alexlebens/infrastructure
1
0
Fork 0
Code Issues 1 Pull Requests 2 Actions Activity
Files
4c1db7e0dd7a498acfc321d12d134a45e1547017
infrastructure/clusters/cl01tl/manifests/kube-prometheus-stack/Deployment-kube-prometheus-stack-operator.yaml
gitea-bot 8a8e3e9c7c Automated Manifest Update (#4889) 
This PR contains newly rendered Kubernetes manifests automatically generated by the CI workflow.

### Details
- **Trigger**: `pull_request` by `@alexlebens`
- **Commit**: `6707b9d` (on `6707b9d3a1d69446b973a92964e3d133340b1561`)
- **Charts Updated**: `kube-prometheus-stack`

### Update Details (2026-03-20 00:11 UTC)
- **Trigger**: `pull_request` by `@alexlebens`
- **Commit**: `3ebc4ad` (on `3ebc4adee9ad6598b9eacc3bce6cb7b400583125`)
- **Charts Updated**: `qbittorrent`

### Update Details (2026-03-20 00:13 UTC)
- **Trigger**: `pull_request` by `@alexlebens`
- **Commit**: `e26e972` (on `e26e97222bfbd75c7b0995ab351bf2771f50f422`)
- **Charts Updated**: `prometheus-operator-crds`

### Update Details (2026-03-20 00:22 UTC)
- **Trigger**: `pull_request` by `@alexlebens`
- **Commit**: `e3670d6` (on `e3670d6f3b5697fae50aae0ca1b619270fb496e9`)
- **Charts Updated**: `immich`

### Update Details (2026-03-20 00:28 UTC)
- **Trigger**: `workflow_dispatch` by `@alexlebens`
- **Commit**: `e3670d6` (on `main`)
- **Charts Updated**: `audiobookshelf`

Reviewed-on: #4889
Co-authored-by: gitea-bot <gitea-bot@alexlebens.net>
Co-committed-by: gitea-bot <gitea-bot@alexlebens.net>
2026-03-20 01:01:38 +00:00

111 lines
3.8 KiB
YAML
Raw Blame History

apiVersion: apps/v1
kind: Deployment
metadata:
name: kube-prometheus-stack-operator
namespace: kube-prometheus-stack
labels:
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/instance: kube-prometheus-stack
app.kubernetes.io/version: "82.12.0"
app.kubernetes.io/part-of: kube-prometheus-stack
chart: kube-prometheus-stack-82.12.0
release: "kube-prometheus-stack"
heritage: "Helm"
app: kube-prometheus-stack-operator
app.kubernetes.io/name: kube-prometheus-stack-prometheus-operator
app.kubernetes.io/component: prometheus-operator
spec:
replicas: 1
revisionHistoryLimit: 10
selector:
matchLabels:
app: kube-prometheus-stack-operator
release: "kube-prometheus-stack"
template:
metadata:
labels:
app.kubernetes.io/managed-by: Helm
app.kubernetes.io/instance: kube-prometheus-stack
app.kubernetes.io/version: "82.12.0"
app.kubernetes.io/part-of: kube-prometheus-stack
chart: kube-prometheus-stack-82.12.0
release: "kube-prometheus-stack"
heritage: "Helm"
app: kube-prometheus-stack-operator
app.kubernetes.io/name: kube-prometheus-stack-prometheus-operator
app.kubernetes.io/component: prometheus-operator
spec:
containers:
- name: kube-prometheus-stack
image: "quay.io/prometheus-operator/prometheus-operator:v0.89.0"
imagePullPolicy: "IfNotPresent"
args:
- --kubelet-service=kube-system/kube-prometheus-stack-kubelet
- --kubelet-endpoints=true
- --kubelet-endpointslice=false
- --localhost=127.0.0.1
- --prometheus-config-reloader=quay.io/prometheus-operator/prometheus-config-reloader:v0.89.0
- --config-reloader-cpu-request=0
- --config-reloader-cpu-limit=0
- --config-reloader-memory-request=0
- --config-reloader-memory-limit=0
- --thanos-default-base-image=quay.io/thanos/thanos:v0.41.0
- --secret-field-selector=type!=kubernetes.io/dockercfg,type!=kubernetes.io/service-account-token,type!=helm.sh/release.v1
- --web.enable-tls=true
- --web.cert-file=/cert/cert
- --web.key-file=/cert/key
- --web.listen-address=:10250
- --web.tls-min-version=VersionTLS13
ports:
- containerPort: 10250
name: https
env:
- name: GOGC
value: "30"
resources: {}
securityContext:
allowPrivilegeEscalation: false
capabilities:
drop:
- ALL
readOnlyRootFilesystem: true
volumeMounts:
- name: tls-secret
mountPath: /cert
readOnly: true
readinessProbe:
httpGet:
path: /healthz
port: https
scheme: HTTPS
initialDelaySeconds: 0
periodSeconds: 10
timeoutSeconds: 1
successThreshold: 1
failureThreshold: 3
livenessProbe:
httpGet:
path: /healthz
port: https
scheme: HTTPS
initialDelaySeconds: 0
periodSeconds: 10
timeoutSeconds: 1
successThreshold: 1
failureThreshold: 3
volumes:
- name: tls-secret
secret:
defaultMode: 420
secretName: kube-prometheus-stack-admission
securityContext:
fsGroup: 65534
runAsGroup: 65534
runAsNonRoot: true
runAsUser: 65534
seccompProfile:
type: RuntimeDefault
serviceAccountName: kube-prometheus-stack-operator
automountServiceAccountToken: true
terminationGracePeriodSeconds: 30
Reference in New Issue View Git Blame Copy Permalink