49 lines
1.1 KiB
YAML
49 lines
1.1 KiB
YAML
apiVersion: argoproj.io/v1alpha1
|
|
kind: Application
|
|
metadata:
|
|
name: trivy
|
|
namespace: argocd
|
|
annotations:
|
|
argocd.argoproj.io/hook: PreSync
|
|
argocd.argoproj.io/hook-delete-policy: HookSucceeded
|
|
argocd.argoproj.io/sync-wave: "1"
|
|
labels:
|
|
app.kubernetes.io/name: trivy
|
|
app.kubernetes.io/part-of: platform
|
|
app.kubernetes.io/managed-by: argocd
|
|
finalizers:
|
|
- resources-finalizer.argocd.argoproj.io
|
|
spec:
|
|
project: default
|
|
|
|
source:
|
|
chart: trivy-operator
|
|
repoURL: https://aquasecurity.github.io/helm-charts
|
|
targetRevision: v0.0.7 # Update to latest stable version
|
|
helm:
|
|
releaseName: trivy-operator
|
|
parameters:
|
|
- name: trivy.ignoreUnfixed
|
|
value: "true"
|
|
|
|
destination:
|
|
server: https://kubernetes.default.svc
|
|
namespace: kube-system
|
|
|
|
syncPolicy:
|
|
automated:
|
|
prune: true
|
|
selfHeal: true
|
|
allowEmpty: false
|
|
syncOptions:
|
|
- CreateNamespace=false # kube-system already exists
|
|
- Validate=true
|
|
- ServerSideApply=true
|
|
timeout: 300s
|
|
retry:
|
|
limit: 5
|
|
backoff:
|
|
duration: 5s
|
|
factor: 2
|
|
maxDuration: 3m
|