-
Notifications
You must be signed in to change notification settings - Fork 20
/
.bloodhound.yml
39 lines (34 loc) · 1.56 KB
/
.bloodhound.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
# Kubernetes versions
# (e.g. 1.23.0 - has to match versions in https://github.com/yannh/kubernetes-json-schema)
k8s_versions:
- 1.28.7
- 1.29.9
- 1.30.5
- 1.31.1
# paths to load (in that order)
paths:
- common/base
- services
# use strict validation (reject unknown fields in resources)
strict: true
# types to be skipped (e.g. certmanager.k8s.io/v1, or certmanager.k8s.io/v1/Certificate)
skip_types:
# constraint types are generated by Gatekeeper
- constraints.gatekeeper.sh/v1beta1
- nvidia.com/v1/ClusterPolicy
# load additional CRDs (URLs of CRD yaml files)
additional_crds:
# because the istio-chart is just referencing the istio-controller, so it doesn't contain the CRDs
- https://raw.githubusercontent.com/istio/istio/1.9.1/manifests/charts/base/crds/crd-all.gen.yaml
# TODO: verify this is not masking real problem in https://d2iq.atlassian.net/browse/D2IQ-99126
- https://raw.githubusercontent.com/kubernetes-retired/kubefed/master/charts/kubefed/crds/crds.yaml
- https://raw.githubusercontent.com/cert-manager/cert-manager/master/deploy/crds/crd-certificates.yaml
- https://raw.githubusercontent.com/cert-manager/cert-manager/master/deploy/crds/crd-issuers.yaml
- https://raw.githubusercontent.com/rook/rook/master/deploy/olm/assemble/objectbucket.io_objectbucketclaims.yaml
# set values for substitution variables (e.g. ${releaseNamespace}) in the resources
substitution_vars:
releaseNamespace: kommander
workspaceNamespace: workspace
certificateIssuerName: issuer
certificatesIssuerName: issuer
certificateIssuerKind: ClusterIssuer