Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

fix: update olm defaults #2138

Merged
merged 2 commits into from
Jun 13, 2024
Merged

fix: update olm defaults #2138

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
20aaa57
fix: update olm defaults
chen-keinan Jun 13, 2024
a440296
fix: update olm defaults
chen-keinan Jun 13, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion deploy/helm/README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ Keeps security report resources updated
| affinity | object | `{}` | affinity set the operator affinity |
| automountServiceAccountToken | bool | `true` | automountServiceAccountToken the flag to enable automount for service account token |
| compliance.cron | string | `"0 */6 * * *"` | cron this flag control the cron interval for compliance report generation |
| compliance.failEntriesLimit | int | `10` | failEntriesLimit the flag to limit the number of fail entries per control check in the cluster compliance detail report |
| compliance.failEntriesLimit | int | `10` | failEntriesLimit the flag to limit the number of fail entries per control check in the cluster compliance detail report this limit is for preventing the report from being too large per control checks |
| compliance.reportType | string | `"summary"` | reportType this flag control the type of report generated (summary or all) |
| excludeNamespaces | string | `""` | excludeNamespaces is a comma separated list of namespaces (or glob patterns) to be excluded from scanning. Only applicable in the all namespaces install mode, i.e. when the targetNamespaces values is a blank string. |
| fullnameOverride | string | `""` | fullnameOverride override operator full name |
Expand Down
1 change: 1 addition & 0 deletions deploy/helm/values.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -594,6 +594,7 @@ trivy:

compliance:
# -- failEntriesLimit the flag to limit the number of fail entries per control check in the cluster compliance detail report
# this limit is for preventing the report from being too large per control checks
failEntriesLimit: 10
# -- reportType this flag control the type of report generated (summary or all)
reportType: summary
Expand Down
4 changes: 2 additions & 2 deletions pkg/trivyoperator/config.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -114,8 +114,8 @@ func GetDefaultConfig() ConfigData {
KeyScanJobcompressLogs: "true",
keyComplianceFailEntriesLimit: "10",
KeyReportRecordFailedChecksOnly: "true",
KeyNodeCollectorImageRef: "ghcr.io/aquasecurity/node-collector:0.1.2",
KeyPoliciesBundleOciRef: "ghcr.io/aquasecurity/trivy-policies:0",
KeyNodeCollectorImageRef: "ghcr.io/aquasecurity/node-collector:0.2.1",
KeyPoliciesBundleOciRef: "ghcr.io/aquasecurity/trivy-checks:0",
}
}

Expand Down
Loading