gsdavidp/home-server
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update Trivy configuration paths in Ansible tasks and Argo CD application manifests to reflect new directory structure. Adjust references in values.yaml and dashboard-values.yaml for consistency and clarity in deployment processes.

Browse Source
This commit is contained in:
Nikholas Pcenicni
2026-05-14 17:21:49 -04:00
parent c347416668
commit e48283fc43
5 changed files with 7 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
ansible/roles/noble_trivy/tasks/main.yml
View File

@@ -56,7 +56,7 @@
- kubectl - kubectl
- apply - apply
- -f - -f
- "{{ noble_repo_root }}/clusters/noble/bootstrap/trivy/namespace.yaml" - "{{ noble_repo_root }}/clusters/noble/apps/trivy/namespace.yaml"
environment: environment:
KUBECONFIG: "{{ noble_kubeconfig }}" KUBECONFIG: "{{ noble_kubeconfig }}"
changed_when: true changed_when: true
@@ -74,7 +74,7 @@
- --version - --version
- "{{ noble_trivy_chart_version }}" - "{{ noble_trivy_chart_version }}"
- -f - -f
- "{{ noble_repo_root }}/clusters/noble/bootstrap/trivy/values.yaml" - "{{ noble_repo_root }}/clusters/noble/apps/trivy/values.yaml"
- --force-conflicts - --force-conflicts
- --wait - --wait
- --timeout - --timeout

2
clusters/noble/apps/trivy/dashboard-values.yaml
View File

@@ -5,7 +5,7 @@
# Sync **noble-trivy-operator** first so CRDs and reports exist. DNS: host below → Traefik LB. # Sync **noble-trivy-operator** first so CRDs and reports exist. DNS: host below → Traefik LB.
kubernetes: kubernetes:
# Match **clusters/noble/bootstrap/trivy/values.yaml** operator feature flags (no SBOM / cluster compliance cache). # Match **clusters/noble/apps/trivy/values.yaml** operator feature flags (no SBOM / cluster compliance cache).
trivyUseClusterComplianceReport: false trivyUseClusterComplianceReport: false
trivyUseClusterSbomReport: false trivyUseClusterSbomReport: false
trivyUseClusterVulnerabilityReport: false trivyUseClusterVulnerabilityReport: false

4
clusters/noble/apps/trivy/values.yaml
View File

@@ -6,9 +6,9 @@
# #
# Manual Helm (if not using Argo): # Manual Helm (if not using Argo):
# helm repo add aqua https://aquasecurity.github.io/helm-charts/ && helm repo update # helm repo add aqua https://aquasecurity.github.io/helm-charts/ && helm repo update
# kubectl apply -f clusters/noble/bootstrap/trivy/namespace.yaml # kubectl apply -f clusters/noble/apps/trivy/namespace.yaml
# helm upgrade --install trivy-operator aqua/trivy-operator -n trivy-system \ # helm upgrade --install trivy-operator aqua/trivy-operator -n trivy-system \
# --version 0.32.1 -f clusters/noble/bootstrap/trivy/values.yaml --wait --timeout 15m # --version 0.32.1 -f clusters/noble/apps/trivy/values.yaml --wait --timeout 15m
# #
# Inspect: kubectl get vulnerabilityreports,configauditreports -A # Inspect: kubectl get vulnerabilityreports,configauditreports -A
# Docs: https://aquasecurity.github.io/trivy-operator/ # Docs: https://aquasecurity.github.io/trivy-operator/

2
clusters/noble/bootstrap/argocd/app-of-apps/trivy-dashboard-application.yaml
View File

@@ -15,7 +15,7 @@ spec:
helm: helm:
releaseName: trivy-operator-dashboard releaseName: trivy-operator-dashboard
valueFiles: valueFiles:
- $values/clusters/noble/bootstrap/trivy/dashboard-values.yaml - $values/clusters/noble/apps/trivy/dashboard-values.yaml
- repoURL: https://gitea.pcenicni.ca/gsdavidp/home-server.git - repoURL: https://gitea.pcenicni.ca/gsdavidp/home-server.git
targetRevision: HEAD targetRevision: HEAD
ref: values ref: values

2
clusters/noble/bootstrap/argocd/app-of-apps/trivy-operator-application.yaml
View File

@@ -15,7 +15,7 @@ spec:
helm: helm:
releaseName: trivy-operator releaseName: trivy-operator
valueFiles: valueFiles:
- $values/clusters/noble/bootstrap/trivy/values.yaml - $values/clusters/noble/apps/trivy/values.yaml
- repoURL: https://gitea.pcenicni.ca/gsdavidp/home-server.git - repoURL: https://gitea.pcenicni.ca/gsdavidp/home-server.git
targetRevision: HEAD targetRevision: HEAD
ref: values ref: values