Helm: Option to skip creating aggregate-*-view ClusterRoles #2851
Description
The Helm chart currently creates the following aggregated view ClusterRoles unconditionally:
- aggregate-config-audit-reports-view
- aggregate-exposed-secret-reports-view
- aggregate-vulnerability-reports-view
In the environment used at work, these ClusterRoles need to be manually adjusted after installation.
A key reason is that we have two Trivy Operator installations running in the same cluster (managed by different teams), and they are upgraded on different schedules. Since these ClusterRoles are cluster-scoped and shared, they can cause conflicts between the two installations, which makes upgrades and maintenance more difficult.
Is there an existing Helm values option or a recommended approach to prevent these aggregated view ClusterRoles from being created?
If not, I would like to request a chart option to make the creation of these aggregated view ClusterRoles optional.