anchore-enterprise values.yaml
📜
domain📜
Type: string
"dev.bigbang.mil"
istio.enabled📜
Type: bool
false
istio.hardened.enabled📜
Type: bool
false
istio.hardened.outboundTrafficPolicyMode📜
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntries📜
Type: list
[]
istio.hardened.customAuthorizationPolicies📜
Type: list
[]
istio.injection📜
Type: string
"disabled"
istio.ui.enabled📜
Type: bool
true
istio.ui.annotations📜
Type: object
{}
istio.ui.labels📜
Type: object
{}
istio.ui.gateways[0]📜
Type: string
"istio-system/main"
istio.ui.hosts[0]📜
Type: string
"anchore.{{ .Values.domain }}"
istio.api.enabled📜
Type: bool
true
istio.api.annotations📜
Type: object
{}
istio.api.labels📜
Type: object
{}
istio.api.gateways[0]📜
Type: string
"istio-system/main"
istio.api.hosts[0]📜
Type: string
"anchore-api.{{ .Values.domain }}"
istio.api.service.apiVersion📜
Type: string
"v2"
istio.mtls📜
Type: object
mode: STRICT
Description: Default peer authentication
istio.mtls.mode📜
Type: string
"STRICT"
Description: STRICT = Allow only mutual TLS traffic, PERMISSIVE = Allow both plain text and mutual TLS traffic
networkPolicies.enabled📜
Type: bool
false
networkPolicies.ingressLabels.app📜
Type: string
"istio-ingressgateway"
networkPolicies.ingressLabels.istio📜
Type: string
"ingressgateway"
networkPolicies.additionalPolicies📜
Type: list
[]
feedsHosts📜
Type: list
[]
openshift📜
Type: bool
false
Description: Openshift Container Platform Feature Toggle
postgresqlSuperUser.postgresUsername📜
Type: string
""
postgresqlSuperUser.postgresPassword📜
Type: string
""
postgresqlSuperUser.existingSecret📜
Type: string
nil
ensureDbJobs.resources.limits.cpu📜
Type: int
2
ensureDbJobs.resources.limits.memory📜
Type: string
"2G"
ensureDbJobs.resources.requests.cpu📜
Type: int
2
ensureDbJobs.resources.requests.memory📜
Type: string
"2G"
monitoring.enabled📜
Type: bool
false
monitoring.namespace📜
Type: string
"monitoring"
monitoring.serviceMonitor.scheme📜
Type: string
""
monitoring.serviceMonitor.tlsConfig📜
Type: object
{}
enterpriseLicenseYaml📜
Type: string
""
sso.enabled📜
Type: bool
false
sso.name📜
Type: string
"keycloak"
sso.acsHttpsPort📜
Type: int
-1
sso.spEntityId📜
Type: string
"platform1_a8604cc9-f5e9-4656-802d-d05624370245_bb8-anchore"
sso.acsUrl📜
Type: string
"https://anchore.bigbang.dev/service/sso/auth/keycloak"
sso.defaultAccount📜
Type: string
"user"
sso.defaultRole📜
Type: string
"read-write"
sso.roleAttribute📜
Type: string
""
sso.requireSignedAssertions📜
Type: bool
false
sso.requireSignedResponse📜
Type: bool
true
sso.idpMetadataUrl📜
Type: string
"https://login.dso.mil/auth/realms/baby-yoda/protocol/saml/descriptor"
sso.host📜
Type: string
"login.dso.mil"
sso.realm📜
Type: string
"baby-yoda"
sso.resources.limits.cpu📜
Type: string
"100m"
sso.resources.limits.memory📜
Type: string
"256Mi"
sso.resources.requests.cpu📜
Type: string
"100m"
sso.resources.requests.memory📜
Type: string
"256Mi"
sso.containerSecurityContext.runAsUser📜
Type: int
26
sso.containerSecurityContext.runAsGroup📜
Type: int
26
sso.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
global.fullnameOverride📜
Type: string
""
global.nameOverride📜
Type: string
"anchore-enterprise"
global.imagePullSecretName📜
Type: string
"private-registry"
image📜
Type: string
"registry1.dso.mil/ironbank/anchore/enterprise/enterprise:5.4.1"
imagePullPolicy📜
Type: string
"IfNotPresent"
imagePullSecretName📜
Type: string
"private-registry"
startMigrationPod📜
Type: bool
true
migrationPodImage📜
Type: string
"registry1.dso.mil/ironbank/opensource/postgres/postgresql:13.12"
serviceAccountName📜
Type: string
""
injectSecretsViaEnv📜
Type: bool
false
licenseSecretName📜
Type: string
"anchore-enterprise-license"
certStoreSecretName📜
Type: string
""
extraEnv📜
Type: list
[]
useExistingSecrets📜
Type: bool
false
existingSecretName📜
Type: string
"anchore-enterprise-env"
labels📜
Type: object
{}
annotations📜
Type: object
{}
scratchVolume.mountPath📜
Type: string
"/analysis_scratch"
scratchVolume.fixGroupPermissions📜
Type: bool
false
scratchVolume.details📜
Type: object
{}
extraVolumes📜
Type: list
[]
extraVolumeMounts📜
Type: list
[]
securityContext.runAsUser📜
Type: int
1000
securityContext.runAsGroup📜
Type: int
1000
securityContext.fsGroup📜
Type: int
1000
containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
probes.liveness.initialDelaySeconds📜
Type: int
120
probes.liveness.timeoutSeconds📜
Type: int
10
probes.liveness.periodSeconds📜
Type: int
10
probes.liveness.failureThreshold📜
Type: int
6
probes.liveness.successThreshold📜
Type: int
1
probes.readiness.timeoutSeconds📜
Type: int
10
probes.readiness.periodSeconds📜
Type: int
10
probes.readiness.failureThreshold📜
Type: int
3
probes.readiness.successThreshold📜
Type: int
1
doSourceAtEntry.enabled📜
Type: bool
false
doSourceAtEntry.filePaths📜
Type: list
[]
configOverride📜
Type: string
""
scripts.anchore-config📜
Type: string
"#!/bin/bash\nwhile IFS= read -r line; do\n while [[ \"$line\" =~ (\\$\\{[a-zA-Z_][a-zA-Z_0-9]*\\}) ]]; do\n VAR_NAME=${BASH_REMATCH[1]#*\\{}; VAR_NAME=${VAR_NAME%\\}};\n line=${line//${BASH_REMATCH[1]}/${!VAR_NAME}};\n done;\n printf '%s\\n' \"$line\";\ndone < /config/config.yaml\n"
anchoreConfig.service_dir📜
Type: string
"/anchore_service"
anchoreConfig.log_level📜
Type: string
"INFO"
anchoreConfig.allow_awsecr_iam_auto📜
Type: bool
true
anchoreConfig.keys.secret📜
Type: string
""
anchoreConfig.keys.privateKeyFileName📜
Type: string
""
anchoreConfig.keys.publicKeyFileName📜
Type: string
""
anchoreConfig.user_authentication.oauth.enabled📜
Type: bool
true
anchoreConfig.user_authentication.oauth.default_token_expiration_seconds📜
Type: int
3600
anchoreConfig.user_authentication.oauth.refresh_token_expiration_seconds📜
Type: int
86400
anchoreConfig.user_authentication.allow_api_keys_for_saml_users📜
Type: bool
false
anchoreConfig.user_authentication.max_api_key_age_days📜
Type: int
365
anchoreConfig.user_authentication.max_api_keys_per_user📜
Type: int
100
anchoreConfig.user_authentication.hashed_passwords📜
Type: bool
true
anchoreConfig.user_authentication.sso_require_existing_users📜
Type: bool
false
anchoreConfig.user_authentication.remove_deleted_user_api_keys_older_than_days📜
Type: int
365
anchoreConfig.metrics.enabled📜
Type: bool
false
anchoreConfig.metrics.auth_disabled📜
Type: bool
false
anchoreConfig.webhooks📜
Type: object
{}
anchoreConfig.default_admin_password📜
Type: string
""
anchoreConfig.default_admin_email📜
Type: string
"admin@myanchore"
anchoreConfig.database.timeout📜
Type: int
120
anchoreConfig.database.ssl📜
Type: bool
false
anchoreConfig.database.sslMode📜
Type: string
"verify-full"
anchoreConfig.database.sslRootCertFileName📜
Type: string
""
anchoreConfig.database.db_pool_size📜
Type: int
30
anchoreConfig.database.db_pool_max_overflow📜
Type: int
100
anchoreConfig.database.engineArgs📜
Type: object
{}
anchoreConfig.internalServicesSSL.enabled📜
Type: bool
false
anchoreConfig.internalServicesSSL.verifyCerts📜
Type: bool
false
anchoreConfig.internalServicesSSL.certSecretKeyFileName📜
Type: string
""
anchoreConfig.internalServicesSSL.certSecretCertFileName📜
Type: string
""
anchoreConfig.policyBundles📜
Type: object
{}
anchoreConfig.apiext.external.enabled📜
Type: bool
false
anchoreConfig.apiext.external.useTLS📜
Type: bool
true
anchoreConfig.apiext.external.hostname📜
Type: string
""
anchoreConfig.apiext.external.port📜
Type: int
8443
anchoreConfig.analyzer.cycle_timers.image_analyzer📜
Type: int
1
anchoreConfig.analyzer.layer_cache_max_gigabytes📜
Type: int
0
anchoreConfig.analyzer.enable_hints📜
Type: bool
false
anchoreConfig.analyzer.configFile.retrieve_files.file_list[0]📜
Type: string
"/etc/passwd"
anchoreConfig.analyzer.configFile.secret_search.match_params[0]📜
Type: string
"MAXFILESIZE=10000"
anchoreConfig.analyzer.configFile.secret_search.match_params[1]📜
Type: string
"STOREONMATCH=n"
anchoreConfig.analyzer.configFile.secret_search.regexp_match[0]📜
Type: string
"AWS_ACCESS_KEY=(?i).*aws_access_key_id( *=+ *).*(?<![A-Z0-9])[A-Z0-9]{20}(?![A-Z0-9]).*"
anchoreConfig.analyzer.configFile.secret_search.regexp_match[1]📜
Type: string
"AWS_SECRET_KEY=(?i).*aws_secret_access_key( *=+ *).*(?<![A-Za-z0-9/+=])[A-Za-z0-9/+=]{40}(?![A-Za-z0-9/+=]).*"
anchoreConfig.analyzer.configFile.secret_search.regexp_match[2]📜
Type: string
"PRIV_KEY=(?i)-+BEGIN(.*)PRIVATE KEY-+"
anchoreConfig.analyzer.configFile.secret_search.regexp_match[3]📜
Type: string
"DOCKER_AUTH=(?i).*\"auth\": *\".+\""
anchoreConfig.analyzer.configFile.secret_search.regexp_match[4]📜
Type: string
"API_KEY=(?i).*api(-\|_)key( *=+ *).*(?<![A-Z0-9])[A-Z0-9]{20,60}(?![A-Z0-9]).*"
anchoreConfig.analyzer.configFile.malware.clamav.enabled📜
Type: bool
false
anchoreConfig.analyzer.configFile.malware.clamav.db_update_enabled📜
Type: bool
true
anchoreConfig.catalog.cycle_timers.image_watcher📜
Type: int
3600
anchoreConfig.catalog.cycle_timers.policy_eval📜
Type: int
3600
anchoreConfig.catalog.cycle_timers.vulnerability_scan📜
Type: int
14400
anchoreConfig.catalog.cycle_timers.analyzer_queue📜
Type: int
1
anchoreConfig.catalog.cycle_timers.archive_tasks📜
Type: int
43200
anchoreConfig.catalog.cycle_timers.notifications📜
Type: int
30
anchoreConfig.catalog.cycle_timers.service_watcher📜
Type: int
15
anchoreConfig.catalog.cycle_timers.policy_bundle_sync📜
Type: int
300
anchoreConfig.catalog.cycle_timers.repo_watcher📜
Type: int
60
anchoreConfig.catalog.cycle_timers.image_gc📜
Type: int
60
anchoreConfig.catalog.cycle_timers.k8s_image_watcher📜
Type: int
150
anchoreConfig.catalog.cycle_timers.resource_metrics📜
Type: int
60
anchoreConfig.catalog.cycle_timers.events_gc📜
Type: int
43200
anchoreConfig.catalog.cycle_timers.artifact_lifecycle_policy_tasks📜
Type: int
43200
anchoreConfig.catalog.event_log.max_retention_age_days📜
Type: int
180
anchoreConfig.catalog.event_log.notification.enabled📜
Type: bool
false
anchoreConfig.catalog.event_log.notification.level[0]📜
Type: string
"error"
anchoreConfig.catalog.analysis_archive📜
Type: object
{}
anchoreConfig.catalog.object_store.verify_content_digests📜
Type: bool
true
anchoreConfig.catalog.object_store.compression.enabled📜
Type: bool
true
anchoreConfig.catalog.object_store.compression.min_size_kbytes📜
Type: int
100
anchoreConfig.catalog.object_store.storage_driver.name📜
Type: string
"db"
anchoreConfig.catalog.object_store.storage_driver.config📜
Type: object
{}
anchoreConfig.catalog.runtime_inventory.inventory_ttl_days📜
Type: int
120
anchoreConfig.catalog.runtime_inventory.inventory_ingest_overwrite📜
Type: bool
false
anchoreConfig.catalog.down_analyzer_task_requeue📜
Type: bool
true
anchoreConfig.policy_engine.cycle_timers.feed_sync📜
Type: int
14400
anchoreConfig.policy_engine.cycle_timers.feed_sync_checker📜
Type: int
3600
anchoreConfig.policy_engine.overrideFeedsToUpstream📜
Type: bool
false
anchoreConfig.notifications.cycle_timers.notifications📜
Type: int
30
anchoreConfig.notifications.ui_url📜
Type: string
""
anchoreConfig.reports.enable_graphiql📜
Type: bool
true
anchoreConfig.reports.async_execution_timeout📜
Type: string
"48h"
anchoreConfig.reports.cycle_timers.reports_scheduled_queries📜
Type: int
600
anchoreConfig.reports.use_volume📜
Type: bool
false
anchoreConfig.reports_worker.enable_data_ingress📜
Type: bool
true
anchoreConfig.reports_worker.enable_data_egress📜
Type: bool
false
anchoreConfig.reports_worker.data_egress_window📜
Type: int
0
anchoreConfig.reports_worker.data_refresh_max_workers📜
Type: int
10
anchoreConfig.reports_worker.data_load_max_workers📜
Type: int
10
anchoreConfig.reports_worker.cycle_timers.reports_image_load📜
Type: int
600
anchoreConfig.reports_worker.cycle_timers.reports_tag_load📜
Type: int
600
anchoreConfig.reports_worker.cycle_timers.reports_runtime_inventory_load📜
Type: int
600
anchoreConfig.reports_worker.cycle_timers.reports_extended_runtime_vuln_load📜
Type: int
1800
anchoreConfig.reports_worker.cycle_timers.reports_image_refresh📜
Type: int
7200
anchoreConfig.reports_worker.cycle_timers.reports_tag_refresh📜
Type: int
7200
anchoreConfig.reports_worker.cycle_timers.reports_metrics📜
Type: int
3600
anchoreConfig.reports_worker.cycle_timers.reports_image_egress📜
Type: int
600
anchoreConfig.reports_worker.cycle_timers.reports_tag_egress📜
Type: int
600
anchoreConfig.ui.enable_proxy📜
Type: bool
false
anchoreConfig.ui.enable_ssl📜
Type: bool
false
anchoreConfig.ui.enable_shared_login📜
Type: bool
true
anchoreConfig.ui.redis_flushdb📜
Type: bool
false
anchoreConfig.ui.force_websocket📜
Type: bool
false
anchoreConfig.ui.authentication_lock.count📜
Type: int
5
anchoreConfig.ui.authentication_lock.expires📜
Type: int
300
anchoreConfig.ui.custom_links📜
Type: object
{}
anchoreConfig.ui.enable_add_repositories📜
Type: object
{}
anchoreConfig.ui.log_level📜
Type: string
"http"
anchoreConfig.ui.enrich_inventory_view📜
Type: bool
true
anchoreConfig.ui.appdb_config.native📜
Type: bool
true
anchoreConfig.ui.appdb_config.pool.max📜
Type: int
10
anchoreConfig.ui.appdb_config.pool.min📜
Type: int
0
anchoreConfig.ui.appdb_config.pool.acquire📜
Type: int
30000
anchoreConfig.ui.appdb_config.pool.idle📜
Type: int
10000
anchoreConfig.ui.dbUser📜
Type: string
""
anchoreConfig.ui.dbPassword📜
Type: string
""
anchoreConfig.ui.dbHostname📜
Type: string
""
anchoreConfig.ui.dbPort📜
Type: int
5432
anchoreConfig.ui.dbDatabase📜
Type: string
""
api.replicaCount📜
Type: int
1
api.service.type📜
Type: string
"ClusterIP"
api.service.port📜
Type: int
8228
api.service.reportsPort📜
Type: int
8558
api.service.annotations📜
Type: object
{}
api.service.labels📜
Type: object
{}
api.service.nodePort📜
Type: string
""
api.extraEnv📜
Type: list
[]
api.resources.limits.cpu📜
Type: int
1
api.resources.limits.memory📜
Type: string
"4G"
api.resources.requests.cpu📜
Type: int
1
api.resources.requests.memory📜
Type: string
"4G"
api.labels📜
Type: object
{}
api.annotations📜
Type: object
{}
api.nodeSelector📜
Type: object
{}
api.tolerations📜
Type: list
[]
api.affinity📜
Type: object
{}
api.serviceAccountName📜
Type: string
""
analyzer.replicaCount📜
Type: int
2
analyzer.service.port📜
Type: int
8084
analyzer.serviceType📜
Type: string
"ClusterIP"
analyzer.extraEnv📜
Type: list
[]
analyzer.resources.limits.cpu📜
Type: int
1
analyzer.resources.limits.memory📜
Type: string
"4G"
analyzer.resources.requests.cpu📜
Type: int
1
analyzer.resources.requests.memory📜
Type: string
"4G"
analyzer.labels📜
Type: object
{}
analyzer.annotations📜
Type: object
{}
analyzer.nodeSelector📜
Type: object
{}
analyzer.tolerations📜
Type: list
[]
analyzer.affinity📜
Type: object
{}
analyzer.serviceAccountName📜
Type: string
""
catalog.replicaCount📜
Type: int
1
catalog.service.type📜
Type: string
"ClusterIP"
catalog.service.port📜
Type: int
8082
catalog.service.annotations📜
Type: object
{}
catalog.service.labels📜
Type: object
{}
catalog.service.nodePort📜
Type: string
""
catalog.extraEnv📜
Type: list
[]
catalog.resources.limits.cpu📜
Type: int
1
catalog.resources.limits.memory📜
Type: string
"2G"
catalog.resources.requests.cpu📜
Type: int
1
catalog.resources.requests.memory📜
Type: string
"2G"
catalog.labels📜
Type: object
{}
catalog.annotations📜
Type: object
{}
catalog.nodeSelector📜
Type: object
{}
catalog.tolerations📜
Type: list
[]
catalog.affinity📜
Type: object
{}
catalog.serviceAccountName📜
Type: string
""
feeds.enabled📜
Type: bool
true
feeds.istio.enabled📜
Type: bool
false
feeds.istio.injection📜
Type: string
"disabled"
feeds.standalone📜
Type: bool
false
feeds.url📜
Type: string
""
feeds.service.port📜
Type: int
8448
feeds.service.apiVersion📜
Type: string
"v2"
feeds.image📜
Type: string
"registry1.dso.mil/ironbank/anchore/enterprise/enterprise:5.4.1"
feeds.imagePullSecretName📜
Type: string
"private-registry"
feeds.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
feeds.resources.limits.cpu📜
Type: int
1
feeds.resources.limits.memory📜
Type: string
"10G"
feeds.resources.requests.cpu📜
Type: int
1
feeds.resources.requests.memory📜
Type: string
"10G"
feeds.anchoreConfig.internalServicesSSL.enabled📜
Type: bool
false
feeds.anchoreConfig.internalServicesSSL.verifyCerts📜
Type: bool
false
feeds.anchoreConfig.internalServicesSSL.certSecretKeyFileName📜
Type: string
""
feeds.anchoreConfig.internalServicesSSL.certSecretCertFileName📜
Type: string
""
feeds.anchoreConfig.metrics.enabled📜
Type: bool
false
feeds.anchoreConfig.metrics.auth_disabled📜
Type: bool
false
feeds.feeds-db.enabled📜
Type: bool
true
feeds.feeds-db.image.registry📜
Type: string
"registry1.dso.mil"
feeds.feeds-db.image.repository📜
Type: string
"ironbank/opensource/postgres/postgresql"
feeds.feeds-db.image.tag📜
Type: string
"13.12"
feeds.feeds-db.global.imagePullSecrets[0]📜
Type: string
"private-registry"
feeds.feeds-db.externalEndpoint📜
Type: string
nil
feeds.feeds-db.postgresUser📜
Type: string
"anchore"
feeds.feeds-db.postgresPassword📜
Type: string
"anchore-postgres,123"
feeds.feeds-db.postgresDatabase📜
Type: string
"anchore"
feeds.feeds-db.securityContext.enabled📜
Type: bool
true
feeds.feeds-db.securityContext.fsGroup📜
Type: int
26
feeds.feeds-db.securityContext.runAsUser📜
Type: int
26
feeds.feeds-db.securityContext.runAsGroup📜
Type: int
26
feeds.feeds-db.containerSecurityContext.enabled📜
Type: bool
true
feeds.feeds-db.containerSecurityContext.runAsUser📜
Type: int
26
feeds.feeds-db.containerSecurityContext.runAsGroup📜
Type: int
26
feeds.feeds-db.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
feeds.feeds-db.resources.limits.cpu📜
Type: string
"100m"
feeds.feeds-db.resources.limits.memory📜
Type: string
"256Mi"
feeds.feeds-db.resources.requests.cpu📜
Type: string
"100m"
feeds.feeds-db.resources.requests.memory📜
Type: string
"256Mi"
feeds.feeds-db.metrics.resources.limits.cpu📜
Type: string
"100m"
feeds.feeds-db.metrics.resources.limits.memory📜
Type: string
"256Mi"
feeds.feeds-db.metrics.resources.requests.cpu📜
Type: string
"100m"
feeds.feeds-db.metrics.resources.requests.memory📜
Type: string
"256Mi"
feeds.feeds-db.primary.persistence.resourcePolicy📜
Type: string
"keep"
feeds.feeds-db.primary.persistence.size📜
Type: string
"20Gi"
feeds.feeds-db.primary.persistence.subPath📜
Type: string
"pgdata"
feeds.feeds-db.primary.persistence.mountPath📜
Type: string
"/var/lib/postgresql"
feeds.feeds-db.primary.postgresqlDataDir📜
Type: string
"/var/lib/postgresql/data"
feeds.feeds-db.primary.podSecurityContext.enabled📜
Type: bool
true
feeds.feeds-db.primary.podSecurityContext.fsGroup📜
Type: int
26
feeds.feeds-db.primary.podSecurityContext.runAsUser📜
Type: int
26
feeds.feeds-db.primary.podSecurityContext.runAsGroup📜
Type: int
26
feeds.feeds-db.primary.containerSecurityContext.enabled📜
Type: bool
true
feeds.feeds-db.primary.containerSecurityContext.runAsUser📜
Type: int
26
feeds.feeds-db.primary.containerSecurityContext.runAsGroup📜
Type: int
26
feeds.feeds-db.primary.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
feeds.feeds-db.postgresqlConfiguration.listen_addresses📜
Type: string
"*"
feeds.feeds-db.pgHbaConfiguration📜
Type: string
"local all all md5\nhost all all all md5"
feeds.gem-db.enabled📜
Type: bool
false
feeds.gem-db.image.registry📜
Type: string
"registry1.dso.mil"
feeds.gem-db.image.repository📜
Type: string
"ironbank/opensource/postgres/postgresql"
feeds.gem-db.image.tag📜
Type: string
"13.12"
feeds.gem-db.externalEndpoint📜
Type: string
nil
feeds.gem-db.postgresUser📜
Type: string
"anchore"
feeds.gem-db.postgresPassword📜
Type: string
"anchore-postgres,123"
feeds.gem-db.postgresDatabase📜
Type: string
"anchore"
feeds.gem-db.securityContext.enabled📜
Type: bool
true
feeds.gem-db.securityContext.fsGroup📜
Type: int
26
feeds.gem-db.securityContext.runAsUser📜
Type: int
26
feeds.gem-db.securityContext.runAsGroup📜
Type: int
26
feeds.gem-db.primary.persistence.enabled📜
Type: bool
false
feeds.gem-db.primary.postgresqlDataDir📜
Type: string
"/var/lib/postgresql/data"
feeds.gem-db.primary.podSecurityContext.enabled📜
Type: bool
true
feeds.gem-db.primary.podSecurityContext.fsGroup📜
Type: int
26
feeds.gem-db.primary.podSecurityContext.runAsUser📜
Type: int
26
feeds.gem-db.primary.podSecurityContext.runAsGroup📜
Type: int
26
feeds.gem-db.primary.containerSecurityContext.enabled📜
Type: bool
true
feeds.gem-db.primary.containerSecurityContext.runAsUser📜
Type: int
26
feeds.gem-db.primary.containerSecurityContext.runAsGroup📜
Type: int
26
feeds.gem-db.primary.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
policyEngine.replicaCount📜
Type: int
1
policyEngine.service.type📜
Type: string
"ClusterIP"
policyEngine.service.port📜
Type: int
8087
policyEngine.service.annotations📜
Type: object
{}
policyEngine.service.labels📜
Type: object
{}
policyEngine.service.nodePort📜
Type: string
""
policyEngine.extraEnv📜
Type: list
[]
policyEngine.resources.limits.cpu📜
Type: int
1
policyEngine.resources.limits.memory📜
Type: string
"4G"
policyEngine.resources.requests.cpu📜
Type: int
1
policyEngine.resources.requests.memory📜
Type: string
"4G"
policyEngine.labels📜
Type: object
{}
policyEngine.annotations📜
Type: object
{}
policyEngine.nodeSelector📜
Type: object
{}
policyEngine.tolerations📜
Type: list
[]
policyEngine.affinity📜
Type: object
{}
policyEngine.serviceAccountName📜
Type: string
""
simpleQueue.replicaCount📜
Type: int
1
simpleQueue.service.type📜
Type: string
"ClusterIP"
simpleQueue.service.port📜
Type: int
8083
simpleQueue.service.annotations📜
Type: object
{}
simpleQueue.service.labels📜
Type: object
{}
simpleQueue.service.nodePort📜
Type: string
""
simpleQueue.extraEnv📜
Type: list
[]
simpleQueue.resources.limits.cpu📜
Type: int
1
simpleQueue.resources.limits.memory📜
Type: string
"1G"
simpleQueue.resources.requests.cpu📜
Type: int
1
simpleQueue.resources.requests.memory📜
Type: string
"1G"
simpleQueue.labels📜
Type: object
{}
simpleQueue.annotations📜
Type: object
{}
simpleQueue.nodeSelector📜
Type: object
{}
simpleQueue.tolerations📜
Type: list
[]
simpleQueue.affinity📜
Type: object
{}
simpleQueue.serviceAccountName📜
Type: string
""
notifications.enabled📜
Type: bool
true
notifications.replicaCount📜
Type: int
1
notifications.service.type📜
Type: string
"ClusterIP"
notifications.service.port📜
Type: int
8668
notifications.service.annotations📜
Type: object
{}
notifications.service.labels📜
Type: object
{}
notifications.service.nodePort📜
Type: string
""
notifications.extraEnv📜
Type: list
[]
notifications.resources.limits.cpu📜
Type: int
1
notifications.resources.limits.memory📜
Type: string
"1G"
notifications.resources.requests.cpu📜
Type: int
1
notifications.resources.requests.memory📜
Type: string
"1G"
notifications.labels📜
Type: object
{}
notifications.annotations📜
Type: object
{}
notifications.nodeSelector📜
Type: object
{}
notifications.tolerations📜
Type: list
[]
notifications.affinity📜
Type: object
{}
notifications.serviceAccountName📜
Type: string
""
reports.enabled📜
Type: bool
true
reports.replicaCount📜
Type: int
1
reports.service.type📜
Type: string
"ClusterIP"
reports.service.port📜
Type: int
8558
reports.service.annotations📜
Type: object
{}
reports.service.labels📜
Type: object
{}
reports.service.nodePort📜
Type: string
""
reports.extraEnv📜
Type: list
[]
reports.resources.limits.cpu📜
Type: int
1
reports.resources.limits.memory📜
Type: string
"1G"
reports.resources.requests.cpu📜
Type: int
1
reports.resources.requests.memory📜
Type: string
"1G"
reports.labels📜
Type: object
{}
reports.annotations📜
Type: object
{}
reports.nodeSelector📜
Type: object
{}
reports.tolerations📜
Type: list
[]
reports.affinity📜
Type: object
{}
reports.serviceAccountName📜
Type: string
""
rbacAuth.enabled📜
Type: bool
true
rbacAuth.extraEnv[0].name📜
Type: string
"AUTHLIB_INSECURE_TRANSPORT"
rbacAuth.extraEnv[0].value📜
Type: string
"true"
rbacAuth.resources.limits.cpu📜
Type: int
1
rbacAuth.resources.limits.memory📜
Type: string
"1G"
rbacAuth.resources.requests.cpu📜
Type: int
1
rbacAuth.resources.requests.memory📜
Type: string
"1G"
rbacManager.replicaCount📜
Type: int
1
rbacManager.service.type📜
Type: string
"ClusterIP"
rbacManager.service.port📜
Type: int
8229
rbacManager.service.annotations📜
Type: object
{}
rbacManager.service.labels📜
Type: object
{}
rbacManager.service.nodePort📜
Type: string
""
rbacManager.extraEnv[0].name📜
Type: string
"AUTHLIB_INSECURE_TRANSPORT"
rbacManager.extraEnv[0].value📜
Type: string
"true"
rbacManager.resources.limits.cpu📜
Type: int
1
rbacManager.resources.limits.memory📜
Type: string
"4G"
rbacManager.resources.requests.cpu📜
Type: int
1
rbacManager.resources.requests.memory📜
Type: string
"4G"
rbacManager.labels📜
Type: object
{}
rbacManager.annotations📜
Type: object
{}
rbacManager.nodeSelector📜
Type: object
{}
rbacManager.tolerations📜
Type: list
[]
rbacManager.affinity📜
Type: object
{}
rbacManager.serviceAccountName📜
Type: string
""
ui.enabled📜
Type: bool
true
ui.image📜
Type: string
"registry1.dso.mil/ironbank/anchore/enterpriseui/enterpriseui:5.4.0"
ui.imagePullPolicy📜
Type: string
"IfNotPresent"
ui.imagePullSecretName📜
Type: string
"private-registry"
ui.existingSecretName📜
Type: string
"anchore-enterprise-ui-env"
ui.ldapsRootCaCertName📜
Type: string
""
ui.service.type📜
Type: string
"ClusterIP"
ui.service.port📜
Type: int
3000
ui.service.annotations📜
Type: object
{}
ui.service.labels📜
Type: object
{}
ui.service.sessionAffinity📜
Type: string
"ClientIP"
ui.service.nodePort📜
Type: string
""
ui.extraEnv📜
Type: list
[]
ui.resources.limits.cpu📜
Type: int
1
ui.resources.limits.memory📜
Type: string
"1G"
ui.resources.requests.cpu📜
Type: int
1
ui.resources.requests.memory📜
Type: string
"1G"
ui.labels📜
Type: object
{}
ui.annotations📜
Type: object
{}
ui.nodeSelector📜
Type: object
{}
ui.tolerations📜
Type: list
[]
ui.affinity📜
Type: object
{}
ui.serviceAccountName📜
Type: string
""
upgradeJob.enabled📜
Type: bool
true
upgradeJob.force📜
Type: bool
false
upgradeJob.rbacCreate📜
Type: bool
true
upgradeJob.serviceAccountName📜
Type: string
""
upgradeJob.usePostUpgradeHook📜
Type: bool
false
upgradeJob.kubectlImage📜
Type: string
"registry1.dso.mil/ironbank/opensource/kubernetes/kubectl:v1.29.3"
upgradeJob.nodeSelector📜
Type: object
{}
upgradeJob.tolerations📜
Type: list
[]
upgradeJob.affinity📜
Type: object
{}
upgradeJob.annotations📜
Type: object
{}
upgradeJob.resources.limits.cpu📜
Type: int
1
upgradeJob.resources.limits.memory📜
Type: string
"1G"
upgradeJob.resources.requests.cpu📜
Type: int
1
upgradeJob.resources.requests.memory📜
Type: string
"1G"
upgradeJob.labels📜
Type: object
{}
upgradeJob.ttlSecondsAfterFinished📜
Type: int
-1
ingress.enabled📜
Type: bool
false
ingress.labels📜
Type: object
{}
ingress.annotations📜
Type: object
{}
ingress.apiHosts📜
Type: list
[]
ingress.apiPaths[0]📜
Type: string
"/v2/"
ingress.apiPaths[1]📜
Type: string
"/version/"
ingress.uiHosts📜
Type: list
[]
ingress.uiPath📜
Type: string
"/"
ingress.feedsHosts📜
Type: list
[]
ingress.feedsPaths[0]📜
Type: string
"/v2/feeds/"
ingress.reportsPaths[0]📜
Type: string
"/v2/reports/"
ingress.tls📜
Type: list
[]
ingress.ingressClassName📜
Type: string
"nginx"
cloudsql.enabled📜
Type: bool
false
cloudsql.image📜
Type: string
"gcr.io/cloudsql-docker/gce-proxy:1.25.0"
cloudsql.imagePullPolicy📜
Type: string
"IfNotPresent"
cloudsql.instance📜
Type: string
""
cloudsql.useExistingServiceAcc📜
Type: bool
false
cloudsql.serviceAccSecretName📜
Type: string
""
cloudsql.serviceAccJsonName📜
Type: string
""
cloudsql.extraArgs📜
Type: list
[]
ui-redis.enabled📜
Type: bool
true
ui-redis.istio.enabled📜
Type: string
"{{ .Values.istio.enabled }}"
ui-redis.externalEndpoint📜
Type: string
""
ui-redis.auth.password📜
Type: string
"anchore-redis,123"
ui-redis.architecture📜
Type: string
"standalone"
ui-redis.master.persistence.enabled📜
Type: bool
false
ui-redis.commonConfiguration📜
Type: string
"maxmemory 200mb\nsave \"\""
postgresql.enabled📜
Type: bool
true
postgresql.externalEndpoint📜
Type: string
""
postgresql.primary.service.ports.postgresql📜
Type: int
5432
postgresql.primary.podSecurityContext.enabled📜
Type: bool
true
postgresql.primary.podSecurityContext.fsGroup📜
Type: int
26
postgresql.primary.podSecurityContext.runAsUser📜
Type: int
26
postgresql.primary.podSecurityContext.runAsGroup📜
Type: int
26
postgresql.primary.containerSecurityContext.enabled📜
Type: bool
true
postgresql.primary.containerSecurityContext.runAsUser📜
Type: int
26
postgresql.primary.containerSecurityContext.runAsGroup📜
Type: int
26
postgresql.primary.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
postgresql.primary.persistence.size📜
Type: string
"20Gi"
postgresql.primary.persistence.resourcePolicy📜
Type: string
"keep"
postgresql.primary.persistence.subPath📜
Type: string
"data/pgdata"
postgresql.primary.persistence.mountPath📜
Type: string
"/var/lib/postgresql"
postgresql.primary.postgresqlDataDir📜
Type: string
"/var/lib/postgresql/data"
postgresql.primary.extraEnvVars📜
Type: list
[]
postgresql.image.registry📜
Type: string
"registry1.dso.mil"
postgresql.image.repository📜
Type: string
"ironbank/opensource/postgres/postgresql"
postgresql.image.tag📜
Type: string
"13.12"
postgresql.global.imagePullSecrets[0]📜
Type: string
"private-registry"
postgresql.postgresqlConfiguration.listen_addresses📜
Type: string
"*"
postgresql.pgHbaConfiguration📜
Type: string
"local all all md5\nhost all all all md5"
postgresql.postgresUser📜
Type: string
"anchore"
postgresql.postgresPassword📜
Type: string
"anchore-postgres,123"
postgresql.postgresDatabase📜
Type: string
"anchore"
postgresql.resources.limits.cpu📜
Type: string
"200m"
postgresql.resources.limits.memory📜
Type: string
"2048Mi"
postgresql.resources.requests.cpu📜
Type: string
"200m"
postgresql.resources.requests.memory📜
Type: string
"2048Mi"
postgresql.metrics.resources.limits.cpu📜
Type: string
"100m"
postgresql.metrics.resources.limits.memory📜
Type: string
"256Mi"
postgresql.metrics.resources.requests.cpu📜
Type: string
"100m"
postgresql.metrics.resources.requests.memory📜
Type: string
"256Mi"
postgresql.securityContext.enabled📜
Type: bool
true
postgresql.securityContext.fsGroup📜
Type: int
26
postgresql.securityContext.runAsUser📜
Type: int
26
postgresql.securityContext.runAsGroup📜
Type: int
26
postgresql.containerSecurityContext.enabled📜
Type: bool
true
postgresql.containerSecurityContext.runAsUser📜
Type: int
26
postgresql.containerSecurityContext.runAsGroup📜
Type: int
26
postgresql.containerSecurityContext.capabilities.drop[0]📜
Type: string
"ALL"
bbtests.enabled📜
Type: bool
false
bbtests.scripts.image📜
Type: string
"registry1.dso.mil/ironbank/anchore/cli/cli:0.9.4"
bbtests.scripts.envs.ANCHORE_CLI_URL📜
Type: string
"http://{{ template \"enterprise.api.fullname\" . }}:{{ .Values.api.service.port }}/v1"
bbtests.scripts.envs.ANCHORE_CLI_USER📜
Type: string
"admin"
bbtests.scripts.envs.ANCHORE_SCAN_IMAGE📜
Type: string
"quay.io/prometheus/node-exporter:latest"
bbtests.scripts.secretEnvs[0].name📜
Type: string
"ANCHORE_CLI_PASS"
bbtests.scripts.secretEnvs[0].valueFrom.secretKeyRef.name📜
Type: string
"{{ template \"enterprise.fullname\" . }}"
bbtests.scripts.secretEnvs[0].valueFrom.secretKeyRef.key📜
Type: string
"ANCHORE_ADMIN_PASSWORD"
bbtests.cypress.resources.requests.cpu📜
Type: string
"1"
bbtests.cypress.resources.requests.memory📜
Type: string
"2Gi"
bbtests.cypress.resources.limits.cpu📜
Type: string
"1"
bbtests.cypress.resources.limits.memory📜
Type: string
"2Gi"
bbtests.cypress.artifacts📜
Type: bool
true
bbtests.cypress.envs.cypress_url📜
Type: string
"http://{{ template \"enterprise.ui.fullname\" . }}:{{ .Values.ui.service.port }}"
bbtests.cypress.envs.cypress_user📜
Type: string
"admin"
bbtests.cypress.envs.cypress_registry📜
Type: string
"docker.io"
bbtests.cypress.envs.cypress_repository📜
Type: string
"anchore/grype"
bbtests.cypress.envs.cypress_tag📜
Type: string
"latest"
bbtests.cypress.secretEnvs[0].name📜
Type: string
"cypress_password"
bbtests.cypress.secretEnvs[0].valueFrom.secretKeyRef.name📜
Type: string
"{{ template \"enterprise.fullname\" . }}"
bbtests.cypress.secretEnvs[0].valueFrom.secretKeyRef.key📜
Type: string
"ANCHORE_ADMIN_PASSWORD"