From 55c891b33226488128ab63eae906b95f08f08a81 Mon Sep 17 00:00:00 2001 From: Alex Lebens Date: Sun, 15 Mar 2026 17:47:45 -0500 Subject: [PATCH 1/4] feat: remove systemd mounts --- clusters/cl01tl/helm/trivy/values.yaml | 40 ++++++++++++++++++++++++++ 1 file changed, 40 insertions(+) diff --git a/clusters/cl01tl/helm/trivy/values.yaml b/clusters/cl01tl/helm/trivy/values.yaml index 5d6cce425..fd4220dd4 100644 --- a/clusters/cl01tl/helm/trivy/values.yaml +++ b/clusters/cl01tl/helm/trivy/values.yaml @@ -2,6 +2,7 @@ trivy-operator: targetWorkloads: "pod,replicaset,replicationcontroller,statefulset,daemonset,cronjob,job" operator: replicas: 1 + scanJobsConcurrentLimit: 3 vulnerabilityScannerEnabled: true sbomGenerationEnabled: true clusterSbomCacheEnabled: true @@ -45,3 +46,42 @@ trivy-operator: cpu: 200m memory: 512Mi replicas: 1 +nodeCollector: + volumeMounts: + - name: var-lib-etcd + mountPath: /var/lib/etcd + readOnly: true + - name: var-lib-kubelet + mountPath: /var/lib/kubelet + readOnly: true + - name: var-lib-kube-scheduler + mountPath: /var/lib/kube-scheduler + readOnly: true + - name: var-lib-kube-controller-manager + mountPath: /var/lib/kube-controller-manager + readOnly: true + - name: etc-kubernetes + mountPath: /etc/kubernetes + readOnly: true + - name: etc-cni-netd + mountPath: /etc/cni/net.d/ + readOnly: true + volumes: + - name: var-lib-etcd + hostPath: + path: /var/lib/etcd + - name: var-lib-kubelet + hostPath: + path: /var/lib/kubelet + - name: var-lib-kube-scheduler + hostPath: + path: /var/lib/kube-scheduler + - name: var-lib-kube-controller-manager + hostPath: + path: /var/lib/kube-controller-manager + - name: etc-kubernetes + hostPath: + path: /etc/kubernetes + - name: etc-cni-netd + hostPath: + path: /etc/cni/net.d/ -- 2.49.1 From 773dbadfdf62091a802ca60f6ce0c538b7d04866 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 15 Mar 2026 22:34:42 +0000 Subject: [PATCH 2/4] chore(deps): update ghcr.io/linuxserver/plex:1.43.0 docker digest to 84f8646 (#4773) --- clusters/cl01tl/helm/plex/values.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/clusters/cl01tl/helm/plex/values.yaml b/clusters/cl01tl/helm/plex/values.yaml index e8683b332..1ee25cfd4 100644 --- a/clusters/cl01tl/helm/plex/values.yaml +++ b/clusters/cl01tl/helm/plex/values.yaml @@ -9,7 +9,7 @@ plex: main: image: repository: ghcr.io/linuxserver/plex - tag: 1.43.0@sha256:79dfc89947410ec120a3e34cf68f746f6f154de20772e6f27b9998ca9bd65a5e + tag: 1.43.0@sha256:84f8646e799f6636876ab4f283d9fc8f6c51d56098ea74cba82bfb85074b68df pullPolicy: IfNotPresent env: - name: TZ -- 2.49.1 From c63c3b73d3c34226434ff36b26ea80f7dc242923 Mon Sep 17 00:00:00 2001 From: Renovate Bot Date: Sun, 15 Mar 2026 22:50:30 +0000 Subject: [PATCH 3/4] chore(deps): update harbor.alexlebens.net/images/site-documentation docker tag to v0.3.0 (#4775) MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This PR contains the following updates: | Package | Update | Change | |---|---|---| | [harbor.alexlebens.net/images/site-documentation](https://gitea.alexlebens.dev/alexlebens/site-documentation) | minor | `0.2.0` → `0.3.0` | --- ### Release Notes
alexlebens/site-documentation (harbor.alexlebens.net/images/site-documentation) ### [`v0.3.0`](https://gitea.alexlebens.dev/alexlebens/site-documentation/blob/HEAD/CHANGELOG.md#030-2026-03-15) [Compare Source](https://gitea.alexlebens.dev/alexlebens/site-documentation/compare/0.2.0...0.3.0) ##### Features - add and update pre-commit ([972bbff](http://gitea-http.gitea:3000/alexlebens/site-documentation/commit/972bbffb41020489508660c261559b0e6c806ca6))
--- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied. ♻ **Rebasing**: Whenever PR is behind base branch, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, check this box --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate). Reviewed-on: https://gitea.alexlebens.dev/alexlebens/infrastructure/pulls/4775 Co-authored-by: Renovate Bot Co-committed-by: Renovate Bot --- clusters/cl01tl/helm/site-documentation/values.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/clusters/cl01tl/helm/site-documentation/values.yaml b/clusters/cl01tl/helm/site-documentation/values.yaml index 1f0fd561c..f7e9b9b9b 100644 --- a/clusters/cl01tl/helm/site-documentation/values.yaml +++ b/clusters/cl01tl/helm/site-documentation/values.yaml @@ -11,7 +11,7 @@ site-documentation: main: image: repository: harbor.alexlebens.net/images/site-documentation - tag: 0.2.0 + tag: 0.3.0 pullPolicy: IfNotPresent resources: requests: -- 2.49.1 From b767fc5dfad409fe488f562faddaad74de01f7ec Mon Sep 17 00:00:00 2001 From: Alex Lebens Date: Mon, 16 Mar 2026 00:14:44 -0500 Subject: [PATCH 4/4] feat: specificy branch --- renovate.json | 3 +++ 1 file changed, 3 insertions(+) diff --git a/renovate.json b/renovate.json index e823b962d..63c84223f 100644 --- a/renovate.json +++ b/renovate.json @@ -57,6 +57,9 @@ "labels": [], "prHourlyLimit": 0, "prConcurrentLimit": 0, + "baseBranches": [ + "main" + ], "packageRules": [ { "description": "Label charts", -- 2.49.1