Bitnami/charts
2
0
Fork 0
mirror of https://github.com/bitnami/charts.git synced 2026-04-05 00:37:12 +08:00
Code Issues Packages Projects Releases Wiki Activity

[bitnami/flux] Detect non-standard images (#30892)

Browse Source 
* [bitnami/flux] Detect non-standard images

Signed-off-by: Carlos Rodríguez Hernández <carlosrh@vmware.com>

* Update CHANGELOG.md

Signed-off-by: Bitnami Containers <bitnami-bot@vmware.com>

* Update README.md with readme-generator-for-helm

Signed-off-by: Bitnami Containers <bitnami-bot@vmware.com>

* Update NOTES.txt

Signed-off-by: Carlos Rodríguez Hernández <carlosrh@vmware.com>

---------

Signed-off-by: Carlos Rodríguez Hernández <carlosrh@vmware.com>
Signed-off-by: Bitnami Containers <bitnami-bot@vmware.com>
Co-authored-by: Bitnami Containers <bitnami-bot@vmware.com>
This commit is contained in:
Carlos Rodríguez Hernández
2024-12-10 18:29:23 +01:00
committed by GitHub
parent e963f07135
commit a4f4a9c2bd
6 changed files with 31 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
bitnami/flux/CHANGELOG.md
View File

@@ -1,8 +1,14 @@
# Changelog
## 2.3.22 (2024-12-03)
## 2.4.0 (2024-12-10)
* [bitnami/flux] Release 2.3.22 ([#30749](https://github.com/bitnami/charts/pull/30749))
* [bitnami/flux] Detect non-standard images ([#30892](https://github.com/bitnami/charts/pull/30892))
## <small>2.3.22 (2024-12-03)</small>
* [bitnami/*] docs: :memo: Add "Backup & Restore" section (#30711) ([35ab536](https://github.com/bitnami/charts/commit/35ab5363741e7548f4076f04da6e62d10153c60c)), closes [#30711](https://github.com/bitnami/charts/issues/30711)
* [bitnami/*] docs: :memo: Add "Prometheus metrics" (batch 2) (#30662) ([50e0570](https://github.com/bitnami/charts/commit/50e0570f98ab15308af7910b405baa4480e5fe3f)), closes [#30662](https://github.com/bitnami/charts/issues/30662)
* [bitnami/flux] Release 2.3.22 (#30749) ([1ecb342](https://github.com/bitnami/charts/commit/1ecb342be439ce78a2bddb4cf433a9384505c09b)), closes [#30749](https://github.com/bitnami/charts/issues/30749)
## <small>2.3.21 (2024-11-07)</small>

6
bitnami/flux/Chart.lock
View File

@@ -1,6 +1,6 @@
dependencies:
- name: common
repository: oci://registry-1.docker.io/bitnamicharts
version: 2.27.2
digest: sha256:6fd86cc5a4b5094abca1f23c8ec064e75e51eceaded94a5e20977274b2abb576
generated: "2024-12-03T22:47:13.60281967Z"
version: 2.28.0
digest: sha256:5b30f0fa07bb89b01c55fd6258c8ce22a611b13623d4ad83e8fdd1d4490adc74
generated: "2024-12-10T16:59:38.33364+01:00"

2
bitnami/flux/Chart.yaml
View File

@@ -43,4 +43,4 @@ maintainers:
name: flux
sources:
- https://github.com/bitnami/charts/tree/main/bitnami/flux
version: 2.3.22
version: 2.4.0

19
bitnami/flux/README.md
View File

@@ -81,13 +81,14 @@ Install the [Bitnami Kube Prometheus helm chart](https://github.com/bitnami/char
### Global parameters
| Name | Description | Value |
| ----------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------ |
| `global.imageRegistry` | Global Docker image registry | `""` |
| `global.imagePullSecrets` | Global Docker registry secret names as an array | `[]` |
| `global.defaultStorageClass` | Global default StorageClass for Persistent Volume(s) | `""` |
| `global.storageClass` | DEPRECATED: use global.defaultStorageClass instead | `""` |
| `global.compatibility.openshift.adaptSecurityContext` | Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation) | `auto` |
| Name | Description | Value |
| ----------------------------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------- |
| `global.imageRegistry` | Global Docker image registry | `""` |
| `global.imagePullSecrets` | Global Docker registry secret names as an array | `[]` |
| `global.defaultStorageClass` | Global default StorageClass for Persistent Volume(s) | `""` |
| `global.storageClass` | DEPRECATED: use global.defaultStorageClass instead | `""` |
| `global.security.allowInsecureImages` | Allows skipping image verification | `false` |
| `global.compatibility.openshift.adaptSecurityContext` | Adapt the securityContext sections of the deployment to make them compatible with Openshift restricted-v2 SCC: remove runAsUser, runAsGroup and fsGroup and let the platform use their allowed default IDs. Possible values: auto (apply if the detected running cluster is Openshift), force (perform the adaptation always), disabled (do not perform adaptation) | `auto` |
### Common parameters
@@ -1043,6 +1044,10 @@ Find more information about how to deal with common errors related to Bitnami's
## Upgrading
### To 2.4.0
This version introduces image verification for security purposes. To disable it, set `global.security.allowInsecureImages` to `true`. More details at [GitHub issue](https://github.com/bitnami/charts/issues/30850).
### To 2.0.0
This major bump changes the following security defaults:

3
bitnami/flux/templates/NOTES.txt
View File

@@ -56,4 +56,5 @@ Read the upstream flux documentation to start working with the controllers:
{{- include "common.warnings.rollingTag" .Values.kustomizeController.image }}
{{- include "flux.validateValues" . }}
{{- include "common.warnings.resources" (dict "sections" (list "helmController" "imageAutomationController" "imageReflectorController" "kustomizeController" "notificationController" "sourceController" "volumePermissions") "context" $) }}
{{- include "common.warnings.modifiedImages" (dict "images" (list .Values.kustomizeController.image .Values.helmController.image .Values.sourceController.image .Values.notificationController.image .Values.imageAutomationController.image .Values.imageReflectorController.image .Values.volumePermissions.image) "context" $) }}
{{- include "common.warnings.modifiedImages" (dict "images" (list .Values.kustomizeController.image .Values.helmController.image .Values.sourceController.image .Values.notificationController.image .Values.imageAutomationController.image .Values.imageReflectorController.image .Values.volumePermissions.image) "context" $) }}
{{- include "common.errors.insecureImages" (dict "images" (list .Values.kustomizeController.image .Values.helmController.image .Values.sourceController.image .Values.notificationController.image .Values.imageAutomationController.image .Values.imageReflectorController.image .Values.volumePermissions.image) "context" $) }}

5
bitnami/flux/values.yaml
View File

@@ -21,6 +21,11 @@ global:
imagePullSecrets: []
defaultStorageClass: ""
storageClass: ""
## Security parameters
##
security:
## @param global.security.allowInsecureImages Allows skipping image verification
allowInsecureImages: false
## Compatibility adaptations for Kubernetes platforms
##
compatibility: