From f704339f59f46f1dd17499afd5df86372111f27a Mon Sep 17 00:00:00 2001
From: Alex Lebens <alexanderlebens@gmail.com>
Date: Wed, 18 Mar 2026 21:34:33 -0500
Subject: [PATCH] feat: remove trivy

---
 clusters/cl01tl/helm/trivy/Chart.lock         |  6 --
 clusters/cl01tl/helm/trivy/Chart.yaml         | 23 -----
 .../helm/trivy/templates/namespace.yaml       | 11 ---
 clusters/cl01tl/helm/trivy/values.yaml        | 91 -------------------
 4 files changed, 131 deletions(-)
 delete mode 100644 clusters/cl01tl/helm/trivy/Chart.lock
 delete mode 100644 clusters/cl01tl/helm/trivy/Chart.yaml
 delete mode 100644 clusters/cl01tl/helm/trivy/templates/namespace.yaml
 delete mode 100644 clusters/cl01tl/helm/trivy/values.yaml

diff --git a/clusters/cl01tl/helm/trivy/Chart.lock b/clusters/cl01tl/helm/trivy/Chart.lock
deleted file mode 100644
index fcf58bd31..000000000
--- a/clusters/cl01tl/helm/trivy/Chart.lock
+++ /dev/null
@@ -1,6 +0,0 @@
-dependencies:
-- name: trivy-operator
-  repository: https://aquasecurity.github.io/helm-charts/
-  version: 0.32.1
-digest: sha256:7e25850fc3115f52e6c65151c76668929eee6713228e935862d9f156397c2ede
-generated: "2026-03-15T17:21:41.373519-05:00"
diff --git a/clusters/cl01tl/helm/trivy/Chart.yaml b/clusters/cl01tl/helm/trivy/Chart.yaml
deleted file mode 100644
index d1b410afc..000000000
--- a/clusters/cl01tl/helm/trivy/Chart.yaml
+++ /dev/null
@@ -1,23 +0,0 @@
-apiVersion: v2
-name: trivy
-version: 1.0.0
-description: Trivy
-keywords:
-  - trivy
-  - vulnerability
-  - monitoring
-  - kubernetes
-home: https://wiki.alexlebens.dev/s/
-sources:
-  - https://github.com/aquasecurity/trivy
-  - https://github.com/aquasecurity/trivy-operator
-  - https://github.com/aquasecurity/trivy-operator/tree/main/deploy/helm
-maintainers:
-  - name: alexlebens
-dependencies:
-  - name: trivy-operator
-    version: 0.32.1
-    repository: https://aquasecurity.github.io/helm-charts/
-icon: https://raw.githubusercontent.com/aquasecurity/trivy/main/docs/imgs/logo.png
-# renovate: github=aquasecurity/trivy
-appVersion: 0.32.1
diff --git a/clusters/cl01tl/helm/trivy/templates/namespace.yaml b/clusters/cl01tl/helm/trivy/templates/namespace.yaml
deleted file mode 100644
index eb7c54ed8..000000000
--- a/clusters/cl01tl/helm/trivy/templates/namespace.yaml
+++ /dev/null
@@ -1,11 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  name: trivy
-  labels:
-    app.kubernetes.io/name: trivy
-    app.kubernetes.io/instance: {{ .Release.Name }}
-    app.kubernetes.io/part-of: {{ .Release.Name }}
-    pod-security.kubernetes.io/audit: privileged
-    pod-security.kubernetes.io/enforce: privileged
-    pod-security.kubernetes.io/warn: privileged
diff --git a/clusters/cl01tl/helm/trivy/values.yaml b/clusters/cl01tl/helm/trivy/values.yaml
deleted file mode 100644
index 7a8e4fcfc..000000000
--- a/clusters/cl01tl/helm/trivy/values.yaml
+++ /dev/null
@@ -1,91 +0,0 @@
-trivy-operator:
-  targetWorkloads: "pod,replicaset,replicationcontroller,statefulset,daemonset,cronjob,job"
-  operator:
-    replicas: 1
-    scanJobsConcurrentLimit: 1
-    vulnerabilityScannerEnabled: true
-    sbomGenerationEnabled: false
-    clusterSbomCacheEnabled: false
-    configAuditScannerEnabled: true
-    rbacAssessmentScannerEnabled: true
-    infraAssessmentScannerEnabled: false
-    clusterComplianceEnabled: false
-    vulnerabilityScannerScanOnlyCurrentRevisions: true
-    accessGlobalSecretsAndServiceAccount: true
-    metricsFindingsEnabled: true
-    exposedSecretScannerEnabled: true
-  serviceMonitor:
-    enabled: true
-  trivy:
-    createConfig: true
-    image:
-      registry: mirror.gcr.io
-      repository: aquasec/trivy
-      tag: 0.69.3
-    storageClassEnabled: true
-    storageClassName: ceph-block
-    storageSize: "10Gi"
-    registry:
-      mirror:
-        "registry-1.docker.io": proxy-registry-1.docker.io
-        "quay.io": proxy-quay.io
-        "registry.k8s.io": proxy-registry.k8s
-        "gcr.io": proxy-gcr.io
-        "ghcr.io": proxy-ghcr.io
-        "hub.docker": proxy-hub.docker
-    severity: UNKNOWN,LOW,MEDIUM,HIGH,CRITICAL
-    slow: true
-    resources:
-      requests:
-        cpu: 100m
-        memory: 128M
-    supportedConfigAuditKinds: "Workload,Service,Role,ClusterRole,NetworkPolicy,Ingress,LimitRange,ResourceQuota"
-    server:
-      resources:
-        requests:
-          cpu: 200m
-          memory: 512Mi
-      replicas: 1
-  nodeCollector:
-    tolerations:
-      - key: node-role.kubernetes.io/control-plane
-        operator: Exists
-        effect: NoSchedule
-    volumeMounts:
-      - name: var-lib-etcd
-        mountPath: /var/lib/etcd
-        readOnly: true
-      - name: var-lib-kubelet
-        mountPath: /var/lib/kubelet
-        readOnly: true
-      - name: var-lib-kube-scheduler
-        mountPath: /var/lib/kube-scheduler
-        readOnly: true
-      - name: var-lib-kube-controller-manager
-        mountPath: /var/lib/kube-controller-manager
-        readOnly: true
-      - name: etc-kubernetes
-        mountPath: /etc/kubernetes
-        readOnly: true
-      - name: etc-cni-netd
-        mountPath: /etc/cni/net.d/
-        readOnly: true
-    volumes:
-      - name: var-lib-etcd
-        hostPath:
-          path: /var/lib/etcd
-      - name: var-lib-kubelet
-        hostPath:
-          path: /var/lib/kubelet
-      - name: var-lib-kube-scheduler
-        hostPath:
-          path: /var/lib/kube-scheduler
-      - name: var-lib-kube-controller-manager
-        hostPath:
-          path: /var/lib/kube-controller-manager
-      - name: etc-kubernetes
-        hostPath:
-          path: /etc/kubernetes
-      - name: etc-cni-netd
-        hostPath:
-          path: /etc/cni/net.d/