-
Notifications
You must be signed in to change notification settings - Fork 5
Expand file tree
/
Copy pathvalues.yaml
More file actions
31 lines (26 loc) · 1012 Bytes
/
values.yaml
File metadata and controls
31 lines (26 loc) · 1012 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
image:
repository: devopstales/trivy-image-validator
pullPolicy: Always
tag: "1.0.0"
imagePullSecrets: []
podSecurityContext:
fsGroup: 10001
storage:
enabled: true
size: 1Gi
privateRegistry:
enabled: false
secretNmae: ""
serviceAccount:
create: true
# trivy-image-validator requires a certificate key pair and corresponding certificate authority
# to properly register its webhooks. This can be done in one of 2 ways:
# 1) Use pre build certificate locatid in the docker image. This certificate is valid for:
# trivy-image-validator.validation.svc so the service name mast be trivy-image-validator
# and the namespace wher deployd must be validation
namespace: validation
serviceName: trivy-image-validator
# 2) Let Helm generate a self signed cert, by setting createSelfSignedCert true
# and use cert-manager to inject the CA to the ValidatingWebhookConfiguration
# If letting Kyverno create its own CA or providing your own, make createSelfSignedCert is false
createSelfSignedCert: false