Mayne0213
321685822f
- Add application.yaml for ArgoCD app-of-apps - Add kustomization.yaml with security components - Add renovate.json for automated updates - Update all component argocd.yaml repoURLs to security repo Components: authelia, vault, external-secrets, falco, trivy
44 lines
1.0 KiB
YAML
44 lines
1.0 KiB
YAML
apiVersion: argoproj.io/v1alpha1
|
|
kind: Application
|
|
metadata:
|
|
name: trivy
|
|
namespace: argocd
|
|
finalizers:
|
|
- resources-finalizer.argocd.argoproj.io
|
|
spec:
|
|
project: default
|
|
sources:
|
|
- repoURL: https://aquasecurity.github.io/helm-charts
|
|
chart: trivy-operator
|
|
targetRevision: 0.31.0
|
|
helm:
|
|
valueFiles:
|
|
- $values/trivy/helm-values.yaml
|
|
- repoURL: https://github.com/K3S-HOME/security.git
|
|
targetRevision: main
|
|
ref: values
|
|
- repoURL: https://github.com/K3S-HOME/security.git
|
|
targetRevision: main
|
|
path: trivy
|
|
destination:
|
|
server: https://kubernetes.default.svc
|
|
namespace: trivy-system
|
|
syncPolicy:
|
|
automated:
|
|
prune: true
|
|
selfHeal: true
|
|
syncOptions:
|
|
- CreateNamespace=true
|
|
- PrunePropagationPolicy=foreground
|
|
- PruneLast=true
|
|
retry:
|
|
limit: 5
|
|
backoff:
|
|
duration: 5s
|
|
factor: 2
|
|
maxDuration: 3m
|
|
managedNamespaceMetadata:
|
|
labels:
|
|
goldilocks.fairwinds.com/enabled: 'true'
|
|
revisionHistoryLimit: 10
|