14.0-rc/docs/vulnerability-scanning/managed-registries/)
+For additional information, please refer to the [documentation on managed registries.](https://aquasecurity.github.io/trivy-operator/v0.14.0/docs/vulnerability-scanning/managed-registries/)

mkdocs.yml

@@ -87,7 +87,7 @@ extra:
     provider: mike
   var:
     prev_git_tag: "v0.13.2"
-    chart_version: "0.14.0-rc"
+    chart_version: "0.14.0"
 
 plugins:
   - search