reorg
This commit is contained in:
Danijel Simeunovic
44
argocd/infra/trivy.yaml
Normal file
44
argocd/infra/trivy.yaml
Normal file
@@ -0,0 +1,44 @@
|
||||
apiVersion: argoproj.io/v1alpha1
|
||||
kind: Application
|
||||
metadata:
|
||||
name: trivy
|
||||
namespace: argocd
|
||||
labels:
|
||||
app.kubernetes.io/name: trivy
|
||||
app.kubernetes.io/part-of: platform
|
||||
app.kubernetes.io/managed-by: argocd
|
||||
finalizers:
|
||||
- resources-finalizer.argocd.argoproj.io
|
||||
spec:
|
||||
project: default
|
||||
|
||||
source:
|
||||
chart: trivy-operator
|
||||
repoURL: https://aquasecurity.github.io/helm-charts
|
||||
targetRevision: v0.0.7 # Update to latest stable version
|
||||
helm:
|
||||
releaseName: trivy-operator
|
||||
parameters:
|
||||
- name: trivy.ignoreUnfixed
|
||||
value: "true"
|
||||
|
||||
destination:
|
||||
server: https://kubernetes.default.svc
|
||||
namespace: kube-system
|
||||
|
||||
syncPolicy:
|
||||
automated:
|
||||
prune: true
|
||||
selfHeal: true
|
||||
allowEmpty: false
|
||||
syncOptions:
|
||||
- CreateNamespace=false # kube-system already exists
|
||||
- Validate=true
|
||||
- ServerSideApply=true
|
||||
timeout: 300s
|
||||
retry:
|
||||
limit: 5
|
||||
backoff:
|
||||
duration: 5s
|
||||
factor: 2
|
||||
maxDuration: 3m
|
||||
Reference in New Issue
Block a user