From 9b5b1cf7a197f442ec2c30776d37aa182b1f36a3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 11 Nov 2024 07:18:06 +0100 Subject: [PATCH 01/26] Update Crossplane metadata and add version 1.18.0 (#453) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.18.0.yml | 385 ++++++++++++++++++ 1 file changed, 385 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.18.0.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.18.0.yml b/repo/packages/crossplane.packages.kadras.io/1.18.0.yml new file mode 100644 index 0000000..4f7afc0 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.18.0.yml @@ -0,0 +1,385 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.18.0 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2024-11-11T06:15:39Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:a84cbb46327ef92b717799f0a13e321c320146dd2cfeaf27280410716a2060ee + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + dnsPolicy: + default: "" + description: Specify the `dnsPolicy` to be used by the Crossplane pod. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + function: + properties: + packages: + default: [] + description: A list of Function packages to install + items: {} + type: array + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: [] + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + items: {} + type: array + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + revisionHistoryLimit: + default: "null" + description: The number of RBAC Manager ReplicaSets to retain. + type: "null" + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the RBAC Manager pod + deployment. + items: {} + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 500m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 1024Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + revisionHistoryLimit: + default: "null" + description: The number of Crossplane ReplicaSets to retain. + type: "null" + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + service: + properties: + customAnnotations: + default: {} + description: Configure annotations on the service object. Only enabled + when webhooks.enabled = true + type: object + type: object + serviceAccount: + properties: + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.18.0 From a4c6b641678c84188f2c3c4ba70e3f4a5c798fd2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Dec 2024 15:43:03 +0100 Subject: [PATCH 02/26] Update Kyverno metadata and add version 1.13.1 (#454) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.13.1.yml | 182 ++++++++++++++++++ 1 file changed, 182 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.13.1.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.13.1.yml b/repo/packages/kyverno.packages.kadras.io/1.13.1.yml new file mode 100644 index 0000000..c364339 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.13.1.yml @@ -0,0 +1,182 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.13.1 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2024-12-01T14:41:08Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:90e617371815dc55f487a758d5122f9049664f37bb47a5d67763fa3591b3ff11 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + minimum: 1 + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + enum: + - text + - json + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + maximum: 6 + minimum: 1 + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + enum: + - grpc + - prometheus + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.13.1 From a4d9751552e2d8b92614f630c630ba634ae6e673 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Dec 2024 16:01:09 +0100 Subject: [PATCH 03/26] Update cert-manager metadata and add version 1.16.2 (#455) Co-authored-by: github-actions --- .../1.16.2.yml | 207 ++++++++++++++++++ 1 file changed, 207 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.16.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml new file mode 100644 index 0000000..a408881 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml @@ -0,0 +1,207 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.16.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2024-12-01T14:51:27Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:1e308d6e3cc271636c0c2f88aa28018c758a8bc8817c920b1d85392bf9507d5a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cainjector: + additionalProperties: false + description: Settings for the cainjector controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility.' + minLength: 1 + type: string + type: object + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + challenge: + additionalProperties: false + properties: + dns_provider: + default: digital_ocean + description: 'The DNS provider to use for the ACME dns01 challenge. + Valid options: `digital_ocean`.' + enum: + - digital_ocean + type: string + secret: + additionalProperties: false + properties: + key: + default: "" + description: The key within the Secret that contains the credentials + needed for the dns01 challenge. + type: string + name: + default: "" + description: Name of the Secret containing the credentials needed + for the dns01 challenge. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + needed for the dns01 challenge. + type: string + type: object + type: + default: http01 + description: 'The type of challenge used by the ACME CA Server. + Valid options: `http01`, `dns01`.' + enum: + - http01 + - dns01 + type: string + type: object + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + production: + default: false + description: Whether to use Let's Encrypt staging (recommended for non-production + environments) or production. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + minLength: 1 + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_pki: + additionalProperties: false + description: Settings for the built-in, private PKI + properties: + include: + default: true + description: Whether to include a ClusterIssuer for a private PKI. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + at least 3 replicas are recommended. + minimum: 1 + type: integer + secure_port: + default: 6443 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility.' + type: integer + type: object + type: object + version: 1.16.2 From dd8b5068657e229667634ac42f49afa43a4f11d8 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Dec 2024 16:01:19 +0100 Subject: [PATCH 04/26] Update Crossplane metadata and add version 1.18.1 (#456) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.18.1.yml | 385 ++++++++++++++++++ 1 file changed, 385 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.18.1.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.18.1.yml b/repo/packages/crossplane.packages.kadras.io/1.18.1.yml new file mode 100644 index 0000000..f63fe44 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.18.1.yml @@ -0,0 +1,385 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.18.1 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2024-12-01T14:59:11Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:c1c3b2d526feaec167a7623c6b7fade593c7a0ab82e69d424f7a1a2898a5e9b2 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + dnsPolicy: + default: "" + description: Specify the `dnsPolicy` to be used by the Crossplane pod. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + function: + properties: + packages: + default: [] + description: A list of Function packages to install + items: {} + type: array + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: [] + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + items: {} + type: array + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + revisionHistoryLimit: + default: "null" + description: The number of RBAC Manager ReplicaSets to retain. + type: "null" + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the RBAC Manager pod + deployment. + items: {} + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 500m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 1024Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + revisionHistoryLimit: + default: "null" + description: The number of Crossplane ReplicaSets to retain. + type: "null" + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + service: + properties: + customAnnotations: + default: {} + description: Configure annotations on the service object. Only enabled + when webhooks.enabled = true + type: object + type: object + serviceAccount: + properties: + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.18.1 From dcf4dc3d5e26de53a3f8b23220fec556e7bd995f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 2 Dec 2024 07:17:32 +0100 Subject: [PATCH 05/26] Update Kadras Developer Portal metadata and add version 0.5.0 (#457) Co-authored-by: github-actions --- .../0.5.0.yml | 607 ++++++++++++++++++ 1 file changed, 607 insertions(+) create mode 100644 repo/packages/developer-portal.packages.kadras.io/0.5.0.yml diff --git a/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml new file mode 100644 index 0000000..e0dd560 --- /dev/null +++ b/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml @@ -0,0 +1,607 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: developer-portal.packages.kadras.io.0.5.0 +spec: + refName: developer-portal.packages.kadras.io + releasedAt: "2024-12-02T06:15:48Z" + template: + spec: + deploy: + - kapp: + intoNs: backstage + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-developer-portal@sha256:63627a8553c9ce3e3dcc03755ae47eb4600c99c573fe50350e061a429d4722b6 + template: + - helmTemplate: + name: backstage + namespace: backstage + path: config/helm/upstream/backstage + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + backstage: + description: Backstage parameters @default -- See below + properties: + affinity: + default: {} + description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' + type: object + annotations: + default: {} + description: Additional custom annotations for the `Deployment` resource + type: object + appConfig: + default: {} + description: 'Allows to define the appConfig as a multiline string that + generates a ConfigMap automatically, not requiring to have it pre + provisioned as with the extraAppConfig key. DO NOT USE if you need + to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: + https://somedomain.tld -- Generates ConfigMap and configures it in + the Backstage pods' + type: object + args: + default: [] + description: Backstage container command arguments + items: {} + type: array + command: + default: [] + description: Backstage container command + items: + default: node + type: string + type: array + containerPorts: + description: Container ports on the Deployment + properties: + backend: + default: 7007 + type: integer + type: object + containerSecurityContext: + default: {} + description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' + type: object + extraAppConfig: + default: [] + description: Extra app configuration files to inline into command arguments + items: {} + type: array + extraContainers: + default: [] + description: Deployment sidecars + items: {} + type: array + extraEnvVars: + default: [] + description: Backstage container environment variables + items: {} + type: array + extraEnvVarsCM: + default: [] + description: Backstage container environment variables from existing + ConfigMaps + items: {} + type: array + extraEnvVarsSecrets: + default: [] + description: Backstage container environment variables from existing + Secrets + items: {} + type: array + extraVolumeMounts: + default: [] + description: Backstage container additional volume mounts + items: {} + type: array + extraVolumes: + default: [] + description: Backstage container additional volumes + items: {} + type: array + image: + properties: + digest: + default: "" + description: Backstage image digest (digest takes precedence over + image tag) + type: string + pullPolicy: + default: Always + description: 'Specify a imagePullPolicy. Defaults to ''Always'' + if image tag is ''latest'', else set to ''IfNotPresent''
+ Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' + type: string + pullSecrets: + default: [] + description: 'Optionally specify an array of imagePullSecrets. Secrets + must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +
E.g: `pullSecrets: [myRegistryKeySecretName]`' + items: {} + type: array + registry: + default: ghcr.io + description: Backstage image registry + type: string + repository: + default: backstage/backstage + description: Backstage image repository + type: string + tag: + default: latest + description: Backstage image tag (immutable tags are recommended) + type: string + type: object + initContainers: + default: [] + description: Backstage container init containers + items: {} + type: array + installDir: + default: /app + description: Directory containing the backstage installation + type: string + livenessProbe: + description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + items: {} + type: array + extraTls: + default: [] + description: 'The TLS configuration for additional hostnames to be covered + with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls + ' + items: {} + type: array + host: + default: "" + description: 'Hostname to be used to expose the route to access the + backstage application (e.g: backstage.IP.nip.io)' + type: string + path: + default: / + description: 'Path to be used to expose the full route to access the + backstage application (e.g: IP.nip.io/backstage)' + type: string + tls: + description: Ingress TLS parameters + properties: + enabled: + default: false + description: Enable TLS configuration for the host defined at `ingress.host` + parameter + type: boolean + secretName: + default: "" + description: The name to which the TLS Secret will be called + type: string + type: object + type: object + kubeVersion: + default: "" + description: |- + Common parameters + -- Override Kubernetes version + type: string + metrics: + description: Metrics configuration + properties: + serviceMonitor: + description: ServiceMonitor configuration
Allows configuring + your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) + using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) + can understand. + properties: + annotations: + default: {} + description: ServiceMonitor annotations + type: object + enabled: + default: false + description: If enabled, a ServiceMonitor resource for Prometheus + Operator is created
Prometheus Operator must be installed + in your cluster prior to enabling. + type: boolean + interval: + default: "null" + description: ServiceMonitor scrape interval + type: "null" + labels: + default: {} + description: Additional ServiceMonitor labels + type: object + path: + default: /metrics + description: ServiceMonitor endpoint path
Note that the /metrics + endpoint is NOT present in a freshly scaffolded Backstage app. + To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). + type: string + type: object + type: object + nameOverride: + default: "" + description: String to partially override common.names.fullname + type: string + networkPolicy: + description: '@section NetworkPolicy parameters' + properties: + egressRules: + description: Egress Rules + properties: + customRules: + default: [] + description: Additional custom egress rules + items: {} + type: array + denyConnectionsToExternal: + default: false + description: Deny external connections. Should not be enabled when + working with an external database. + type: boolean + type: object + enabled: + default: false + description: Specifies whether a NetworkPolicy should be created + type: boolean + ingressRules: + description: Ingress Rules + properties: + customRules: + default: [] + description: Additional custom ingress rules + items: {} + type: array + namespaceSelector: + default: {} + description: Namespace selector label allowed to access the Backstage + instance + type: object + podSelector: + default: {} + description: Pod selector label allowed to access the Backstage + instance + type: object + type: object + type: object + postgresql: + description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) + @default -- See below + properties: + architecture: + default: standalone + description: PostgreSQL architecture (`standalone` or `replication`) + type: string + auth: + description: The authentication details of the Postgres database + properties: + existingSecret: + default: "" + description: Name of existing secret to use for PostgreSQL credentials + type: string + password: + default: "" + description: Password for the custom user to create + type: string + secretKeys: + description: The secret keys Postgres will look for to retrieve + the relevant password + properties: + adminPasswordKey: + default: admin-password + description: The key in which Postgres will look for, for the + admin password, in the existing Secret + type: string + replicationPasswordKey: + default: replication-password + description: The key in which Postgres will look for, for the + replication password, in the existing Secret + type: string + userPasswordKey: + default: user-password + description: The key in which Postgres will look for, for the + user password, in the existing Secret + type: string + type: object + username: + default: bn_backstage + description: Name for a custom user to create + type: string + type: object + enabled: + default: false + description: Switch to enable or disable the PostgreSQL helm chart + type: boolean + type: object + service: + description: |- + @section Traffic Exposure parameters + Service parameters -- Service parameters @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for Backstage service + type: object + clusterIP: + default: "" + description: 'Backstage service Cluster IP
E.g `clusterIP: None`' + type: string + externalTrafficPolicy: + default: Cluster + description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' + type: string + extraPorts: + default: [] + description: Extra ports to expose in the Backstage service (normally + used with the `sidecar` value) + items: {} + type: array + loadBalancerIP: + default: "" + description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' + type: string + loadBalancerSourceRanges: + default: [] + description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer +
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' + items: {} + type: array + nodePorts: + description: Node port for the Backstage client connections Choose port + between `30000-32767` + properties: + backend: + default: "" + type: string + type: object + ports: + description: Backstage svc port for client connections + properties: + backend: + default: 7007 + type: integer + name: + default: http-backend + description: Backstage svc port name + type: string + targetPort: + default: backend + description: Backstage svc target port referencing receiving pod + container port + type: string + type: object + sessionAffinity: + default: None + description: 'Control where client requests go, to the same pod or round-robin + (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' + type: string + type: + default: ClusterIP + description: Kubernetes Service type + type: string + type: object + serviceAccount: + description: Service Account Configuration @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for the ServiceAccount. + type: object + automountServiceAccountToken: + default: true + description: Auto-mount the service account token in the pod + type: boolean + create: + default: false + description: Enable the creation of a ServiceAccount for Backstage pods + type: boolean + labels: + default: {} + description: Additional custom labels to the service ServiceAccount. + type: object + name: + default: "" + description: Name of the ServiceAccount to use If not set and `serviceAccount.create` + is true, a name is generated + type: string + type: object + type: object + version: 0.5.0 From fe63331503b13a87a67529add8f817cfde2f3ddd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 18 Dec 2024 08:19:01 +0100 Subject: [PATCH 06/26] Update Kadras Engineering Platform metadata and add version 0.22.0 (#458) Co-authored-by: github-actions --- .../0.22.0.yml | 276 ++++++++++++++++++ 1 file changed, 276 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml new file mode 100644 index 0000000..7230222 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml @@ -0,0 +1,276 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.22.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2024-12-02T07:17:41Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:3c0d66ee3846c602b386f4e1ffd0e7fc864565b1cb01e27df1ce1096f97f7019 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dapr: + default: {} + description: Configuration for the Dapr package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `build`, `run`.' + enum: + - standalone + - build + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.22.0 From ab8254320612840cc8c434cb0ccb3feddf1d50ac Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 27 Feb 2025 23:52:40 +0100 Subject: [PATCH 07/26] deps: bump sigstore/cosign-installer from 3.7.0 to 3.8.1 (#460) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.7.0 to 3.8.1. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v3.7.0...v3.8.1) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index b209fa1..4b5a0bc 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.7.0 + uses: sigstore/cosign-installer@v3.8.1 - name: Log into container registry uses: redhat-actions/podman-login@v1.7 From 1daa7fe1ed947dcc8eea1053c8700a06d1dfaaf1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 27 Feb 2025 23:52:53 +0100 Subject: [PATCH 08/26] deps: bump slsa-framework/slsa-github-generator from 2.0.0 to 2.1.0 (#461) Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) from 2.0.0 to 2.1.0. - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v2.0.0...v2.1.0) --- updated-dependencies: - dependency-name: slsa-framework/slsa-github-generator dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4b5a0bc..40a5644 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -106,7 +106,7 @@ jobs: actions: read id-token: write packages: write - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v2.0.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v2.1.0 with: image: ${{ needs.build.outputs.image-name }} digest: ${{ needs.build.outputs.image-digest }} From 4e62f9cd8658538898232c580484b58d34b698c2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 27 Feb 2025 23:53:06 +0100 Subject: [PATCH 09/26] Update secretgen-controller metadata and add version 0.19.1 (#462) Co-authored-by: github-actions --- .../0.19.1.yml | 35 +++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml new file mode 100644 index 0000000..26451bd --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml @@ -0,0 +1,35 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.19.1 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases + releasedAt: "2025-02-27T22:40:56Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:a6a5f415deb8fc0e383e40a5df5c7bafffb74b8d6f9bd076954667ef65624c21 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.19.1 From baa3575308e052b6634f6368d23719f9038729bd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 27 Feb 2025 23:53:55 +0100 Subject: [PATCH 10/26] docs: Update social links --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index c3b20a3..7fbbae8 100644 --- a/README.md +++ b/README.md @@ -3,7 +3,7 @@ ![Release Workflow](https://github.com/kadras-io/kadras-packages/actions/workflows/release.yml/badge.svg) [![The SLSA Level 3 badge](https://slsa.dev/images/gh-badge-level3.svg)](https://slsa.dev/spec/v1.0/levels) [![The Apache 2.0 license badge](https://img.shields.io/badge/License-Apache_2.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) -[![Follow us on Twitter](https://img.shields.io/static/v1?label=Twitter&message=Follow&color=1DA1F2)](https://twitter.com/kadrasIO) +[![Follow us on Bluesky](https://img.shields.io/static/v1?label=Bluesky&message=Follow&color=1DA1F2)](https://bsky.app/profile/kadras.bsky.social) The [Kadras](https://kadras.io) collection of Kubernetes-native packages built with [Carvel](https://carvel.dev). From 28c5eaed3f7a018f23fc41946487013f5d90e097 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 27 Feb 2025 23:54:24 +0100 Subject: [PATCH 11/26] docs: Update minimum k8s version --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 7fbbae8..49ec325 100644 --- a/README.md +++ b/README.md @@ -37,7 +37,7 @@ This repository contains the following Carvel packages. ### Prerequisites -* Kubernetes 1.29+ +* Kubernetes 1.30+ * Carvel [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI. * Carvel [kapp-controller](https://carvel.dev/kapp-controller) deployed in your Kubernetes cluster. You can install it with Carvel [`kapp`](https://carvel.dev/kapp/docs/latest/install) (recommended choice) or `kubectl`. From 9d1e97ba3aae6928fa52ea985fa4461785a58717 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 11:07:18 +0200 Subject: [PATCH 12/26] Update RabbitMQ Operator metadata and add version 2.12.1 (#463) Co-authored-by: github-actions --- .../2.12.1.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml new file mode 100644 index 0000000..42be1e4 --- /dev/null +++ b/repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: rabbitmq-operator.packages.kadras.io.2.12.1 +spec: + licenses: + - Apache 2.0 + refName: rabbitmq-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases + releasedAt: "2025-03-30T09:05:43Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:5db0fce98633ffcb3abc81092657de396b572545c446c6df36491f3a68ef9ac1 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Logging configuration. + properties: + level: + default: info + description: The Operator log level. Valid options are `info` and `debug`. + enum: + - info + - debug + type: string + type: object + type: object + version: 2.12.1 From df6542277da832699c0804667e62d97de7ad4cc6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 11:16:25 +0200 Subject: [PATCH 13/26] Update PostgreSQL Operator metadata and add version 1.25.1 (#464) Co-authored-by: github-actions --- .../1.25.1.yml | 31 +++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml diff --git a/repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml b/repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml new file mode 100644 index 0000000..b6b782d --- /dev/null +++ b/repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: postgresql-operator.packages.kadras.io.1.25.1 +spec: + licenses: + - Apache 2.0 + refName: postgresql-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-postgresql-operator/releases + releasedAt: "2025-03-30T09:14:53Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-postgresql-operator@sha256:87d31e3d8b06859553fbd26e60451ff111405fd0eeeee574601225cff0bab69f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 1.25.1 From 35230e3d31ec1a308987f6f5a98a8f25f9a289d6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 11:23:46 +0200 Subject: [PATCH 14/26] Update Kyverno metadata and add version 1.13.4 (#465) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.13.4.yml | 182 ++++++++++++++++++ 1 file changed, 182 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.13.4.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.13.4.yml b/repo/packages/kyverno.packages.kadras.io/1.13.4.yml new file mode 100644 index 0000000..44b3a4d --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.13.4.yml @@ -0,0 +1,182 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.13.4 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2025-03-30T09:22:14Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:8f195074a4af184aa8c0c3c5540376c3148b57057ebeb78e3aea27f5733f74ca + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + minimum: 1 + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + enum: + - text + - json + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + maximum: 6 + minimum: 1 + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + enum: + - grpc + - prometheus + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.13.4 From c5059cffe1cab24391aecef63f5aad3bb7bf977e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 11:41:36 +0200 Subject: [PATCH 15/26] Update cert-manager metadata and add version 1.17.1 (#466) Co-authored-by: github-actions --- .../1.17.1.yml | 207 ++++++++++++++++++ 1 file changed, 207 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.17.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.17.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.17.1.yml new file mode 100644 index 0000000..ad5be9e --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.17.1.yml @@ -0,0 +1,207 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.17.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2025-03-30T09:39:05Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:cdc37ed01390bc303ad71393dafb7f4dde377417d241abd7266bac17436c0a25 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cainjector: + additionalProperties: false + description: Settings for the cainjector controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility.' + minLength: 1 + type: string + type: object + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + challenge: + additionalProperties: false + properties: + dns_provider: + default: digital_ocean + description: 'The DNS provider to use for the ACME dns01 challenge. + Valid options: `digital_ocean`.' + enum: + - digital_ocean + type: string + secret: + additionalProperties: false + properties: + key: + default: "" + description: The key within the Secret that contains the credentials + needed for the dns01 challenge. + type: string + name: + default: "" + description: Name of the Secret containing the credentials needed + for the dns01 challenge. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + needed for the dns01 challenge. + type: string + type: object + type: + default: http01 + description: 'The type of challenge used by the ACME CA Server. + Valid options: `http01`, `dns01`.' + enum: + - http01 + - dns01 + type: string + type: object + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + production: + default: false + description: Whether to use Let's Encrypt staging (recommended for non-production + environments) or production. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + minLength: 1 + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_pki: + additionalProperties: false + description: Settings for the built-in, private PKI + properties: + include: + default: true + description: Whether to include a ClusterIssuer for a private PKI. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + at least 3 replicas are recommended. + minimum: 1 + type: integer + secure_port: + default: 6443 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility.' + type: integer + type: object + type: object + version: 1.17.1 From caa925b5010aae1136af2102f10615421202ed92 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:00:24 +0200 Subject: [PATCH 16/26] Update Tempo Operator metadata and add version 0.15.3 (#467) Co-authored-by: github-actions --- .../0.15.3.yml | 293 ++++++++++++++++++ 1 file changed, 293 insertions(+) create mode 100644 repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml diff --git a/repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml b/repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml new file mode 100644 index 0000000..8b5ac0d --- /dev/null +++ b/repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml @@ -0,0 +1,293 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tempo-operator.packages.kadras.io.0.15.3 +spec: + licenses: + - Apache 2.0 + refName: tempo-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tempo-operator/releases + releasedAt: "2025-03-30T09:56:13Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tempo-operator@sha256:3daff7e08c4d5f8deaa7c1b854b88ce764dc5628c92d1fbde4bb95548cd0754f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + configMapData: + default: {} + description: The YAML contents of the `tempo-operator-manager-config` ConfigMap. + See https://github.com/grafana/tempo-operator/blob/main/docs/operator/config.yaml + for more information. + nullable: true + controller: + additionalProperties: false + description: Settings for the Tempo Operator controller. + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order to + enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tempo: + additionalProperties: false + description: Settings for Tempo. + properties: + extraConfig: + default: {} + description: Additional configuration for Tempo that will be merged + with the one generated by the Operator. It has higher precedence than + the Operator. + nullable: true + jaegerui: + additionalProperties: false + description: Settings for Jaeger UI. + properties: + enabled: + default: false + description: Whether to enable the Jaeger UI to visualize traces. + type: boolean + type: object + namespace: + default: default + description: Namespace where to provision a Tempo installation, stack + or monolithic. + type: string + observability: + additionalProperties: false + description: Settings for observability. + properties: + grafana: + additionalProperties: false + properties: + createDatasource: + default: false + description: Whether a Datasource managed by Grafana Operator + should be created for Tempo. + type: boolean + type: object + metrics: + additionalProperties: false + properties: + createPrometheusRules: + default: false + description: Whether PrometheusRules for alerts managed by Prometheus + Operator should be created for Tempo. + type: boolean + createServiceMonitors: + default: false + description: Whether ServiceMonitors managed by Prometheus Operator + should be created for Tempo. + type: boolean + type: object + tracing: + additionalProperties: false + properties: + otlpHttpEndpoint: + default: "" + description: The OTLP HTTP endpoint where to send traces. Only + for TempoStack. + type: string + samplingFraction: + default: "" + description: Sampling frequence for Tempo traces. Only for TempoStack. + type: string + type: object + type: object + resources: + additionalProperties: false + description: Settings for total resources. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 750m + type: string + memory: + default: 2Gi + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 500m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + storage: + additionalProperties: false + description: Settings for storage. + properties: + backend: + additionalProperties: false + description: Tracing backend object storage configuration. + properties: + secret: + additionalProperties: false + properties: + name: + default: "" + description: Name of the Secret containing the credentials + to access the configured object storage. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + to access the configured object storage. + type: string + type: object + type: + default: memory + description: 'Type of object storage that should be used. Valid + options: `azure`, `gcs`, `s3`, `memory` (only for TempoMonolithic).' + enum: + - azure + - gcs + - s3 + - memory + type: string + type: object + size: + default: 10Gi + description: The size of the storage used by Tempo. + type: string + type: object + tempoMonolithic: + additionalProperties: false + description: Settings for the built-in TempoMonolithic instance. + properties: + enabled: + default: false + description: Whether to deploy the built-in TempoMonolithic instance. + type: boolean + type: object + tempoStack: + additionalProperties: false + description: Settings for the built-in TempoStack instance. + properties: + compactor: + additionalProperties: false + description: Settings for the Tempo Compactor. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Compactor + component. In order to enable high availability, it should + be greater than 1. + type: integer + type: object + distributor: + additionalProperties: false + description: Settings for the Tempo Distributor. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Distributor + component. In order to enable high availability, it should + be greater than 1. + type: integer + type: object + enabled: + default: false + description: Whether to deploy the built-in TempoStack instance. + type: boolean + gateway: + additionalProperties: false + description: Settings for the Tempo Gateway. + properties: + enabled: + default: false + description: Whether to enable the Tempo Gateway. + type: boolean + ingress: + additionalProperties: false + description: Ingress for the Tempo Gateway. + properties: + annotations: + additionalProperties: false + description: The annotations for the Ingress object. + properties: {} + type: object + host: + default: "" + description: The hostname of the Ingress object. + type: string + ingressClassName: + default: contour + description: The class of the Ingress Controller to use + for the Tempo Gateway. + type: string + type: + default: null + description: 'Type of Ingress for the Tempo Gateway. Valid + options: `ingress`, `route`.' + enum: + - ingress + - route + nullable: true + type: string + type: object + type: object + ingester: + additionalProperties: false + description: Settings for the Tempo Ingester. + properties: + podSecurityContext: + additionalProperties: false + description: PodSecurityContext for the Ingester component. + properties: {} + type: object + replicas: + default: 1 + description: Number of replicas to deploy for the Ingester component. + In order to enable high availability, it should be greater + than 1. + type: integer + type: object + querier: + additionalProperties: false + description: Settings for the Tempo Querier. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Querier component. + In order to enable high availability, it should be greater + than 1. + type: integer + type: object + queryFrontend: + additionalProperties: false + description: Settings for the Tempo Query Frontend. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Query Frontend + component. In order to enable high availability, it should + be greater than 1. + type: integer + type: object + type: object + type: object + type: object + version: 0.15.3 From 124113d5bd94bed3be1478c0ba05f7dbedda09ee Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:03:53 +0200 Subject: [PATCH 17/26] Update Contour metadata and add version 1.30.3 (#468) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.30.3.yml | 226 ++++++++++++++++++ 1 file changed, 226 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.30.3.yml diff --git a/repo/packages/contour.packages.kadras.io/1.30.3.yml b/repo/packages/contour.packages.kadras.io/1.30.3.yml new file mode 100644 index 0000000..3225691 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.30.3.yml @@ -0,0 +1,226 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.30.3 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2025-03-30T10:01:25Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:788d21b7280c68f30ee76d691302a488d6bd0c5fef2ce4aa6f0892e7ba106616 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + enum: + - json + - text + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + enum: + - info + - debug + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configMapData: + default: {} + description: The YAML contents of the `contour` ConfigMap. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + enum: + - trace + - debug + - info + - warning + - warn + - error + - critical + - "off" + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service. + enum: + - Cluster + - Local + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy. + enum: + - NodePort + - ClusterIP + - LoadBalancer + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, `http` + & `https` are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + minimum: 30 + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + enum: + - Deployment + - DaemonSet + type: string + type: object + type: object + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + minLength: 1 + type: string + type: object + version: 1.30.3 From 1e0b936c60c5f4983a711ca539bea6d119f86445 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:14:23 +0200 Subject: [PATCH 18/26] Update Crossplane metadata and add version 1.19.1 (#469) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.19.1.yml | 417 ++++++++++++++++++ 1 file changed, 417 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.19.1.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.19.1.yml b/repo/packages/crossplane.packages.kadras.io/1.19.1.yml new file mode 100644 index 0000000..b20ec1b --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.19.1.yml @@ -0,0 +1,417 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.19.1 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2025-03-30T10:11:45Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:4f7c9d240e40fa6035cdc0e70763a51f641dd14e13ca79e2e91a4f90ba672087 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + dnsPolicy: + default: "" + description: Specify the `dnsPolicy` to be used by the Crossplane pod. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + function: + properties: + packages: + default: [] + description: A list of Function packages to install + items: {} + type: array + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: [] + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + items: {} + type: array + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + port: + default: "" + description: The port the metrics server listens on. + type: string + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + packageManager: + properties: + enableAutomaticDependencyDowngrade: + default: false + description: Enable automatic dependency version downgrades. This configuration + is only used when `--enable-dependency-version-upgrades` flag is passed. + type: boolean + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + revisionHistoryLimit: + default: "null" + description: The number of RBAC Manager ReplicaSets to retain. + type: "null" + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the RBAC Manager pod + deployment. + items: {} + type: array + type: object + readiness: + properties: + port: + default: "" + description: The port the readyz server listens on. + type: string + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 500m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 1024Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + revisionHistoryLimit: + default: "null" + description: The number of Crossplane ReplicaSets to retain. + type: "null" + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + service: + properties: + customAnnotations: + default: {} + description: Configure annotations on the service object. Only enabled + when webhooks.enabled = true + type: object + type: object + serviceAccount: + properties: + create: + default: true + description: Specifies whether Crossplane ServiceAccount should be created + type: boolean + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + name: + default: "" + description: Provide the name of an already created Crossplane ServiceAccount. + Required when `serviceAccount.create` is `false` + type: string + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + port: + default: "" + description: The port the webhook server listens on. + type: string + type: object + type: object + version: 1.19.1 From bd8c9aa55bb5b964b80c59c7b443dedd4ea651df Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:17:00 +0200 Subject: [PATCH 19/26] Update Dapr metadata and add version 1.15.3 (#470) Co-authored-by: github-actions --- .../dapr.packages.kadras.io/1.15.3.yml | 208 ++++++++++++++++++ 1 file changed, 208 insertions(+) create mode 100644 repo/packages/dapr.packages.kadras.io/1.15.3.yml diff --git a/repo/packages/dapr.packages.kadras.io/1.15.3.yml b/repo/packages/dapr.packages.kadras.io/1.15.3.yml new file mode 100644 index 0000000..40b3e80 --- /dev/null +++ b/repo/packages/dapr.packages.kadras.io/1.15.3.yml @@ -0,0 +1,208 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dapr.packages.kadras.io.1.15.3 +spec: + refName: dapr.packages.kadras.io + releasedAt: "2025-03-30T10:15:27Z" + template: + spec: + deploy: + - kapp: + intoNs: dapr-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dapr@sha256:6349d5565735940eca2077bbd25527782e848130b71feec6f627ce61657f970b + template: + - helmTemplate: + name: dapr + namespace: dapr-system + path: config/helm/upstream/dapr + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + global: + properties: + actors: + properties: + enabled: + default: true + description: Enables actor functionality in the cluster + type: boolean + serviceName: + default: placement + description: Name of the service that provides actor placement services + type: string + type: object + argoRolloutServiceReconciler: + description: 'the issuerFilenames dictionary, if setup, have to contain + 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: + "tls.key"' + properties: + enabled: + default: false + type: boolean + type: object + daprControlPlaneOs: + default: linux + type: string + dnsSuffix: + default: .cluster.local + type: string + extraVolumeMounts: + default: {} + description: 'sentry: placement: operator: injector: scheduler:' + type: object + extraVolumes: + default: {} + description: and extraVolumeMounts are used to mount additional volumes + to the Dapr control plane pods. Useful for using alternative authentication + credentials to sentry. + type: object + ha: + properties: + disruption: + properties: + maximumUnavailable: + default: 25% + type: string + minimumAvailable: + default: "" + type: string + type: object + enabled: + default: false + type: boolean + replicaCount: + default: 3 + type: integer + type: object + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: "" + description: 'To help compatibility with other charts which use global.imagePullSecrets. + Allow either a string with single imagepullsecret or an array of {name: + pullSecret} maps (k8s-style) or an array of strings (more common helm-style). + global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - + name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - + pullSecret1 - pullSecret2' + type: string + issuerFilenames: + default: {} + type: object + k8sLabels: + properties: + app.kubernetes.io/component: + default: '{{ .Values.component }}' + type: string + app.kubernetes.io/managed-by: + default: '{{ .Release.Service }}' + type: string + app.kubernetes.io/name: + default: '{{ .Release.Name }}' + type: string + app.kubernetes.io/part-of: + default: dapr + type: string + app.kubernetes.io/version: + default: '{{ .Values.global.tag }}' + type: string + type: object + labels: + default: {} + type: object + logAsJson: + default: false + type: boolean + mtls: + properties: + allowedClockSkew: + default: 15m + type: string + controlPlaneTrustDomain: + default: cluster.local + type: string + enabled: + default: true + type: boolean + mountSentryVolume: + default: true + description: If set to true, a bound service account token will + be mounted and used to authenticate to Sentry. + type: boolean + workloadCertTTL: + default: 24h + type: string + type: object + nodeSelector: + default: {} + type: object + operator: + properties: + watchdogCanPatchPodLabels: + default: false + type: boolean + type: object + priorityClassName: + default: "" + type: string + prometheus: + properties: + enabled: + default: true + type: boolean + port: + default: 9090 + type: integer + type: object + rbac: + properties: + namespaced: + default: false + type: boolean + type: object + registry: + default: ghcr.io/dapr + type: string + reminders: + properties: + serviceName: + default: "" + description: Name of the service that provides reminders If empty, + uses the built-in reminders capabilities in Dapr sidecars + type: string + type: object + scheduler: + properties: + enabled: + default: true + description: Enables scheduler functionality in the cluster + type: boolean + type: object + seccompProfile: + default: "" + type: string + tag: + default: 1.15.3 + type: string + tolerations: + default: [] + items: {} + type: array + type: object + type: object + version: 1.15.3 From 367ab47573c561659679e2dca34fbb93dd109673 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:44:22 +0200 Subject: [PATCH 20/26] Update Flux metadata and add version 2.5.1 (#471) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.5.1.yml | 107 ++++++++++++++++++ 1 file changed, 107 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.5.1.yml diff --git a/repo/packages/flux.packages.kadras.io/2.5.1.yml b/repo/packages/flux.packages.kadras.io/2.5.1.yml new file mode 100644 index 0000000..e22334e --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.5.1.yml @@ -0,0 +1,107 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.5.1 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2025-03-30T10:41:42Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:0adb855ba4e1e05c3b24c415e2ad6db802b8fdb28eafaa695dc9126921a76a46 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + enum: + - trace + - debug + - info + - error + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.5.1 From 0eb4de4d37857d5bffb522665e5a580c364fd450 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:52:46 +0200 Subject: [PATCH 21/26] Update Dependency Track metadata and add version 4.12.7 (#472) Co-authored-by: github-actions --- .../4.12.7.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/dependency-track.packages.kadras.io/4.12.7.yml diff --git a/repo/packages/dependency-track.packages.kadras.io/4.12.7.yml b/repo/packages/dependency-track.packages.kadras.io/4.12.7.yml new file mode 100644 index 0000000..a179380 --- /dev/null +++ b/repo/packages/dependency-track.packages.kadras.io/4.12.7.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dependency-track.packages.kadras.io.4.12.7 +spec: + licenses: + - Apache 2.0 + refName: dependency-track.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases + releasedAt: "2025-03-30T10:51:32Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dependency-track@sha256:80484b86922e812960009155f1e0919b6d39eed869dee59b6c09675b05eac33d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + api_server: + additionalProperties: false + description: Settings for the API Server component. + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + format: + default: console + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `warn`, `error`.' + enum: + - trace + - debug + - info + - warn + - error + type: string + type: object + metrics: + additionalProperties: false + description: Settings for metrics. + properties: + enabled: + default: true + description: Whether to enable the generation of Prometheus metrics. + type: boolean + type: object + resources: + additionalProperties: false + description: Resource configuration for the API Server component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "4" + description: CPU limits configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory limits configuration for the API Server + component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: "0.5" + description: CPU requests configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory requests configuration for the API Server + component. + type: string + type: object + type: object + storage: + additionalProperties: false + description: Storage configuration for the API Server component. + properties: + class_name: + default: "" + description: Class name for the PersistenceVolume to create. + type: string + size: + default: 1Gi + description: Size of the PersistenceVolume to create. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Dependency Track. It must be a valid DNS name. + minLength: 4 + type: string + frontend: + additionalProperties: false + description: Settings for the Frontend component. + properties: + replicas: + default: 1 + description: The number of Frontend replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + resources: + additionalProperties: false + description: Resource configuration for the Frontend component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU limits configuration for the Frontend component. + type: string + memory: + default: 128Mi + description: Memory limits configuration for the Frontend component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 150m + description: CPU requests configuration for the Frontend component. + type: string + memory: + default: 64Mi + description: Memory requests configuration for the Frontend + component. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use for enabling TLS in + Dependency Track. + example: kadras-ca-issuer + minLength: 4 + type: string + x-example-description: Kadras private CA + postgresql: + additionalProperties: false + description: Settings for the PostgreSQL database. + properties: + instances: + default: 1 + description: Number of instances for the PostgreSQL database cluster. + Define at least 3 for production scenarios. + minimum: 1 + type: integer + storage: + additionalProperties: false + description: Storage configuration for each PostgreSQL instance. + properties: + size: + default: 1Gi + description: Size of the PersistenceVolume to create for each PostgreSQL + instance. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + system_requirement_check: + default: true + description: Whether Dependency Track will check for memory and CPU requirements + at startup time. + type: boolean + type: object + version: 4.12.7 From 623cf3016d984df794aa3f9bfbe086d76a155219 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:59:03 +0200 Subject: [PATCH 22/26] Update Knative Serving metadata and add version 1.17.0 (#473) Co-authored-by: github-actions --- .../1.17.0.yml | 304 ++++++++++++++++++ 1 file changed, 304 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.17.0.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.17.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.17.0.yml new file mode 100644 index 0000000..6ad96cb --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.17.0.yml @@ -0,0 +1,304 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.17.0 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2025-03-30T10:55:45Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:5a2ea94dae79dba764bc013a78744378dbb8a738bb851eb8dd69c930311c076a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + enum: + - http + - https + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + enum: + - Enabled + - Redirected + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + minimum: 0 + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + enum: + - zipkin + - none + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + enum: + - "true" + - "false" + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + maxLength: 3 + minLength: 1 + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + minLength: 4 + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + minLength: 1 + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + minLength: 1 + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 20 + minimum: 1 + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 5 + minimum: 1 + type: integer + type: object + type: object + type: object + version: 1.17.0 From 5d33d05b4d3e1cd3400f23eaae782e98897ef097 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 18:33:54 +0200 Subject: [PATCH 23/26] Update Kadras Developer Portal metadata and add version 0.6.0 (#474) Co-authored-by: github-actions --- .../0.6.0.yml | 634 ++++++++++++++++++ 1 file changed, 634 insertions(+) create mode 100644 repo/packages/developer-portal.packages.kadras.io/0.6.0.yml diff --git a/repo/packages/developer-portal.packages.kadras.io/0.6.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.6.0.yml new file mode 100644 index 0000000..6ab38a6 --- /dev/null +++ b/repo/packages/developer-portal.packages.kadras.io/0.6.0.yml @@ -0,0 +1,634 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: developer-portal.packages.kadras.io.0.6.0 +spec: + refName: developer-portal.packages.kadras.io + releasedAt: "2025-03-30T16:31:00Z" + template: + spec: + deploy: + - kapp: + intoNs: backstage + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-developer-portal@sha256:42b7e0dc1d8f81019aa748e84c1b6745991628e41f1a944f5b2eb498334c7887 + template: + - helmTemplate: + name: backstage + namespace: backstage + path: config/helm/upstream/backstage + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + backstage: + description: Backstage parameters @default -- See below + properties: + affinity: + default: {} + description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' + type: object + annotations: + default: {} + description: Additional custom annotations for the `Deployment` resource + type: object + appConfig: + default: {} + description: 'Allows to define the appConfig as a multiline string that + generates a ConfigMap automatically, not requiring to have it pre + provisioned as with the extraAppConfig key. DO NOT USE if you need + to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: + https://somedomain.tld -- Generates ConfigMap and configures it in + the Backstage pods' + type: object + args: + default: [] + description: Backstage container command arguments + items: {} + type: array + command: + default: [] + description: Backstage container command + items: + default: node + type: string + type: array + containerPorts: + description: Container ports on the Deployment + properties: + backend: + default: 7007 + type: integer + type: object + containerSecurityContext: + default: {} + description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' + type: object + extraAppConfig: + default: [] + description: Extra app configuration files to inline into command arguments + items: {} + type: array + extraContainers: + default: [] + description: Deployment sidecars + items: {} + type: array + extraEnvVars: + default: [] + description: Backstage container environment variables + items: {} + type: array + extraEnvVarsCM: + default: [] + description: Backstage container environment variables from existing + ConfigMaps + items: {} + type: array + extraEnvVarsSecrets: + default: [] + description: Backstage container environment variables from existing + Secrets + items: {} + type: array + extraPorts: + default: [] + description: Backstage container additional ports + items: {} + type: array + extraVolumeMounts: + default: [] + description: Backstage container additional volume mounts + items: {} + type: array + extraVolumes: + default: [] + description: Backstage container additional volumes + items: {} + type: array + hostAliases: + default: [] + description: 'Host Aliases for the pod
Ref: https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/' + items: {} + type: array + image: + properties: + digest: + default: "" + description: Backstage image digest (digest takes precedence over + image tag) + type: string + pullPolicy: + default: Always + description: 'Specify a imagePullPolicy. Defaults to ''Always'' + if image tag is ''latest'', else set to ''IfNotPresent''
+ Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' + type: string + pullSecrets: + default: [] + description: 'Optionally specify an array of imagePullSecrets. Secrets + must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +
E.g: `pullSecrets: [myRegistryKeySecretName]`' + items: {} + type: array + registry: + default: ghcr.io + description: Backstage image registry + type: string + repository: + default: backstage/backstage + description: Backstage image repository + type: string + tag: + default: latest + description: Backstage image tag (immutable tags are recommended) + type: string + type: object + initContainers: + default: [] + description: Backstage container init containers + items: {} + type: array + installDir: + default: /app + description: Directory containing the backstage installation + type: string + livenessProbe: + description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + items: {} + type: array + extraTls: + default: [] + description: 'The TLS configuration for additional hostnames to be covered + with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls + ' + items: {} + type: array + host: + default: "" + description: 'Hostname to be used to expose the route to access the + backstage application (e.g: backstage.IP.nip.io)' + type: string + path: + default: / + description: 'Path to be used to expose the full route to access the + backstage application (e.g: IP.nip.io/backstage)' + type: string + tls: + description: Ingress TLS parameters + properties: + enabled: + default: false + description: Enable TLS configuration for the host defined at `ingress.host` + parameter + type: boolean + secretName: + default: "" + description: The name to which the TLS Secret will be called + type: string + type: object + type: object + kubeVersion: + default: "" + description: |- + Common parameters + -- Override Kubernetes version + type: string + metrics: + description: Metrics configuration + properties: + serviceMonitor: + description: ServiceMonitor configuration
Allows configuring + your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) + using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) + can understand. + properties: + annotations: + default: {} + description: ServiceMonitor annotations + type: object + enabled: + default: false + description: If enabled, a ServiceMonitor resource for Prometheus + Operator is created
Prometheus Operator must be installed + in your cluster prior to enabling. + type: boolean + interval: + default: "null" + description: ServiceMonitor scrape interval + type: "null" + labels: + default: {} + description: Additional ServiceMonitor labels + type: object + path: + default: /metrics + description: ServiceMonitor endpoint path
Note that the /metrics + endpoint is NOT present in a freshly scaffolded Backstage app. + To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). + type: string + port: + default: http-backend + description: ServiceMonitor endpoint port
The port where + the metrics are exposed. If using OpenTelemetry as [documented + here](https://backstage.io/docs/tutorials/setup-opentelemetry/), + then the port needs to be explicitely specificed. OpenTelemetry's + default port is 9464. + type: string + type: object + type: object + nameOverride: + default: "" + description: String to partially override common.names.fullname + type: string + networkPolicy: + description: '@section NetworkPolicy parameters' + properties: + egressRules: + description: Egress Rules + properties: + customRules: + default: [] + description: Additional custom egress rules + items: {} + type: array + denyConnectionsToExternal: + default: false + description: Deny external connections. Should not be enabled when + working with an external database. + type: boolean + type: object + enabled: + default: false + description: Specifies whether a NetworkPolicy should be created + type: boolean + ingressRules: + description: Ingress Rules + properties: + customRules: + default: [] + description: Additional custom ingress rules + items: {} + type: array + namespaceSelector: + default: {} + description: Namespace selector label allowed to access the Backstage + instance + type: object + podSelector: + default: {} + description: Pod selector label allowed to access the Backstage + instance + type: object + type: object + type: object + postgresql: + description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) + @default -- See below + properties: + architecture: + default: standalone + description: PostgreSQL architecture (`standalone` or `replication`) + type: string + auth: + description: The authentication details of the Postgres database + properties: + existingSecret: + default: "" + description: Name of existing secret to use for PostgreSQL credentials + type: string + password: + default: "" + description: Password for the custom user to create + type: string + secretKeys: + description: The secret keys Postgres will look for to retrieve + the relevant password + properties: + adminPasswordKey: + default: admin-password + description: The key in which Postgres will look for, for the + admin password, in the existing Secret + type: string + replicationPasswordKey: + default: replication-password + description: The key in which Postgres will look for, for the + replication password, in the existing Secret + type: string + userPasswordKey: + default: user-password + description: The key in which Postgres will look for, for the + user password, in the existing Secret + type: string + type: object + username: + default: bn_backstage + description: Name for a custom user to create + type: string + type: object + enabled: + default: false + description: Switch to enable or disable the PostgreSQL helm chart + type: boolean + type: object + service: + description: |- + @section Traffic Exposure parameters + Service parameters -- Service parameters @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for Backstage service + type: object + clusterIP: + default: "" + description: 'Backstage service Cluster IP
E.g `clusterIP: None`' + type: string + externalTrafficPolicy: + default: Cluster + description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' + type: string + extraPorts: + default: [] + description: Extra ports to expose in the Backstage service (normally + used with the `sidecar` value) + items: {} + type: array + ipFamilies: + default: [] + description: 'IP Families
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' + items: {} + type: array + ipFamilyPolicy: + default: "" + description: 'IP Family Policy
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' + type: string + loadBalancerIP: + default: "" + description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' + type: string + loadBalancerSourceRanges: + default: [] + description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer +
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' + items: {} + type: array + nodePorts: + description: Node port for the Backstage client connections Choose port + between `30000-32767` + properties: + backend: + default: "" + type: string + type: object + ports: + description: Backstage svc port for client connections + properties: + backend: + default: 7007 + type: integer + name: + default: http-backend + description: Backstage svc port name + type: string + targetPort: + default: backend + description: Backstage svc target port referencing receiving pod + container port + type: string + type: object + sessionAffinity: + default: None + description: 'Control where client requests go, to the same pod or round-robin + (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' + type: string + type: + default: ClusterIP + description: Kubernetes Service type + type: string + type: object + serviceAccount: + description: Service Account Configuration @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for the ServiceAccount. + type: object + automountServiceAccountToken: + default: true + description: Auto-mount the service account token in the pod + type: boolean + create: + default: false + description: Enable the creation of a ServiceAccount for Backstage pods + type: boolean + labels: + default: {} + description: Additional custom labels to the service ServiceAccount. + type: object + name: + default: "" + description: Name of the ServiceAccount to use If not set and `serviceAccount.create` + is true, a name is generated + type: string + type: object + type: object + version: 0.6.0 From 98b80c9f6ce2eb53affda4e85484f4cc13785eba Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 18:48:29 +0200 Subject: [PATCH 24/26] Update Kadras Engineering Platform metadata and add version 0.23.0 (#475) Co-authored-by: github-actions --- .../0.23.0.yml | 276 ++++++++++++++++++ 1 file changed, 276 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml new file mode 100644 index 0000000..58ced6e --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml @@ -0,0 +1,276 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.23.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2025-03-30T16:43:00Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:54ccf496a2a813f6456892ec60ac8cfbc13fa7735f040f08007fd138b50f6d52 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dapr: + default: {} + description: Configuration for the Dapr package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `build`, `run`.' + enum: + - standalone + - build + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.23.0 From 3e3cb2c479915cb6dd0372046fa4be80334bcfa3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 18:50:06 +0200 Subject: [PATCH 25/26] deps: Remove deprecated packages --- .../1.16.1.yml | 207 ------ .../1.16.2.yml | 207 ------ .../contour.packages.kadras.io/1.30.1.yml | 226 ------- .../1.17.1+kadras.1.yml | 377 ----------- .../crossplane.packages.kadras.io/1.18.0.yml | 385 ----------- .../crossplane.packages.kadras.io/1.18.1.yml | 385 ----------- .../dapr.packages.kadras.io/1.14.4.yml | 208 ------ .../4.12.1.yml | 211 ------ .../0.4.1.yml | 607 ------------------ .../0.5.0.yml | 607 ------------------ .../0.21.2.yml | 276 -------- .../0.22.0.yml | 276 -------- .../flux.packages.kadras.io/2.4.0.yml | 107 --- .../1.16.0.yml | 304 --------- .../kyverno.packages.kadras.io/1.13.0.yml | 182 ------ .../kyverno.packages.kadras.io/1.13.1.yml | 182 ------ .../1.24.1.yml | 31 - .../2.11.0.yml | 44 -- .../0.18.1.yml | 35 - .../0.14.1.yml | 293 --------- 20 files changed, 5150 deletions(-) delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.16.1.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.16.2.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.30.1.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.18.0.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.18.1.yml delete mode 100644 repo/packages/dapr.packages.kadras.io/1.14.4.yml delete mode 100644 repo/packages/dependency-track.packages.kadras.io/4.12.1.yml delete mode 100644 repo/packages/developer-portal.packages.kadras.io/0.4.1.yml delete mode 100644 repo/packages/developer-portal.packages.kadras.io/0.5.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.4.0.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.16.0.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.13.0.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.13.1.yml delete mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml delete mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.18.1.yml delete mode 100644 repo/packages/tempo-operator.packages.kadras.io/0.14.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.16.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.16.1.yml deleted file mode 100644 index 1feb187..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.16.1.yml +++ /dev/null @@ -1,207 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.16.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2024-10-23T15:19:13Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:0c1c909ffebaf302aef55684dc5fb20907bad141b50a5482c301cb0c2aeb573b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cainjector: - additionalProperties: false - description: Settings for the cainjector controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility.' - minLength: 1 - type: string - type: object - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - challenge: - additionalProperties: false - properties: - dns_provider: - default: digital_ocean - description: 'The DNS provider to use for the ACME dns01 challenge. - Valid options: `digital_ocean`.' - enum: - - digital_ocean - type: string - secret: - additionalProperties: false - properties: - key: - default: "" - description: The key within the Secret that contains the credentials - needed for the dns01 challenge. - type: string - name: - default: "" - description: Name of the Secret containing the credentials needed - for the dns01 challenge. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - needed for the dns01 challenge. - type: string - type: object - type: - default: http01 - description: 'The type of challenge used by the ACME CA Server. - Valid options: `http01`, `dns01`.' - enum: - - http01 - - dns01 - type: string - type: object - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - production: - default: false - description: Whether to use Let's Encrypt staging (recommended for non-production - environments) or production. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - minLength: 1 - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_pki: - additionalProperties: false - description: Settings for the built-in, private PKI - properties: - include: - default: true - description: Whether to include a ClusterIssuer for a private PKI. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - at least 3 replicas are recommended. - minimum: 1 - type: integer - secure_port: - default: 6443 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility.' - type: integer - type: object - type: object - version: 1.16.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml deleted file mode 100644 index a408881..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml +++ /dev/null @@ -1,207 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.16.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2024-12-01T14:51:27Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:1e308d6e3cc271636c0c2f88aa28018c758a8bc8817c920b1d85392bf9507d5a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cainjector: - additionalProperties: false - description: Settings for the cainjector controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility.' - minLength: 1 - type: string - type: object - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - challenge: - additionalProperties: false - properties: - dns_provider: - default: digital_ocean - description: 'The DNS provider to use for the ACME dns01 challenge. - Valid options: `digital_ocean`.' - enum: - - digital_ocean - type: string - secret: - additionalProperties: false - properties: - key: - default: "" - description: The key within the Secret that contains the credentials - needed for the dns01 challenge. - type: string - name: - default: "" - description: Name of the Secret containing the credentials needed - for the dns01 challenge. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - needed for the dns01 challenge. - type: string - type: object - type: - default: http01 - description: 'The type of challenge used by the ACME CA Server. - Valid options: `http01`, `dns01`.' - enum: - - http01 - - dns01 - type: string - type: object - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - production: - default: false - description: Whether to use Let's Encrypt staging (recommended for non-production - environments) or production. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - minLength: 1 - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_pki: - additionalProperties: false - description: Settings for the built-in, private PKI - properties: - include: - default: true - description: Whether to include a ClusterIssuer for a private PKI. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - at least 3 replicas are recommended. - minimum: 1 - type: integer - secure_port: - default: 6443 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility.' - type: integer - type: object - type: object - version: 1.16.2 diff --git a/repo/packages/contour.packages.kadras.io/1.30.1.yml b/repo/packages/contour.packages.kadras.io/1.30.1.yml deleted file mode 100644 index b77a960..0000000 --- a/repo/packages/contour.packages.kadras.io/1.30.1.yml +++ /dev/null @@ -1,226 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.30.1 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2024-11-09T21:50:07Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:a47eea42bc4a86ae0ab51ece316703255159db111c1d94b13c527f9a8501ddea - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - enum: - - json - - text - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - enum: - - info - - debug - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configMapData: - default: {} - description: The YAML contents of the `contour` ConfigMap. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - enum: - - trace - - debug - - info - - warning - - warn - - error - - critical - - "off" - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service. - enum: - - Cluster - - Local - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy. - enum: - - NodePort - - ClusterIP - - LoadBalancer - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, `http` - & `https` are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - minimum: 30 - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - enum: - - Deployment - - DaemonSet - type: string - type: object - type: object - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - minLength: 1 - type: string - type: object - version: 1.30.1 diff --git a/repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml b/repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml deleted file mode 100644 index 38533e8..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml +++ /dev/null @@ -1,377 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.17.1+kadras.1 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2024-10-23T16:01:40Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:86bb758e3c81f0afa16711da1c6914cf05c5dfea1bf577cb19d3b9bf1793c511 - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.17.1+kadras.1 diff --git a/repo/packages/crossplane.packages.kadras.io/1.18.0.yml b/repo/packages/crossplane.packages.kadras.io/1.18.0.yml deleted file mode 100644 index 4f7afc0..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.18.0.yml +++ /dev/null @@ -1,385 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.18.0 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2024-11-11T06:15:39Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:a84cbb46327ef92b717799f0a13e321c320146dd2cfeaf27280410716a2060ee - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - revisionHistoryLimit: - default: "null" - description: The number of RBAC Manager ReplicaSets to retain. - type: "null" - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - revisionHistoryLimit: - default: "null" - description: The number of Crossplane ReplicaSets to retain. - type: "null" - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.18.0 diff --git a/repo/packages/crossplane.packages.kadras.io/1.18.1.yml b/repo/packages/crossplane.packages.kadras.io/1.18.1.yml deleted file mode 100644 index f63fe44..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.18.1.yml +++ /dev/null @@ -1,385 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.18.1 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2024-12-01T14:59:11Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:c1c3b2d526feaec167a7623c6b7fade593c7a0ab82e69d424f7a1a2898a5e9b2 - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - revisionHistoryLimit: - default: "null" - description: The number of RBAC Manager ReplicaSets to retain. - type: "null" - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - revisionHistoryLimit: - default: "null" - description: The number of Crossplane ReplicaSets to retain. - type: "null" - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.18.1 diff --git a/repo/packages/dapr.packages.kadras.io/1.14.4.yml b/repo/packages/dapr.packages.kadras.io/1.14.4.yml deleted file mode 100644 index 142bc7e..0000000 --- a/repo/packages/dapr.packages.kadras.io/1.14.4.yml +++ /dev/null @@ -1,208 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dapr.packages.kadras.io.1.14.4 -spec: - refName: dapr.packages.kadras.io - releasedAt: "2024-09-23T20:18:39Z" - template: - spec: - deploy: - - kapp: - intoNs: dapr-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dapr@sha256:7eba6d689ee0ddc5d378349fbb510723a7a2012a370b9758ac77b59f3f043ca7 - template: - - helmTemplate: - name: dapr - namespace: dapr-system - path: config/helm/upstream/dapr - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - global: - properties: - actors: - properties: - enabled: - default: true - description: Enables actor functionality in the cluster - type: boolean - serviceName: - default: placement - description: Name of the service that provides actor placement services - type: string - type: object - argoRolloutServiceReconciler: - description: 'the issuerFilenames dictionary, if setup, have to contain - 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: - "tls.key"' - properties: - enabled: - default: false - type: boolean - type: object - daprControlPlaneOs: - default: linux - type: string - dnsSuffix: - default: .cluster.local - type: string - extraVolumeMounts: - default: {} - description: 'sentry: placement: operator: injector: scheduler:' - type: object - extraVolumes: - default: {} - description: and extraVolumeMounts are used to mount additional volumes - to the Dapr control plane pods. Useful for using alternative authentication - credentials to sentry. - type: object - ha: - properties: - disruption: - properties: - maximumUnavailable: - default: 25% - type: string - minimumAvailable: - default: "" - type: string - type: object - enabled: - default: false - type: boolean - replicaCount: - default: 3 - type: integer - type: object - imagePullPolicy: - default: IfNotPresent - type: string - imagePullSecrets: - default: "" - description: 'To help compatibility with other charts which use global.imagePullSecrets. - Allow either a string with single imagepullsecret or an array of {name: - pullSecret} maps (k8s-style) or an array of strings (more common helm-style). - global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - - name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - - pullSecret1 - pullSecret2' - type: string - issuerFilenames: - default: {} - type: object - k8sLabels: - properties: - app.kubernetes.io/component: - default: '{{ .Values.component }}' - type: string - app.kubernetes.io/managed-by: - default: helm - type: string - app.kubernetes.io/name: - default: '{{ .Release.Name }}' - type: string - app.kubernetes.io/part-of: - default: dapr - type: string - app.kubernetes.io/version: - default: '{{ .Values.global.tag }}' - type: string - type: object - labels: - default: {} - type: object - logAsJson: - default: false - type: boolean - mtls: - properties: - allowedClockSkew: - default: 15m - type: string - controlPlaneTrustDomain: - default: cluster.local - type: string - enabled: - default: true - type: boolean - mountSentryVolume: - default: true - description: If set to true, a bound service account token will - be mounted and used to authenticate to Sentry. - type: boolean - workloadCertTTL: - default: 24h - type: string - type: object - nodeSelector: - default: {} - type: object - operator: - properties: - watchdogCanPatchPodLabels: - default: false - type: boolean - type: object - priorityClassName: - default: "" - type: string - prometheus: - properties: - enabled: - default: true - type: boolean - port: - default: 9090 - type: integer - type: object - rbac: - properties: - namespaced: - default: false - type: boolean - type: object - registry: - default: ghcr.io/dapr - type: string - reminders: - properties: - serviceName: - default: "" - description: Name of the service that provides reminders If empty, - uses the built-in reminders capabilities in Dapr sidecars - type: string - type: object - scheduler: - properties: - enabled: - default: true - description: Enables scheduler functionality in the cluster - type: boolean - type: object - seccompProfile: - default: "" - type: string - tag: - default: 1.14.4 - type: string - tolerations: - default: [] - items: {} - type: array - type: object - type: object - version: 1.14.4 diff --git a/repo/packages/dependency-track.packages.kadras.io/4.12.1.yml b/repo/packages/dependency-track.packages.kadras.io/4.12.1.yml deleted file mode 100644 index ad15f0a..0000000 --- a/repo/packages/dependency-track.packages.kadras.io/4.12.1.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dependency-track.packages.kadras.io.4.12.1 -spec: - licenses: - - Apache 2.0 - refName: dependency-track.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases - releasedAt: "2024-11-09T22:29:44Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dependency-track@sha256:9445747e1800ec4d9be4cfd3df26e3b556b3656db40f665c9832c77bf3161feb - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - api_server: - additionalProperties: false - description: Settings for the API Server component. - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - format: - default: console - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `warn`, `error`.' - enum: - - trace - - debug - - info - - warn - - error - type: string - type: object - metrics: - additionalProperties: false - description: Settings for metrics. - properties: - enabled: - default: true - description: Whether to enable the generation of Prometheus metrics. - type: boolean - type: object - resources: - additionalProperties: false - description: Resource configuration for the API Server component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "4" - description: CPU limits configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory limits configuration for the API Server - component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: "0.5" - description: CPU requests configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory requests configuration for the API Server - component. - type: string - type: object - type: object - storage: - additionalProperties: false - description: Storage configuration for the API Server component. - properties: - class_name: - default: "" - description: Class name for the PersistenceVolume to create. - type: string - size: - default: 1Gi - description: Size of the PersistenceVolume to create. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Dependency Track. It must be a valid DNS name. - minLength: 4 - type: string - frontend: - additionalProperties: false - description: Settings for the Frontend component. - properties: - replicas: - default: 1 - description: The number of Frontend replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - resources: - additionalProperties: false - description: Resource configuration for the Frontend component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU limits configuration for the Frontend component. - type: string - memory: - default: 128Mi - description: Memory limits configuration for the Frontend component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 150m - description: CPU requests configuration for the Frontend component. - type: string - memory: - default: 64Mi - description: Memory requests configuration for the Frontend - component. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use for enabling TLS in - Dependency Track. - example: kadras-ca-issuer - minLength: 4 - type: string - x-example-description: Kadras private CA - postgresql: - additionalProperties: false - description: Settings for the PostgreSQL database. - properties: - instances: - default: 1 - description: Number of instances for the PostgreSQL database cluster. - Define at least 3 for production scenarios. - minimum: 1 - type: integer - storage: - additionalProperties: false - description: Storage configuration for each PostgreSQL instance. - properties: - size: - default: 1Gi - description: Size of the PersistenceVolume to create for each PostgreSQL - instance. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - system_requirement_check: - default: true - description: Whether Dependency Track will check for memory and CPU requirements - at startup time. - type: boolean - type: object - version: 4.12.1 diff --git a/repo/packages/developer-portal.packages.kadras.io/0.4.1.yml b/repo/packages/developer-portal.packages.kadras.io/0.4.1.yml deleted file mode 100644 index 69a9585..0000000 --- a/repo/packages/developer-portal.packages.kadras.io/0.4.1.yml +++ /dev/null @@ -1,607 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: developer-portal.packages.kadras.io.0.4.1 -spec: - refName: developer-portal.packages.kadras.io - releasedAt: "2024-11-10T20:15:35Z" - template: - spec: - deploy: - - kapp: - intoNs: backstage - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-developer-portal@sha256:3ce0698652631108e01dbba342008c17d29b66d0fcc1de02a67fd2d8142f8551 - template: - - helmTemplate: - name: backstage - namespace: backstage - path: config/helm/upstream/backstage - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - backstage: - description: Backstage parameters @default -- See below - properties: - affinity: - default: {} - description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' - type: object - annotations: - default: {} - description: Additional custom annotations for the `Deployment` resource - type: object - appConfig: - default: {} - description: 'Allows to define the appConfig as a multiline string that - generates a ConfigMap automatically, not requiring to have it pre - provisioned as with the extraAppConfig key. DO NOT USE if you need - to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: - https://somedomain.tld -- Generates ConfigMap and configures it in - the Backstage pods' - type: object - args: - default: [] - description: Backstage container command arguments - items: {} - type: array - command: - default: [] - description: Backstage container command - items: - default: node - type: string - type: array - containerPorts: - description: Container ports on the Deployment - properties: - backend: - default: 7007 - type: integer - type: object - containerSecurityContext: - default: {} - description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' - type: object - extraAppConfig: - default: [] - description: Extra app configuration files to inline into command arguments - items: {} - type: array - extraContainers: - default: [] - description: Deployment sidecars - items: {} - type: array - extraEnvVars: - default: [] - description: Backstage container environment variables - items: {} - type: array - extraEnvVarsCM: - default: [] - description: Backstage container environment variables from existing - ConfigMaps - items: {} - type: array - extraEnvVarsSecrets: - default: [] - description: Backstage container environment variables from existing - Secrets - items: {} - type: array - extraVolumeMounts: - default: [] - description: Backstage container additional volume mounts - items: {} - type: array - extraVolumes: - default: [] - description: Backstage container additional volumes - items: {} - type: array - image: - properties: - digest: - default: "" - description: Backstage image digest (digest takes precedence over - image tag) - type: string - pullPolicy: - default: Always - description: 'Specify a imagePullPolicy. Defaults to ''Always'' - if image tag is ''latest'', else set to ''IfNotPresent''
- Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' - type: string - pullSecrets: - default: [] - description: 'Optionally specify an array of imagePullSecrets. Secrets - must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -
E.g: `pullSecrets: [myRegistryKeySecretName]`' - items: {} - type: array - registry: - default: ghcr.io - description: Backstage image registry - type: string - repository: - default: backstage/backstage - description: Backstage image repository - type: string - tag: - default: latest - description: Backstage image tag (immutable tags are recommended) - type: string - type: object - initContainers: - default: [] - description: Backstage container init containers - items: {} - type: array - installDir: - default: /app - description: Directory containing the backstage installation - type: string - livenessProbe: - description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - items: {} - type: array - extraTls: - default: [] - description: 'The TLS configuration for additional hostnames to be covered - with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls - ' - items: {} - type: array - host: - default: "" - description: 'Hostname to be used to expose the route to access the - backstage application (e.g: backstage.IP.nip.io)' - type: string - path: - default: / - description: 'Path to be used to expose the full route to access the - backstage application (e.g: IP.nip.io/backstage)' - type: string - tls: - description: Ingress TLS parameters - properties: - enabled: - default: false - description: Enable TLS configuration for the host defined at `ingress.host` - parameter - type: boolean - secretName: - default: "" - description: The name to which the TLS Secret will be called - type: string - type: object - type: object - kubeVersion: - default: "" - description: |- - Common parameters - -- Override Kubernetes version - type: string - metrics: - description: Metrics configuration - properties: - serviceMonitor: - description: ServiceMonitor configuration
Allows configuring - your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) - using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) - can understand. - properties: - annotations: - default: {} - description: ServiceMonitor annotations - type: object - enabled: - default: false - description: If enabled, a ServiceMonitor resource for Prometheus - Operator is created
Prometheus Operator must be installed - in your cluster prior to enabling. - type: boolean - interval: - default: "null" - description: ServiceMonitor scrape interval - type: "null" - labels: - default: {} - description: Additional ServiceMonitor labels - type: object - path: - default: /metrics - description: ServiceMonitor endpoint path
Note that the /metrics - endpoint is NOT present in a freshly scaffolded Backstage app. - To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). - type: string - type: object - type: object - nameOverride: - default: "" - description: String to partially override common.names.fullname - type: string - networkPolicy: - description: '@section NetworkPolicy parameters' - properties: - egressRules: - description: Egress Rules - properties: - customRules: - default: [] - description: Additional custom egress rules - items: {} - type: array - denyConnectionsToExternal: - default: false - description: Deny external connections. Should not be enabled when - working with an external database. - type: boolean - type: object - enabled: - default: false - description: Specifies whether a NetworkPolicy should be created - type: boolean - ingressRules: - description: Ingress Rules - properties: - customRules: - default: [] - description: Additional custom ingress rules - items: {} - type: array - namespaceSelector: - default: {} - description: Namespace selector label allowed to access the Backstage - instance - type: object - podSelector: - default: {} - description: Pod selector label allowed to access the Backstage - instance - type: object - type: object - type: object - postgresql: - description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) - @default -- See below - properties: - architecture: - default: standalone - description: PostgreSQL architecture (`standalone` or `replication`) - type: string - auth: - description: The authentication details of the Postgres database - properties: - existingSecret: - default: "" - description: Name of existing secret to use for PostgreSQL credentials - type: string - password: - default: "" - description: Password for the custom user to create - type: string - secretKeys: - description: The secret keys Postgres will look for to retrieve - the relevant password - properties: - adminPasswordKey: - default: admin-password - description: The key in which Postgres will look for, for the - admin password, in the existing Secret - type: string - replicationPasswordKey: - default: replication-password - description: The key in which Postgres will look for, for the - replication password, in the existing Secret - type: string - userPasswordKey: - default: user-password - description: The key in which Postgres will look for, for the - user password, in the existing Secret - type: string - type: object - username: - default: bn_backstage - description: Name for a custom user to create - type: string - type: object - enabled: - default: false - description: Switch to enable or disable the PostgreSQL helm chart - type: boolean - type: object - service: - description: |- - @section Traffic Exposure parameters - Service parameters -- Service parameters @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for Backstage service - type: object - clusterIP: - default: "" - description: 'Backstage service Cluster IP
E.g `clusterIP: None`' - type: string - externalTrafficPolicy: - default: Cluster - description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' - type: string - extraPorts: - default: [] - description: Extra ports to expose in the Backstage service (normally - used with the `sidecar` value) - items: {} - type: array - loadBalancerIP: - default: "" - description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' - type: string - loadBalancerSourceRanges: - default: [] - description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer -
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' - items: {} - type: array - nodePorts: - description: Node port for the Backstage client connections Choose port - between `30000-32767` - properties: - backend: - default: "" - type: string - type: object - ports: - description: Backstage svc port for client connections - properties: - backend: - default: 7007 - type: integer - name: - default: http-backend - description: Backstage svc port name - type: string - targetPort: - default: backend - description: Backstage svc target port referencing receiving pod - container port - type: string - type: object - sessionAffinity: - default: None - description: 'Control where client requests go, to the same pod or round-robin - (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' - type: string - type: - default: ClusterIP - description: Kubernetes Service type - type: string - type: object - serviceAccount: - description: Service Account Configuration @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for the ServiceAccount. - type: object - automountServiceAccountToken: - default: true - description: Auto-mount the service account token in the pod - type: boolean - create: - default: false - description: Enable the creation of a ServiceAccount for Backstage pods - type: boolean - labels: - default: {} - description: Additional custom labels to the service ServiceAccount. - type: object - name: - default: "" - description: Name of the ServiceAccount to use If not set and `serviceAccount.create` - is true, a name is generated - type: string - type: object - type: object - version: 0.4.1 diff --git a/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml deleted file mode 100644 index e0dd560..0000000 --- a/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml +++ /dev/null @@ -1,607 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: developer-portal.packages.kadras.io.0.5.0 -spec: - refName: developer-portal.packages.kadras.io - releasedAt: "2024-12-02T06:15:48Z" - template: - spec: - deploy: - - kapp: - intoNs: backstage - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-developer-portal@sha256:63627a8553c9ce3e3dcc03755ae47eb4600c99c573fe50350e061a429d4722b6 - template: - - helmTemplate: - name: backstage - namespace: backstage - path: config/helm/upstream/backstage - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - backstage: - description: Backstage parameters @default -- See below - properties: - affinity: - default: {} - description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' - type: object - annotations: - default: {} - description: Additional custom annotations for the `Deployment` resource - type: object - appConfig: - default: {} - description: 'Allows to define the appConfig as a multiline string that - generates a ConfigMap automatically, not requiring to have it pre - provisioned as with the extraAppConfig key. DO NOT USE if you need - to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: - https://somedomain.tld -- Generates ConfigMap and configures it in - the Backstage pods' - type: object - args: - default: [] - description: Backstage container command arguments - items: {} - type: array - command: - default: [] - description: Backstage container command - items: - default: node - type: string - type: array - containerPorts: - description: Container ports on the Deployment - properties: - backend: - default: 7007 - type: integer - type: object - containerSecurityContext: - default: {} - description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' - type: object - extraAppConfig: - default: [] - description: Extra app configuration files to inline into command arguments - items: {} - type: array - extraContainers: - default: [] - description: Deployment sidecars - items: {} - type: array - extraEnvVars: - default: [] - description: Backstage container environment variables - items: {} - type: array - extraEnvVarsCM: - default: [] - description: Backstage container environment variables from existing - ConfigMaps - items: {} - type: array - extraEnvVarsSecrets: - default: [] - description: Backstage container environment variables from existing - Secrets - items: {} - type: array - extraVolumeMounts: - default: [] - description: Backstage container additional volume mounts - items: {} - type: array - extraVolumes: - default: [] - description: Backstage container additional volumes - items: {} - type: array - image: - properties: - digest: - default: "" - description: Backstage image digest (digest takes precedence over - image tag) - type: string - pullPolicy: - default: Always - description: 'Specify a imagePullPolicy. Defaults to ''Always'' - if image tag is ''latest'', else set to ''IfNotPresent''
- Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' - type: string - pullSecrets: - default: [] - description: 'Optionally specify an array of imagePullSecrets. Secrets - must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -
E.g: `pullSecrets: [myRegistryKeySecretName]`' - items: {} - type: array - registry: - default: ghcr.io - description: Backstage image registry - type: string - repository: - default: backstage/backstage - description: Backstage image repository - type: string - tag: - default: latest - description: Backstage image tag (immutable tags are recommended) - type: string - type: object - initContainers: - default: [] - description: Backstage container init containers - items: {} - type: array - installDir: - default: /app - description: Directory containing the backstage installation - type: string - livenessProbe: - description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - items: {} - type: array - extraTls: - default: [] - description: 'The TLS configuration for additional hostnames to be covered - with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls - ' - items: {} - type: array - host: - default: "" - description: 'Hostname to be used to expose the route to access the - backstage application (e.g: backstage.IP.nip.io)' - type: string - path: - default: / - description: 'Path to be used to expose the full route to access the - backstage application (e.g: IP.nip.io/backstage)' - type: string - tls: - description: Ingress TLS parameters - properties: - enabled: - default: false - description: Enable TLS configuration for the host defined at `ingress.host` - parameter - type: boolean - secretName: - default: "" - description: The name to which the TLS Secret will be called - type: string - type: object - type: object - kubeVersion: - default: "" - description: |- - Common parameters - -- Override Kubernetes version - type: string - metrics: - description: Metrics configuration - properties: - serviceMonitor: - description: ServiceMonitor configuration
Allows configuring - your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) - using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) - can understand. - properties: - annotations: - default: {} - description: ServiceMonitor annotations - type: object - enabled: - default: false - description: If enabled, a ServiceMonitor resource for Prometheus - Operator is created
Prometheus Operator must be installed - in your cluster prior to enabling. - type: boolean - interval: - default: "null" - description: ServiceMonitor scrape interval - type: "null" - labels: - default: {} - description: Additional ServiceMonitor labels - type: object - path: - default: /metrics - description: ServiceMonitor endpoint path
Note that the /metrics - endpoint is NOT present in a freshly scaffolded Backstage app. - To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). - type: string - type: object - type: object - nameOverride: - default: "" - description: String to partially override common.names.fullname - type: string - networkPolicy: - description: '@section NetworkPolicy parameters' - properties: - egressRules: - description: Egress Rules - properties: - customRules: - default: [] - description: Additional custom egress rules - items: {} - type: array - denyConnectionsToExternal: - default: false - description: Deny external connections. Should not be enabled when - working with an external database. - type: boolean - type: object - enabled: - default: false - description: Specifies whether a NetworkPolicy should be created - type: boolean - ingressRules: - description: Ingress Rules - properties: - customRules: - default: [] - description: Additional custom ingress rules - items: {} - type: array - namespaceSelector: - default: {} - description: Namespace selector label allowed to access the Backstage - instance - type: object - podSelector: - default: {} - description: Pod selector label allowed to access the Backstage - instance - type: object - type: object - type: object - postgresql: - description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) - @default -- See below - properties: - architecture: - default: standalone - description: PostgreSQL architecture (`standalone` or `replication`) - type: string - auth: - description: The authentication details of the Postgres database - properties: - existingSecret: - default: "" - description: Name of existing secret to use for PostgreSQL credentials - type: string - password: - default: "" - description: Password for the custom user to create - type: string - secretKeys: - description: The secret keys Postgres will look for to retrieve - the relevant password - properties: - adminPasswordKey: - default: admin-password - description: The key in which Postgres will look for, for the - admin password, in the existing Secret - type: string - replicationPasswordKey: - default: replication-password - description: The key in which Postgres will look for, for the - replication password, in the existing Secret - type: string - userPasswordKey: - default: user-password - description: The key in which Postgres will look for, for the - user password, in the existing Secret - type: string - type: object - username: - default: bn_backstage - description: Name for a custom user to create - type: string - type: object - enabled: - default: false - description: Switch to enable or disable the PostgreSQL helm chart - type: boolean - type: object - service: - description: |- - @section Traffic Exposure parameters - Service parameters -- Service parameters @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for Backstage service - type: object - clusterIP: - default: "" - description: 'Backstage service Cluster IP
E.g `clusterIP: None`' - type: string - externalTrafficPolicy: - default: Cluster - description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' - type: string - extraPorts: - default: [] - description: Extra ports to expose in the Backstage service (normally - used with the `sidecar` value) - items: {} - type: array - loadBalancerIP: - default: "" - description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' - type: string - loadBalancerSourceRanges: - default: [] - description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer -
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' - items: {} - type: array - nodePorts: - description: Node port for the Backstage client connections Choose port - between `30000-32767` - properties: - backend: - default: "" - type: string - type: object - ports: - description: Backstage svc port for client connections - properties: - backend: - default: 7007 - type: integer - name: - default: http-backend - description: Backstage svc port name - type: string - targetPort: - default: backend - description: Backstage svc target port referencing receiving pod - container port - type: string - type: object - sessionAffinity: - default: None - description: 'Control where client requests go, to the same pod or round-robin - (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' - type: string - type: - default: ClusterIP - description: Kubernetes Service type - type: string - type: object - serviceAccount: - description: Service Account Configuration @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for the ServiceAccount. - type: object - automountServiceAccountToken: - default: true - description: Auto-mount the service account token in the pod - type: boolean - create: - default: false - description: Enable the creation of a ServiceAccount for Backstage pods - type: boolean - labels: - default: {} - description: Additional custom labels to the service ServiceAccount. - type: object - name: - default: "" - description: Name of the ServiceAccount to use If not set and `serviceAccount.create` - is true, a name is generated - type: string - type: object - type: object - version: 0.5.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml b/repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml deleted file mode 100644 index 4c67417..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml +++ /dev/null @@ -1,276 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.21.2 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases - releasedAt: "2024-11-11T05:52:24Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:d863da4b71e20b4e22f5ac223b1bbb5672333ca6022906a58580a8047a9906de - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - crossplane: - default: {} - description: Configuration for the Crossplane package. - nullable: true - dapr: - default: {} - description: Configuration for the Dapr package. - nullable: true - dependency_track: - default: {} - description: Configuration for the Dependency Track package. - nullable: true - developer_portal: - default: {} - description: Configuration for the Developer Portal package. - nullable: true - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - gitops_configurer: - default: {} - description: Configuration for the GitOps Configurer package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - additional_packages: - default: [] - description: A list of packages to include in the installation. - items: - default: "" - type: string - type: array - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - enum: - - private - - letsencrypt_staging - - letsencrypt - - custom - type: string - type: object - type: object - namespace: - default: kadras-system - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `build`, `run`.' - enum: - - standalone - - build - - run - type: string - type: object - postgresql_operator: - default: {} - description: Configuration for the PostgreSQL Operator package. - nullable: true - rabbitmq_operator: - default: {} - description: Configuration for the RabbitMQ Operator package. - nullable: true - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - service_binding: - default: {} - description: Configuration for the Service Binding package. - nullable: true - tempo_operator: - default: {} - description: Configuration for the Tempo Operator package. - nullable: true - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.21.2 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml deleted file mode 100644 index 7230222..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml +++ /dev/null @@ -1,276 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.22.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases - releasedAt: "2024-12-02T07:17:41Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:3c0d66ee3846c602b386f4e1ffd0e7fc864565b1cb01e27df1ce1096f97f7019 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - crossplane: - default: {} - description: Configuration for the Crossplane package. - nullable: true - dapr: - default: {} - description: Configuration for the Dapr package. - nullable: true - dependency_track: - default: {} - description: Configuration for the Dependency Track package. - nullable: true - developer_portal: - default: {} - description: Configuration for the Developer Portal package. - nullable: true - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - gitops_configurer: - default: {} - description: Configuration for the GitOps Configurer package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - additional_packages: - default: [] - description: A list of packages to include in the installation. - items: - default: "" - type: string - type: array - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - enum: - - private - - letsencrypt_staging - - letsencrypt - - custom - type: string - type: object - type: object - namespace: - default: kadras-system - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `build`, `run`.' - enum: - - standalone - - build - - run - type: string - type: object - postgresql_operator: - default: {} - description: Configuration for the PostgreSQL Operator package. - nullable: true - rabbitmq_operator: - default: {} - description: Configuration for the RabbitMQ Operator package. - nullable: true - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - service_binding: - default: {} - description: Configuration for the Service Binding package. - nullable: true - tempo_operator: - default: {} - description: Configuration for the Tempo Operator package. - nullable: true - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.22.0 diff --git a/repo/packages/flux.packages.kadras.io/2.4.0.yml b/repo/packages/flux.packages.kadras.io/2.4.0.yml deleted file mode 100644 index cff6420..0000000 --- a/repo/packages/flux.packages.kadras.io/2.4.0.yml +++ /dev/null @@ -1,107 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.4.0 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2024-10-23T16:04:56Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:ea9f89ec94bb44794e7262931247c0d69a5026f70c82bc0299f37c55107f6fb6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - enum: - - trace - - debug - - info - - error - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.4.0 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.16.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.16.0.yml deleted file mode 100644 index b8d7f1d..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.16.0.yml +++ /dev/null @@ -1,304 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.16.0 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2024-10-23T15:34:31Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:d06089096467bb462741a0ba3ea90b0153785fa0fbe90307c666215eec19d393 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - enum: - - http - - https - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - enum: - - Enabled - - Redirected - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - minimum: 0 - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - enum: - - zipkin - - none - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - enum: - - "true" - - "false" - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - maxLength: 3 - minLength: 1 - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - minLength: 4 - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - minLength: 1 - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - minLength: 1 - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 20 - minimum: 1 - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 5 - minimum: 1 - type: integer - type: object - type: object - type: object - version: 1.16.0 diff --git a/repo/packages/kyverno.packages.kadras.io/1.13.0.yml b/repo/packages/kyverno.packages.kadras.io/1.13.0.yml deleted file mode 100644 index 4c24d55..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.13.0.yml +++ /dev/null @@ -1,182 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.13.0 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2024-11-09T21:42:29Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:e8e4509f1c1943d1020bf230ceb971274136e5dd65922dcb27e011ec81527657 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - minimum: 1 - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - enum: - - text - - json - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - maximum: 6 - minimum: 1 - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - enum: - - grpc - - prometheus - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.13.0 diff --git a/repo/packages/kyverno.packages.kadras.io/1.13.1.yml b/repo/packages/kyverno.packages.kadras.io/1.13.1.yml deleted file mode 100644 index c364339..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.13.1.yml +++ /dev/null @@ -1,182 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.13.1 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2024-12-01T14:41:08Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:90e617371815dc55f487a758d5122f9049664f37bb47a5d67763fa3591b3ff11 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - minimum: 1 - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - enum: - - text - - json - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - maximum: 6 - minimum: 1 - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - enum: - - grpc - - prometheus - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.13.1 diff --git a/repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml b/repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml deleted file mode 100644 index bcd1ea6..0000000 --- a/repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml +++ /dev/null @@ -1,31 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: postgresql-operator.packages.kadras.io.1.24.1 -spec: - licenses: - - Apache 2.0 - refName: postgresql-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-postgresql-operator/releases - releasedAt: "2024-10-23T15:40:03Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-postgresql-operator@sha256:feac04e108012c264ba5d2932a5c05c129e9c367f45ee9233b642593c7356755 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 1.24.1 diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml deleted file mode 100644 index e9476b6..0000000 --- a/repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml +++ /dev/null @@ -1,44 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: rabbitmq-operator.packages.kadras.io.2.11.0 -spec: - licenses: - - Apache 2.0 - refName: rabbitmq-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases - releasedAt: "2024-10-23T15:52:14Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:b510e8dd5b1da589f69fcf9882f0f0444840f32fac66d088f1cafc78aef6d1d4 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Logging configuration. - properties: - level: - default: info - description: The Operator log level. Valid options are `info` and `debug`. - enum: - - info - - debug - type: string - type: object - type: object - version: 2.11.0 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.18.1.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.18.1.yml deleted file mode 100644 index d062179..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.18.1.yml +++ /dev/null @@ -1,35 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.18.1 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases - releasedAt: "2024-09-23T19:59:51Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:f041a9b19a252e03ab5e8d6070a7aaacd3422a269e3c01e35a615e1fa67232c3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.18.1 diff --git a/repo/packages/tempo-operator.packages.kadras.io/0.14.1.yml b/repo/packages/tempo-operator.packages.kadras.io/0.14.1.yml deleted file mode 100644 index f3328bd..0000000 --- a/repo/packages/tempo-operator.packages.kadras.io/0.14.1.yml +++ /dev/null @@ -1,293 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tempo-operator.packages.kadras.io.0.14.1 -spec: - licenses: - - Apache 2.0 - refName: tempo-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tempo-operator/releases - releasedAt: "2024-11-09T22:19:28Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tempo-operator@sha256:39174fa32039039db4e15d2ec1f29aab28e86268fca463fd3a788e020736a8fe - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - configMapData: - default: {} - description: The YAML contents of the `tempo-operator-manager-config` ConfigMap. - See https://github.com/grafana/tempo-operator/blob/main/docs/operator/config.yaml - for more information. - nullable: true - controller: - additionalProperties: false - description: Settings for the Tempo Operator controller. - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order to - enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tempo: - additionalProperties: false - description: Settings for Tempo. - properties: - extraConfig: - default: {} - description: Additional configuration for Tempo that will be merged - with the one generated by the Operator. It has higher precedence than - the Operator. - nullable: true - jaegerui: - additionalProperties: false - description: Settings for Jaeger UI. - properties: - enabled: - default: false - description: Whether to enable the Jaeger UI to visualize traces. - type: boolean - type: object - namespace: - default: default - description: Namespace where to provision a Tempo installation, stack - or monolithic. - type: string - observability: - additionalProperties: false - description: Settings for observability. - properties: - grafana: - additionalProperties: false - properties: - createDatasource: - default: false - description: Whether a Datasource managed by Grafana Operator - should be created for Tempo. - type: boolean - type: object - metrics: - additionalProperties: false - properties: - createPrometheusRules: - default: false - description: Whether PrometheusRules for alerts managed by Prometheus - Operator should be created for Tempo. - type: boolean - createServiceMonitors: - default: false - description: Whether ServiceMonitors managed by Prometheus Operator - should be created for Tempo. - type: boolean - type: object - tracing: - additionalProperties: false - properties: - jaegerEndpoint: - default: "" - description: The Jaeger endpoint where to send traces. Only - for TempoStack. - type: string - samplingFraction: - default: "" - description: Sampling frequence for Tempo traces. Only for TempoStack. - type: string - type: object - type: object - resources: - additionalProperties: false - description: Settings for total resources. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 750m - type: string - memory: - default: 2Gi - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 500m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - storage: - additionalProperties: false - description: Settings for storage. - properties: - backend: - additionalProperties: false - description: Tracing backend object storage configuration. - properties: - secret: - additionalProperties: false - properties: - name: - default: "" - description: Name of the Secret containing the credentials - to access the configured object storage. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - to access the configured object storage. - type: string - type: object - type: - default: memory - description: 'Type of object storage that should be used. Valid - options: `azure`, `gcs`, `s3`, `memory` (only for TempoMonolithic).' - enum: - - azure - - gcs - - s3 - - memory - type: string - type: object - size: - default: 10Gi - description: The size of the storage used by Tempo. - type: string - type: object - tempoMonolithic: - additionalProperties: false - description: Settings for the built-in TempoMonolithic instance. - properties: - enabled: - default: false - description: Whether to deploy the built-in TempoMonolithic instance. - type: boolean - type: object - tempoStack: - additionalProperties: false - description: Settings for the built-in TempoStack instance. - properties: - compactor: - additionalProperties: false - description: Settings for the Tempo Compactor. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Compactor - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - distributor: - additionalProperties: false - description: Settings for the Tempo Distributor. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Distributor - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - enabled: - default: false - description: Whether to deploy the built-in TempoStack instance. - type: boolean - gateway: - additionalProperties: false - description: Settings for the Tempo Gateway. - properties: - enabled: - default: false - description: Whether to enable the Tempo Gateway. - type: boolean - ingress: - additionalProperties: false - description: Ingress for the Tempo Gateway. - properties: - annotations: - additionalProperties: false - description: The annotations for the Ingress object. - properties: {} - type: object - host: - default: "" - description: The hostname of the Ingress object. - type: string - ingressClassName: - default: contour - description: The class of the Ingress Controller to use - for the Tempo Gateway. - type: string - type: - default: null - description: 'Type of Ingress for the Tempo Gateway. Valid - options: `ingress`, `route`.' - enum: - - ingress - - route - nullable: true - type: string - type: object - type: object - ingester: - additionalProperties: false - description: Settings for the Tempo Ingester. - properties: - podSecurityContext: - additionalProperties: false - description: PodSecurityContext for the Ingester component. - properties: {} - type: object - replicas: - default: 1 - description: Number of replicas to deploy for the Ingester component. - In order to enable high availability, it should be greater - than 1. - type: integer - type: object - querier: - additionalProperties: false - description: Settings for the Tempo Querier. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Querier component. - In order to enable high availability, it should be greater - than 1. - type: integer - type: object - queryFrontend: - additionalProperties: false - description: Settings for the Tempo Query Frontend. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Query Frontend - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - type: object - type: object - type: object - version: 0.14.1 From e15c18384cddbfcc88f278a7d2106f87f0f76177 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 18:50:30 +0200 Subject: [PATCH 26/26] Set version 0.24.0 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 40a5644..e7b3419 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.23.2 + VERSION: 0.24.0 jobs: build: pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy