alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 7 Actions Packages Projects Releases Wiki Activity

increase timeout

Browse Source
This commit is contained in:
Alex Lebens
2024-07-10 18:46:43 -05:00
parent 39794dacc3
commit 89b94556df
1 changed files with 3 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

22
clusters/cl01tl/monitoring/trivy/values.yaml
View File

@@ -5,7 +5,7 @@ trivy-operator:
leaderElectionId: "trivyoperator-lock"
scanJobTTL: ""
scanSecretTTL: ""
scanJobTimeout: 5m
scanJobTimeout: 15m
scanJobsConcurrentLimit: 10
scanNodeCollectorLimit: 1
scanJobsRetryDelay: 30s
@@ -25,7 +25,7 @@ trivy-operator:
accessGlobalSecretsAndServiceAccount: true
builtInTrivyServer: false
builtInServerRegistryInsecure: false
controllerCacheSyncTimeout: "5m"
controllerCacheSyncTimeout: "15m"
trivyServerHealthCheckCacheExpiration: 10h
metricsFindingsEnabled: true
metricsVulnIdEnabled: false
@@ -83,20 +83,13 @@ trivy-operator:
slow: true
ignoreUnfixed: false
offlineScan: false
timeout: "5m0s"
timeout: "15m0s"
resources:
requests:
cpu: 100m
memory: 128M
skipJavaDBUpdate: false
serverInsecure: false
# -- existingSecret if a secret containing gitHubToken, serverToken or serverCustomHeaders has been created outside the chart (e.g external-secrets, sops, etc...).
# Keys must be at least one of the following: trivy.githubToken, trivy.serverToken, trivy.serverCustomHeaders
# Overrides trivy.gitHubToken, trivy.serverToken, trivy.serverCustomHeaders values.
# Note: The secret has to be named "trivy-operator-trivy-config".
# existingSecret: true
dbRegistry: "ghcr.io"
dbRepository: "aquasecurity/trivy-db"
dbRepositoryUsername: ~
@@ -119,10 +112,7 @@ trivy-operator:
requests:
cpu: 100m
memory: 512Mi
# -- valuesFromSecret name of a Secret to apply TRIVY_* environment variables. Will override Helm AND ConfigMap values.
valuesFromSecret: ""
compliance:
failEntriesLimit: 10
reportType: summary
@@ -153,13 +143,7 @@ trivy-operator:
tag: 0
registryUser: ~
registryPassword: ~
# -- existingSecret if a secret containing registry credentials that have been created outside the chart (e.g external-secrets, sops, etc...).
# Keys must be at least one of the following: policies.bundle.oci.user, policies.bundle.oci.password
# Overrides policiesBundle.registryUser, policiesBundle.registryPassword values.
# Note: The secret has to be named "trivy-operator".
existingSecret: false
insecure: false
nodeCollector:
useNodeSelector: true