2.28.0: GitHub Registry, reduce URLs for Image Assurance (#146)

Image Assurance 2.29.0:
- Release Github Container Registry Scanning support
- Reduced the number of URLs that need to be accessed by the agents (relevant for Scan Engine Version 2.0.0 only). CloudGuard agents must have connectivity to these region-specific URLs:
   
| Region | URLs accessed by Image Assurance agents |
| --- | --- |
| United States (US) | https://api-cpx.dome9.com, https://api.dome9.com |
| Europe (EU) | https://api-cpx.eu1.dome9.com, https://api.eu1.dome9.com |
| Australia (AU) | https://api-cpx.ap2.dome9.com, https://api.ap2.dome9.com |
| Canada (CA) | https://api-cpx.cace1.dome9.com, https://api.cace1.dome9.com |
| India (IN) | https://api-cpx.ap3.dome9.com, https://api.ap3.dome9.com |
| Singapore (SG) | https://api-cpx.ap1.dome9.com, https://api.ap1.dome9.com |

Security enhancements - all agents:   
- Image Assurance 2.29.0
- Admission Control: Enforcer 2.11.0 & Policy 1.8.0
- Inventory 1.14.0
- Flow-logs 0.14.0
- Runtime Policy 1.8.0

checkpoint/cloudguard/Chart.yaml

@@ -1,5 +1,5 @@
 apiVersion: v2
-appVersion: 2.27.1
+appVersion: 2.28.0
 description: A Helm chart for Check Point CloudGuard Workload Security
 home: https://portal.checkpoint.com
 icon: https://www.checkpoint.com/wp-content/uploads/icon-cloudguard-nav.png
@@ -23,6 +23,8 @@ keywords:
 - harbor
 - jfrog artifactory
 - sonatype nexus
+- ghcr
+- github container registry
 - ecs
 - tanzu
 - k3s
@@ -32,4 +34,4 @@ keywords:
 - gke
 - autopilot
 name: cloudguard
-version: 2.27.1
+version: 2.28.0

checkpoint/cloudguard/defaults.yaml

@@ -69,7 +69,7 @@ inventory:
 
     ## Specify image and tag
     image: checkpoint/consec-inventory-agent
-    tag: 1.13.0
+    tag: 1.14.0
 
     ## Specify existing service account name ("" to create)
     serviceAccountName: ""
@@ -111,7 +111,7 @@ addons:
       priorityClassName: "system-node-critical"
       ## Specify image and tag
       image: checkpoint/consec-imagescan-daemon
-      tag: 2.27.0
+      tag: 2.29.0
 
       ## Specify existing service account name ("" to create)
       serviceAccountName: ""
@@ -133,7 +133,7 @@ addons:
       shim:
         ## Specify image and tag
         image: checkpoint/consec-imagescan-shim
-        tag: 2.27.0
+        tag: 2.29.0
 
         ## Configure resource requests and limits
         ## ref: http://kubernetes.io/docs/user-guide/compute-resources/
@@ -169,7 +169,7 @@ addons:
     engine:
       ## Specify image and tag
       image: checkpoint/consec-imagescan-engine
-      tag: 2.27.0
+      tag: 2.29.0
 
       ## Specify existing service account name ("" to create)
       serviceAccountName: ""
@@ -202,7 +202,7 @@ addons:
     list:
       ## Specify image and tag
       image: checkpoint/consec-imagescan-engine
-      tag: 2.27.0
+      tag: 2.29.0
 
       ## Specify existing service account name ("" to create)
       serviceAccountName: ""
@@ -239,7 +239,7 @@ addons:
       priorityClassName: "system-node-critical"
       ## Specify image and tag
       image: checkpoint/consec-flowlogs-daemon
-      tag: 0.12.0
+      tag: 0.14.0
 
       ## Specify existing service account name ("" to create)
       serviceAccountName: ""
@@ -279,7 +279,7 @@ addons:
     policy:
       ## Specify image and tag
       image: checkpoint/consec-admission-policy
-      tag: 1.7.0
+      tag: 1.8.0
 
       ## Specify existing service account name ("" to create)
       serviceAccountName: ""
@@ -309,7 +309,7 @@ addons:
     enforcer:
       ## Specify image and tag
       image: checkpoint/consec-admission-enforcer
-      tag: 2.10.0
+      tag: 2.11.0
 
       ## Specify existing service account name ("" to create)
       serviceAccountName: ""
@@ -415,7 +415,7 @@ addons:
 
       ## Specify custom image ("" to use default)
       image: checkpoint/consec-runtime-policy
-      tag: 1.7.0
+      tag: 1.8.0
 
       ## Specify existing service account name ("" to create)
       serviceAccountName: ""