chore(deps): update neuvector package dependencies

[renovate]

This PR contains the following updates:

Package	Update	Change
core (source)	patch	2.8.11 → 2.8.12
crd	patch	2.8.11 → 2.8.12
docker.io/neuvector/controller (source)	minor	5.4.9 → 5.5.0
docker.io/neuvector/enforcer (source)	minor	5.4.9 → 5.5.0
docker.io/neuvector/manager (source)	minor	5.4.9 → 5.5.0
quay.io/rfcurated/curl	minor	8.18.0-jammy-scratch-fips-rfcurated → 8.19.0-jammy-scratch-fips-rfcurated
quay.io/rfcurated/neuvector/controller	minor	5.4.9-jammy-scratch-fips-rfcurated → 5.5.0-jammy-scratch-fips-rfcurated
quay.io/rfcurated/neuvector/controller	minor	5.4.9 → 5.5.0
quay.io/rfcurated/neuvector/enforcer	minor	5.4.9-jammy-scratch-fips-rfcurated → 5.5.0-jammy-scratch-fips-rfcurated
quay.io/rfcurated/neuvector/manager	minor	5.4.9-jammy-scratch-fips-rfcurated → 5.5.0-jammy-scratch-fips-rfcurated
registry1.dso.mil/ironbank/neuvector/neuvector/controller (source)	minor	5.4.9 → 5.5.0
registry1.dso.mil/ironbank/neuvector/neuvector/enforcer (source)	minor	5.4.9 → 5.5.0
registry1.dso.mil/ironbank/neuvector/neuvector/manager (source)	minor	5.4.9 → 5.5.0

---

Release Notes

neuvector/neuvector-helm (core)

v2.8.12: Release 2.8.12

Compare Source

What's Changed

• NVSHAS-10244: Set env var RANCHER_CLUSTER_NAME for deployment on Rancher env
• chore: bump helm chart versions for NeuVector 5.5.0 by @​williamlin-suse in #​550

Full Changelog: neuvector/neuvector-helm@v2.8.11...v2.8.12

neuvector/neuvector (quay.io/rfcurated/neuvector/controller)

v5.5.0: Release

Compare Source

Feature Request

• NVSHAS-10131: Improve the Vulnerabilities Report by @​holyspectral in #​2208

Bugs Fixed

• NVSHAS-10281: suppress log in the response rule is not working by @​williamlin-suse in #​2230
• NVSHAS-10244: Neuvector Rancher SSO Authentication error when rancher helm release name is not "rancher" by @​williamlin-suse in #​2224

Announcement

• NVSHAS-10246: Deprecate Docker native support in NV

---

Configuration

📅 Schedule: (in timezone America/New_York)

• Branch creation
  • Between 07:00 AM and 08:59 AM, only on Tuesday (* 7-8 * * 2)
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Full scan comparison results are too large to post as a comment. Link to full results artifact: Results
Summarized results are below:

quay.io/rfcurated/neuvector/controller

quay.io/rfcurated/neuvector/controller 5.4.9-jammy-scratch-fips-rfcurated -> 5.5.0-jammy-scratch-fips-rfcurated

New vulnerabilities: 0
Fixed vulnerabilities: 18
Existing vulnerabilities: 7

---

quay.io/rfcurated/neuvector/manager

quay.io/rfcurated/neuvector/manager 5.4.9-jammy-scratch-fips-rfcurated -> 5.5.0-jammy-scratch-fips-rfcurated

New vulnerabilities: 0
Fixed vulnerabilities: 6
Existing vulnerabilities: 2

---

quay.io/rfcurated/neuvector/enforcer

quay.io/rfcurated/neuvector/enforcer 5.4.9-jammy-scratch-fips-rfcurated -> 5.5.0-jammy-scratch-fips-rfcurated

New vulnerabilities: 0
Fixed vulnerabilities: 13
Existing vulnerabilities: 6

---

quay.io/rfcurated/curl

quay.io/rfcurated/curl 8.18.0-jammy-scratch-fips-rfcurated -> 8.19.0-jammy-scratch-fips-rfcurated

New vulnerabilities: 0
Fixed vulnerabilities: 6
Existing vulnerabilities: 2

---

quay.io/rfcurated/neuvector/scanner

quay.io/rfcurated/neuvector/scanner latest-jammy-scratch-fips-rfcurated -> latest-jammy-scratch-fips-rfcurated

New vulnerabilities: 0
Fixed vulnerabilities: 17
Existing vulnerabilities: 0

---

neuvector/controller

neuvector/controller 5.4.9 -> 5.5.0

New vulnerabilities: 0
Fixed vulnerabilities: 25
Existing vulnerabilities: 23

---

neuvector/manager

neuvector/manager 5.4.9 -> 5.5.0

New vulnerabilities: 0
Fixed vulnerabilities: 18
Existing vulnerabilities: 7

---

neuvector/updater

neuvector/updater `` -> sha256:d891da1917a33941520df646147b27ba1b5aa2de8e88db144caa2f683bac3108

New vulnerabilities: 0
Fixed vulnerabilities: 20
Existing vulnerabilities: 0

---

neuvector/scanner

neuvector/scanner `` -> sha256:f1add66e8bc371154d123ff444e39f244b249bd09d1136a28bff7d7777ea3869

New vulnerabilities: 0
Fixed vulnerabilities: 10
Existing vulnerabilities: 7

---

neuvector/enforcer

neuvector/enforcer 5.4.9 -> 5.5.0

New vulnerabilities: 4
Fixed vulnerabilities: 33
Existing vulnerabilities: 25

---

registry1.dso.mil/ironbank/neuvector/neuvector/scanner

registry1.dso.mil/ironbank/neuvector/neuvector/scanner 6 -> 6

New vulnerabilities: 0
Fixed vulnerabilities: 30
Existing vulnerabilities: 166

---

registry1.dso.mil/ironbank/neuvector/neuvector/enforcer

registry1.dso.mil/ironbank/neuvector/neuvector/enforcer 5.4.9 -> 5.5.0

New vulnerabilities: 0
Fixed vulnerabilities: 29
Existing vulnerabilities: 178

---

registry1.dso.mil/ironbank/neuvector/neuvector/controller

registry1.dso.mil/ironbank/neuvector/neuvector/controller 5.4.9 -> 5.5.0

New vulnerabilities: 0
Fixed vulnerabilities: 151
Existing vulnerabilities: 17

---

registry1.dso.mil/ironbank/neuvector/neuvector/manager

registry1.dso.mil/ironbank/neuvector/neuvector/manager 5.4.9 -> 5.5.0

New vulnerabilities: 0
Fixed vulnerabilities: 23
Existing vulnerabilities: 219

---

registry1.dso.mil/ironbank/redhat/ubi/ubi9-minimal

registry1.dso.mil/ironbank/redhat/ubi/ubi9-minimal 9.7 -> 9.7

New vulnerabilities: 0
Fixed vulnerabilities: 23
Existing vulnerabilities: 159

---

---

generated with uds-pk scan compare

waiting on ci

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.