alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 7 Actions Packages Projects Releases Wiki Activity

enable some scanners

Browse Source
This commit is contained in:
Alex Lebens
2024-07-12 16:13:08 -05:00
parent 7d00efb1ee
commit f6eb1e9db4
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
clusters/cl01tl/monitoring/trivy/values.yaml
View File

@@ -1,6 +1,6 @@
trivy-operator: trivy-operator:
targetNamespaces: authentik,ghost,matrix-synapse,element-web,outline,freshrss,code-server,vikunja,cops,gitea targetNamespaces: authentik,ghost,matrix-synapse,element-web,outline,freshrss,code-server,vikunja,cops,gitea
excludeNamespaces: "" excludeNamespaces: kube-system
targetWorkloads: "pod,replicaset,replicationcontroller,statefulset,daemonset,cronjob,job" targetWorkloads: "pod,replicaset,replicationcontroller,statefulset,daemonset,cronjob,job"
operator: operator:
replicas: 2 replicas: 2
@@ -43,9 +43,9 @@ trivy-operator:
valuesFromConfigMap: "" valuesFromConfigMap: ""
valuesFromSecret: "" valuesFromSecret: ""
sbomGenerationEnabled: true sbomGenerationEnabled: true
clusterSbomCacheEnabled: true clusterSbomCacheEnabled: true
clusterComplianceEnabled: false clusterComplianceEnabled: true
configAuditScannerEnabled: false configAuditScannerEnabled: true
exposedSecretScannerEnabled: true exposedSecretScannerEnabled: true
infraAssessmentScannerEnabled: false infraAssessmentScannerEnabled: false
rbacAssessmentScannerEnabled: true rbacAssessmentScannerEnabled: true