kyverno-reporter values.yaml📜
nameOverride📜
Type: string
Default value
""
image.registry📜
Type: string
Default value
"registry1.dso.mil"
image.repository📜
Type: string
Default value
"ironbank/nirmata/policy-reporter/policy-reporter"
image.pullPolicy📜
Type: string
Default value
"IfNotPresent"
image.tag📜
Type: string
Default value
"2.12.0"
imagePullSecrets📜
Type: list
Default value
[]
Default value (formatted)
[]
replicaCount📜
Type: int
Default value
1
deploymentStrategy📜
Type: object
Default value
{}
Default value (formatted)
{}
port.name📜
Type: string
Default value
"http"
port.number📜
Type: int
Default value
8080
annotations📜
Type: object
Default value
{}
Default value (formatted)
{}
rbac.enabled📜
Type: bool
Default value
true
serviceAccount.create📜
Type: bool
Default value
true
serviceAccount.annotations📜
Type: object
Default value
{}
Default value (formatted)
{}
serviceAccount.name📜
Type: string
Default value
""
serviceAccount.automountServiceAccountToken📜
Type: bool
Default value
false
service.enabled📜
Type: bool
Default value
true
service.annotations📜
Type: object
Default value
{}
Default value (formatted)
{}
service.labels📜
Type: object
Default value
{}
Default value (formatted)
{}
service.type📜
Type: string
Default value
"ClusterIP"
service.port📜
Type: int
Default value
8080
podSecurityContext.fsGroup📜
Type: int
Default value
1234
securityContext.runAsUser📜
Type: int
Default value
1234
securityContext.runAsGroup📜
Type: int
Default value
1234
securityContext.runAsNonRoot📜
Type: bool
Default value
true
securityContext.privileged📜
Type: bool
Default value
false
securityContext.allowPrivilegeEscalation📜
Type: bool
Default value
false
securityContext.readOnlyRootFilesystem📜
Type: bool
Default value
true
securityContext.capabilities.drop[0]📜
Type: string
Default value
"ALL"
securityContext.seccompProfile.type📜
Type: string
Default value
"RuntimeDefault"
podAnnotations📜
Type: object
Default value
{}
Default value (formatted)
{}
podLabels📜
Type: object
Default value
{}
Default value (formatted)
{}
resources📜
Type: object
Default value
{}
Default value (formatted)
{}
networkPolicy.enabled📜
Type: bool
Default value
false
networkPolicy.egress[0].to📜
Type: string
Default value
nil
networkPolicy.egress[0].ports[0].protocol📜
Type: string
Default value
"TCP"
networkPolicy.egress[0].ports[0].port📜
Type: int
Default value
6443
networkPolicy.ingress📜
Type: list
Default value
[]
Default value (formatted)
[]
rest.enabled📜
Type: bool
Default value
false
metrics.enabled📜
Type: bool
Default value
false
metrics.mode📜
Type: string
Default value
"detailed"
metrics.customLabels📜
Type: list
Default value
[]
Default value (formatted)
[]
profiling.enabled📜
Type: bool
Default value
false
reportFilter.namespaces.include📜
Type: list
Default value
[]
Default value (formatted)
[]
reportFilter.namespaces.exclude📜
Type: list
Default value
[]
Default value (formatted)
[]
reportFilter.clusterReports.disabled📜
Type: bool
Default value
false
ui.enabled📜
Type: bool
Default value
false
kyvernoPlugin.enabled📜
Type: bool
Default value
false
monitoring.enabled📜
Type: bool
Default value
false
global.plugins.kyverno📜
Type: bool
Default value
false
global.backend📜
Type: string
Default value
""
global.fullnameOverride📜
Type: string
Default value
""
global.namespace📜
Type: string
Default value
""
global.labels📜
Type: object
Default value
{}
Default value (formatted)
{}
policyPriorities📜
Type: object
Default value
{}
Default value (formatted)
{}
emailReports.clusterName📜
Type: string
Default value
""
emailReports.smtp.secret📜
Type: string
Default value
""
emailReports.smtp.host📜
Type: string
Default value
""
emailReports.smtp.port📜
Type: int
Default value
465
emailReports.smtp.username📜
Type: string
Default value
""
emailReports.smtp.password📜
Type: string
Default value
""
emailReports.smtp.from📜
Type: string
Default value
""
emailReports.smtp.encryption📜
Type: string
Default value
""
emailReports.summary.enabled📜
Type: bool
Default value
false
emailReports.summary.schedule📜
Type: string
Default value
"0 8 * * *"
emailReports.summary.activeDeadlineSeconds📜
Type: int
Default value
300
emailReports.summary.backoffLimit📜
Type: int
Default value
3
emailReports.summary.ttlSecondsAfterFinished📜
Type: int
Default value
0
emailReports.summary.restartPolicy📜
Type: string
Default value
"Never"
emailReports.summary.to📜
Type: list
Default value
[]
Default value (formatted)
[]
emailReports.summary.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
emailReports.summary.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
emailReports.violations.enabled📜
Type: bool
Default value
false
emailReports.violations.schedule📜
Type: string
Default value
"0 8 * * *"
emailReports.violations.activeDeadlineSeconds📜
Type: int
Default value
300
emailReports.violations.backoffLimit📜
Type: int
Default value
3
emailReports.violations.ttlSecondsAfterFinished📜
Type: int
Default value
0
emailReports.violations.restartPolicy📜
Type: string
Default value
"Never"
emailReports.violations.to📜
Type: list
Default value
[]
Default value (formatted)
[]
emailReports.violations.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
emailReports.violations.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
existingTargetConfig.enabled📜
Type: bool
Default value
false
existingTargetConfig.name📜
Type: string
Default value
""
existingTargetConfig.subPath📜
Type: string
Default value
""
target.loki.host📜
Type: string
Default value
""
target.loki.certificate📜
Type: string
Default value
""
target.loki.skipTLS📜
Type: bool
Default value
false
target.loki.secretRef📜
Type: string
Default value
""
target.loki.path📜
Type: string
Default value
""
target.loki.minimumPriority📜
Type: string
Default value
""
target.loki.sources📜
Type: list
Default value
[]
Default value (formatted)
[]
target.loki.skipExistingOnStartup📜
Type: bool
Default value
true
target.loki.customLabels📜
Type: object
Default value
{}
Default value (formatted)
{}
target.loki.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
target.loki.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
target.elasticsearch.host📜
Type: string
Default value
""
target.elasticsearch.certificate📜
Type: string
Default value
""
target.elasticsearch.skipTLS📜
Type: bool
Default value
false
target.elasticsearch.index📜
Type: string
Default value
""
target.elasticsearch.username📜
Type: string
Default value
""
target.elasticsearch.password📜
Type: string
Default value
""
target.elasticsearch.secretRef📜
Type: string
Default value
""
target.elasticsearch.rotation📜
Type: string
Default value
""
target.elasticsearch.minimumPriority📜
Type: string
Default value
""
target.elasticsearch.sources📜
Type: list
Default value
[]
Default value (formatted)
[]
target.elasticsearch.skipExistingOnStartup📜
Type: bool
Default value
true
target.elasticsearch.customFields📜
Type: object
Default value
{}
Default value (formatted)
{}
target.elasticsearch.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
target.elasticsearch.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
target.slack.webhook📜
Type: string
Default value
""
target.slack.secretRef📜
Type: string
Default value
""
target.slack.minimumPriority📜
Type: string
Default value
""
target.slack.sources📜
Type: list
Default value
[]
Default value (formatted)
[]
target.slack.skipExistingOnStartup📜
Type: bool
Default value
true
target.slack.customFields📜
Type: object
Default value
{}
Default value (formatted)
{}
target.slack.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
target.slack.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
target.discord.webhook📜
Type: string
Default value
""
target.discord.secretRef📜
Type: string
Default value
""
target.discord.minimumPriority📜
Type: string
Default value
""
target.discord.sources📜
Type: list
Default value
[]
Default value (formatted)
[]
target.discord.skipExistingOnStartup📜
Type: bool
Default value
true
target.discord.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
target.discord.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
target.teams.webhook📜
Type: string
Default value
""
target.teams.secretRef📜
Type: string
Default value
""
target.teams.certificate📜
Type: string
Default value
""
target.teams.skipTLS📜
Type: bool
Default value
false
target.teams.minimumPriority📜
Type: string
Default value
""
target.teams.sources📜
Type: list
Default value
[]
Default value (formatted)
[]
target.teams.skipExistingOnStartup📜
Type: bool
Default value
true
target.teams.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
target.teams.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
target.ui.host📜
Type: string
Default value
""
target.ui.certificate📜
Type: string
Default value
""
target.ui.skipTLS📜
Type: bool
Default value
false
target.ui.minimumPriority📜
Type: string
Default value
"warning"
target.ui.sources📜
Type: list
Default value
[]
Default value (formatted)
[]
target.ui.skipExistingOnStartup📜
Type: bool
Default value
true
target.webhook.host📜
Type: string
Default value
""
target.webhook.certificate📜
Type: string
Default value
""
target.webhook.skipTLS📜
Type: bool
Default value
false
target.webhook.secretRef📜
Type: string
Default value
""
target.webhook.headers📜
Type: object
Default value
{}
Default value (formatted)
{}
target.webhook.minimumPriority📜
Type: string
Default value
""
target.webhook.sources📜
Type: list
Default value
[]
Default value (formatted)
[]
target.webhook.skipExistingOnStartup📜
Type: bool
Default value
true
target.webhook.customFields📜
Type: object
Default value
{}
Default value (formatted)
{}
target.webhook.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
target.webhook.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
target.s3.accessKeyID📜
Type: string
Default value
""
target.s3.secretAccessKey📜
Type: string
Default value
""
target.s3.secretRef📜
Type: string
Default value
""
target.s3.region📜
Type: string
Default value
""
target.s3.endpoint📜
Type: string
Default value
""
target.s3.bucket📜
Type: string
Default value
""
target.s3.pathStyle📜
Type: bool
Default value
false
target.s3.prefix📜
Type: string
Default value
""
target.s3.minimumPriority📜
Type: string
Default value
""
target.s3.sources📜
Type: list
Default value
[]
Default value (formatted)
[]
target.s3.skipExistingOnStartup📜
Type: bool
Default value
true
target.s3.customFields📜
Type: object
Default value
{}
Default value (formatted)
{}
target.s3.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
target.s3.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
target.kinesis.accessKeyID📜
Type: string
Default value
""
target.kinesis.secretAccessKey📜
Type: string
Default value
""
target.kinesis.secretRef📜
Type: string
Default value
""
target.kinesis.region📜
Type: string
Default value
""
target.kinesis.endpoint📜
Type: string
Default value
""
target.kinesis.streamName📜
Type: string
Default value
""
target.kinesis.minimumPriority📜
Type: string
Default value
""
target.kinesis.sources📜
Type: list
Default value
[]
Default value (formatted)
[]
target.kinesis.skipExistingOnStartup📜
Type: bool
Default value
true
target.kinesis.customFields📜
Type: object
Default value
{}
Default value (formatted)
{}
target.kinesis.filter📜
Type: object
Default value
{}
Default value (formatted)
{}
target.kinesis.channels📜
Type: list
Default value
[]
Default value (formatted)
[]
leaderElection.enabled📜
Type: bool
Default value
false
leaderElection.releaseOnCancel📜
Type: bool
Default value
true
leaderElection.leaseDuration📜
Type: int
Default value
15
leaderElection.renewDeadline📜
Type: int
Default value
10
leaderElection.retryPeriod📜
Type: int
Default value
2
redis.enabled📜
Type: bool
Default value
false
redis.address📜
Type: string
Default value
""
redis.database📜
Type: int
Default value
0
redis.prefix📜
Type: string
Default value
"policy-reporter"
redis.username📜
Type: string
Default value
""
redis.password📜
Type: string
Default value
""
podDisruptionBudget.minAvailable📜
Type: int
Default value
1
Description: Configures the minimum available pods for policy-reporter disruptions. Cannot be used if maxUnavailable is set.
podDisruptionBudget.maxUnavailable📜
Type: string
Default value
nil
Description: Configures the maximum unavailable pods for policy-reporter disruptions. Cannot be used if minAvailable is set.
nodeSelector📜
Type: object
Default value
{}
Default value (formatted)
{}
tolerations📜
Type: list
Default value
[]
Default value (formatted)
[]
affinity📜
Type: object
Default value
{}
Default value (formatted)
{}
topologySpreadConstraints📜
Type: list
Default value
[]
Default value (formatted)
[]
livenessProbe.httpGet.path📜
Type: string
Default value
"/ready"
livenessProbe.httpGet.port📜
Type: string
Default value
"http"
readinessProbe.httpGet.path📜
Type: string
Default value
"/healthz"
readinessProbe.httpGet.port📜
Type: string
Default value
"http"
networkPolicies.enabled📜
Type: bool
Default value
false
networkPolicies.controlPlaneCidr📜
Type: string
Default value
"0.0.0.0/0"
extraVolumes.volumeMounts📜
Type: list
Default value
[]
Default value (formatted)
[]
openshift📜
Type: bool
Default value
false
istio.enabled📜
Type: bool
Default value
false
istio.mtls.mode📜
Type: string
Default value
"STRICT"
bbtests.enabled📜
Type: bool
Default value
false
bbtests.cypress.artifacts📜
Type: bool
Default value
true
bbtests.cypress.envs.cypress_grafana_url📜
Type: string
Default value
"http://grafana.monitoring.svc.cluster.local"
bbtests.cypress.envs.cypress_prometheus_url📜
Type: string
Default value
"http://monitoring-kube-prometheus-prometheus.monitoring.svc.cluster.local:9090"
bbtests.cypress.envs.cypress_reporter_ns📜
Type: string
Default value
"kyverno-reporter"
bbtests.volumes📜
Type: list
Default value
[]
Default value (formatted)
[]