-
Notifications
You must be signed in to change notification settings - Fork 195
/
Copy pathvalues.yaml
113 lines (105 loc) · 2.68 KB
/
values.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
global:
# Used for connector tunnel
connectServerUrl: https://connect.codesec.aquasec.com
# Used for scaning scheduling
scanServerUrl: https://scan.codesec.aquasec.com
# Used for scanning upstream
aquaServerUrl: https://api.supply-chain.cloud.aquasec.com
# Used for authentication
cspmServerUrl: https://api.cloudsploit.com
credentials:
createSecret: true
secretName: aqua-codesec-secrets
aqua_key:
aqua_secret:
# SCM configurations:
integration:
# Should be one of: github|gitlab_server|azure|jenkins|etc...
source:
url:
username:
password:
# Optionally add ssl ca cert and client cert/key for ssl connection to the SCM/CI server:
ssl:
enabled: false
# ca: |
# -----BEGIN CERTIFICATE-----
# ca-cert
# -----END CERTIFICATE
# cert: |
# -----BEGIN CERTIFICATE-----
# client-cert
# -----END CERTIFICATE-----
# key: |
# -----BEGIN RSA PRIVATE KEY-----
# secure key
# -----BEGIN RSA PRIVATE KEY-----
# Proxy configurations:
proxy:
# Specify http_proxy when you want to proxy requests that use http:// protocol
# Example values:
# http_proxy: http://proxy.example.com:8080
# OR
# http_proxy: http://admin:[email protected]
http_proxy:
# Specify https_proxy when you want to proxy requests that use https:// protocol
# Example values:
# https_proxy: https://proxy.example.com:8080
# OR
# https_proxy: https://admin:[email protected]
https_proxy:
# Specify no_proxy when you want to exclude specific hosts from proxying
# You can specify multiple hosts by separating them with commas
# Example values:
# no_proxy: my.awesomeintegration.com
# OR
# no_proxy: my.awesomeintegration.com,my.awesomeservice.com
# You can observe in this file under global key the domains that are used to communicate with the codesec servers
no_proxy:
connect:
image: docker.io/aquasec/codesec-connector:minified
pullPolicy: Always
port: 9999
client_url:
service:
port: 9999
type: ClusterIP
annotations: {}
resources: {}
nodeSelector: {}
affinity: {}
tolerations: {}
hostAliases:
extraEnv: {}
scan:
image: docker.io/aquasec/codesec-scanner:latest
pullPolicy: Always
replicas: 1
resources: {}
nodeSelector: {}
affinity: {}
tolerations: {}
hostAliases:
extraEnv: {}
remediation:
enabled: true
image: docker.io/aquasec/codesec-remediation:latest
pullPolicy: Always
replicas: 1
resources: {}
nodeSelector: {}
affinity: {}
tolerations: {}
hostAliases:
extraEnv: {}
bleedsecrets:
enabled: true
image: docker.io/aquasec/codesec-bleed-secrets:latest
pullPolicy: Always
replicas: 1
resources: {}
nodeSelector: {}
affinity: {}
tolerations: {}
hostAliases:
extraEnv: {}