alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 5 Actions Activity

tmp/trivy #4829

Merged
alexlebens merged 2 commits from tmp/trivy into main 2026-03-18 03:45:51 +00:00
Conversation 0 Commits 2 Files Changed 1 +8 -4
1 changed files with 8 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
clusters/cl01tl/helm/trivy/values.yaml
View File

@@ -2,13 +2,13 @@ trivy-operator:
targetWorkloads: "pod,replicaset,replicationcontroller,statefulset,daemonset,cronjob,job" targetWorkloads: "pod,replicaset,replicationcontroller,statefulset,daemonset,cronjob,job"
operator: operator:
replicas: 1 replicas: 1
scanJobsConcurrentLimit: 3 scanJobsConcurrentLimit: 1
vulnerabilityScannerEnabled: true vulnerabilityScannerEnabled: true
sbomGenerationEnabled: true sbomGenerationEnabled: false
clusterSbomCacheEnabled: true clusterSbomCacheEnabled: false
configAuditScannerEnabled: true configAuditScannerEnabled: true
rbacAssessmentScannerEnabled: true rbacAssessmentScannerEnabled: true
infraAssessmentScannerEnabled: true infraAssessmentScannerEnabled: false
clusterComplianceEnabled: false clusterComplianceEnabled: false
vulnerabilityScannerScanOnlyCurrentRevisions: true vulnerabilityScannerScanOnlyCurrentRevisions: true
accessGlobalSecretsAndServiceAccount: true accessGlobalSecretsAndServiceAccount: true
@@ -47,6 +47,10 @@ trivy-operator:
memory: 512Mi memory: 512Mi
replicas: 1 replicas: 1
nodeCollector: nodeCollector:
tolerations:
- key: node-role.kubernetes.io/control-plane
operator: Exists
effect: NoSchedule
volumeMounts: volumeMounts:
- name: var-lib-etcd - name: var-lib-etcd
mountPath: /var/lib/etcd mountPath: /var/lib/etcd