kyverno-reporter values.yaml📜
nameOverride📜
Type: string
""
image.registry📜
Type: string
"registry1.dso.mil"
image.repository📜
Type: string
"ironbank/opensource/kyverno/policy-reporter"
image.pullPolicy📜
Type: string
"IfNotPresent"
image.tag📜
Type: string
"2.20.2"
imagePullSecrets📜
Type: list
[]
priorityClassName📜
Type: string
""
replicaCount📜
Type: int
1
revisionHistoryLimit📜
Type: int
10
deploymentStrategy📜
Type: object
{}
port.name📜
Type: string
"http"
port.number📜
Type: int
8080
annotations📜
Type: object
{}
rbac.enabled📜
Type: bool
true
serviceAccount.create📜
Type: bool
true
serviceAccount.annotations📜
Type: object
{}
serviceAccount.name📜
Type: string
""
serviceAccount.automountServiceAccountToken📜
Type: bool
false
service.enabled📜
Type: bool
true
service.annotations📜
Type: object
{}
service.labels📜
Type: object
{}
service.type📜
Type: string
"ClusterIP"
service.port📜
Type: int
8080
podSecurityContext.fsGroup📜
Type: int
1234
securityContext.runAsUser📜
Type: int
1234
securityContext.runAsGroup📜
Type: int
1234
securityContext.runAsNonRoot📜
Type: bool
true
securityContext.privileged📜
Type: bool
false
securityContext.allowPrivilegeEscalation📜
Type: bool
false
securityContext.readOnlyRootFilesystem📜
Type: bool
true
securityContext.capabilities.drop[0]📜
Type: string
"ALL"
securityContext.seccompProfile.type📜
Type: string
"RuntimeDefault"
podAnnotations📜
Type: object
{}
podLabels📜
Type: object
{}
envVars📜
Type: list
[]
resources📜
Type: object
{}
networkPolicy.enabled📜
Type: bool
false
networkPolicy.egress[0].to📜
Type: string
nil
networkPolicy.egress[0].ports[0].protocol📜
Type: string
"TCP"
networkPolicy.egress[0].ports[0].port📜
Type: int
6443
networkPolicy.ingress📜
Type: list
[]
ingress.enabled📜
Type: bool
false
ingress.className📜
Type: string
""
ingress.labels📜
Type: object
{}
ingress.annotations📜
Type: object
{}
ingress.hosts[0].host📜
Type: string
"chart-example.local"
ingress.hosts[0].paths📜
Type: list
[]
ingress.tls📜
Type: list
[]
logging.encoding📜
Type: string
"console"
logging.logLevel📜
Type: int
0
logging.development📜
Type: bool
false
api.logging📜
Type: bool
false
rest.enabled📜
Type: bool
false
metrics.enabled📜
Type: bool
false
metrics.mode📜
Type: string
"detailed"
metrics.customLabels📜
Type: list
[]
profiling.enabled📜
Type: bool
false
worker📜
Type: int
5
reportFilter.namespaces.include📜
Type: list
[]
reportFilter.namespaces.exclude📜
Type: list
[]
reportFilter.clusterReports.disabled📜
Type: bool
false
sourceConfig📜
Type: object
{}
ui.enabled📜
Type: bool
false
kyvernoPlugin.enabled📜
Type: bool
false
monitoring.enabled📜
Type: bool
false
database.type📜
Type: string
""
database.database📜
Type: string
""
database.username📜
Type: string
""
database.password📜
Type: string
""
database.host📜
Type: string
""
database.enableSSL📜
Type: bool
false
database.dsn📜
Type: string
""
database.secretRef📜
Type: string
""
database.mountedSecret📜
Type: string
""
global.plugins.kyverno📜
Type: bool
false
global.backend📜
Type: string
""
global.fullnameOverride📜
Type: string
""
global.namespace📜
Type: string
""
global.labels📜
Type: object
{}
global.basicAuth.username📜
Type: string
""
global.basicAuth.password📜
Type: string
""
global.basicAuth.secretRef📜
Type: string
""
emailReports.clusterName📜
Type: string
""
emailReports.titlePrefix📜
Type: string
"Report"
emailReports.smtp.secret📜
Type: string
""
emailReports.smtp.host📜
Type: string
""
emailReports.smtp.port📜
Type: int
465
emailReports.smtp.username📜
Type: string
""
emailReports.smtp.password📜
Type: string
""
emailReports.smtp.from📜
Type: string
""
emailReports.smtp.encryption📜
Type: string
""
emailReports.smtp.skipTLS📜
Type: bool
false
emailReports.smtp.certificate📜
Type: string
""
emailReports.summary.enabled📜
Type: bool
false
emailReports.summary.schedule📜
Type: string
"0 8 * * *"
emailReports.summary.activeDeadlineSeconds📜
Type: int
300
emailReports.summary.backoffLimit📜
Type: int
3
emailReports.summary.ttlSecondsAfterFinished📜
Type: int
0
emailReports.summary.restartPolicy📜
Type: string
"Never"
emailReports.summary.to📜
Type: list
[]
emailReports.summary.filter📜
Type: object
{}
emailReports.summary.channels📜
Type: list
[]
emailReports.violations.enabled📜
Type: bool
false
emailReports.violations.schedule📜
Type: string
"0 8 * * *"
emailReports.violations.activeDeadlineSeconds📜
Type: int
300
emailReports.violations.backoffLimit📜
Type: int
3
emailReports.violations.ttlSecondsAfterFinished📜
Type: int
0
emailReports.violations.restartPolicy📜
Type: string
"Never"
emailReports.violations.to📜
Type: list
[]
emailReports.violations.filter📜
Type: object
{}
emailReports.violations.channels📜
Type: list
[]
emailReports.resources📜
Type: object
{}
existingTargetConfig.enabled📜
Type: bool
false
existingTargetConfig.name📜
Type: string
""
existingTargetConfig.subPath📜
Type: string
""
target.loki.host📜
Type: string
""
target.loki.certificate📜
Type: string
""
target.loki.skipTLS📜
Type: bool
false
target.loki.secretRef📜
Type: string
""
target.loki.mountedSecret📜
Type: string
""
target.loki.path📜
Type: string
""
target.loki.minimumPriority📜
Type: string
""
target.loki.sources📜
Type: list
[]
target.loki.skipExistingOnStartup📜
Type: bool
true
target.loki.customLabels📜
Type: object
{}
target.loki.headers📜
Type: object
{}
target.loki.username📜
Type: string
""
target.loki.password📜
Type: string
""
target.loki.filter📜
Type: object
{}
target.loki.channels📜
Type: list
[]
target.elasticsearch.host📜
Type: string
""
target.elasticsearch.certificate📜
Type: string
""
target.elasticsearch.skipTLS📜
Type: bool
false
target.elasticsearch.index📜
Type: string
""
target.elasticsearch.username📜
Type: string
""
target.elasticsearch.password📜
Type: string
""
target.elasticsearch.apiKey📜
Type: string
""
target.elasticsearch.secretRef📜
Type: string
""
target.elasticsearch.mountedSecret📜
Type: string
""
target.elasticsearch.rotation📜
Type: string
""
target.elasticsearch.minimumPriority📜
Type: string
""
target.elasticsearch.sources📜
Type: list
[]
target.elasticsearch.skipExistingOnStartup📜
Type: bool
true
target.elasticsearch.typelessApi📜
Type: bool
false
target.elasticsearch.customFields📜
Type: object
{}
target.elasticsearch.filter📜
Type: object
{}
target.elasticsearch.channels📜
Type: list
[]
target.slack.webhook📜
Type: string
""
target.slack.channel📜
Type: string
""
target.slack.secretRef📜
Type: string
""
target.slack.mountedSecret📜
Type: string
""
target.slack.minimumPriority📜
Type: string
""
target.slack.sources📜
Type: list
[]
target.slack.skipExistingOnStartup📜
Type: bool
true
target.slack.customFields📜
Type: object
{}
target.slack.filter📜
Type: object
{}
target.slack.channels📜
Type: list
[]
target.discord.webhook📜
Type: string
""
target.discord.secretRef📜
Type: string
""
target.discord.mountedSecret📜
Type: string
""
target.discord.minimumPriority📜
Type: string
""
target.discord.sources📜
Type: list
[]
target.discord.skipExistingOnStartup📜
Type: bool
true
target.discord.filter📜
Type: object
{}
target.discord.channels📜
Type: list
[]
target.teams.webhook📜
Type: string
""
target.teams.secretRef📜
Type: string
""
target.teams.mountedSecret📜
Type: string
""
target.teams.certificate📜
Type: string
""
target.teams.skipTLS📜
Type: bool
false
target.teams.minimumPriority📜
Type: string
""
target.teams.sources📜
Type: list
[]
target.teams.skipExistingOnStartup📜
Type: bool
true
target.teams.filter📜
Type: object
{}
target.teams.channels📜
Type: list
[]
target.ui.host📜
Type: string
""
target.ui.certificate📜
Type: string
""
target.ui.skipTLS📜
Type: bool
false
target.ui.minimumPriority📜
Type: string
"warning"
target.ui.sources📜
Type: list
[]
target.ui.skipExistingOnStartup📜
Type: bool
true
target.webhook.host📜
Type: string
""
target.webhook.certificate📜
Type: string
""
target.webhook.skipTLS📜
Type: bool
false
target.webhook.secretRef📜
Type: string
""
target.webhook.mountedSecret📜
Type: string
""
target.webhook.headers📜
Type: object
{}
target.webhook.minimumPriority📜
Type: string
""
target.webhook.sources📜
Type: list
[]
target.webhook.skipExistingOnStartup📜
Type: bool
true
target.webhook.customFields📜
Type: object
{}
target.webhook.filter📜
Type: object
{}
target.webhook.channels📜
Type: list
[]
target.telegram.token📜
Type: string
""
target.telegram.chatID📜
Type: string
""
target.telegram.host📜
Type: string
""
target.telegram.certificate📜
Type: string
""
target.telegram.skipTLS📜
Type: bool
false
target.telegram.secretRef📜
Type: string
""
target.telegram.mountedSecret📜
Type: string
""
target.telegram.headers📜
Type: object
{}
target.telegram.minimumPriority📜
Type: string
""
target.telegram.sources📜
Type: list
[]
target.telegram.skipExistingOnStartup📜
Type: bool
true
target.telegram.customFields📜
Type: object
{}
target.telegram.filter📜
Type: object
{}
target.telegram.channels📜
Type: list
[]
target.googleChat.webhook📜
Type: string
""
target.googleChat.certificate📜
Type: string
""
target.googleChat.skipTLS📜
Type: bool
false
target.googleChat.secretRef📜
Type: string
""
target.googleChat.mountedSecret📜
Type: string
""
target.googleChat.headers📜
Type: object
{}
target.googleChat.minimumPriority📜
Type: string
""
target.googleChat.sources📜
Type: list
[]
target.googleChat.skipExistingOnStartup📜
Type: bool
true
target.googleChat.customFields📜
Type: object
{}
target.googleChat.filter📜
Type: object
{}
target.googleChat.channels📜
Type: list
[]
target.s3.accessKeyID📜
Type: string
""
target.s3.secretAccessKey📜
Type: string
""
target.s3.secretRef📜
Type: string
""
target.s3.mountedSecret📜
Type: string
""
target.s3.region📜
Type: string
""
target.s3.endpoint📜
Type: string
""
target.s3.bucket📜
Type: string
""
target.s3.bucketKeyEnabled📜
Type: bool
false
target.s3.kmsKeyId📜
Type: string
""
target.s3.serverSideEncryption📜
Type: string
""
target.s3.pathStyle📜
Type: bool
false
target.s3.prefix📜
Type: string
""
target.s3.minimumPriority📜
Type: string
""
target.s3.sources📜
Type: list
[]
target.s3.skipExistingOnStartup📜
Type: bool
true
target.s3.customFields📜
Type: object
{}
target.s3.filter📜
Type: object
{}
target.s3.channels📜
Type: list
[]
target.kinesis.accessKeyID📜
Type: string
""
target.kinesis.secretAccessKey📜
Type: string
""
target.kinesis.secretRef📜
Type: string
""
target.kinesis.mountedSecret📜
Type: string
""
target.kinesis.region📜
Type: string
""
target.kinesis.endpoint📜
Type: string
""
target.kinesis.streamName📜
Type: string
""
target.kinesis.minimumPriority📜
Type: string
""
target.kinesis.sources📜
Type: list
[]
target.kinesis.skipExistingOnStartup📜
Type: bool
true
target.kinesis.customFields📜
Type: object
{}
target.kinesis.filter📜
Type: object
{}
target.kinesis.channels📜
Type: list
[]
target.securityHub.accessKeyID📜
Type: string
""
target.securityHub.secretAccessKey📜
Type: string
""
target.securityHub.secretRef📜
Type: string
""
target.securityHub.mountedSecret📜
Type: string
""
target.securityHub.region📜
Type: string
""
target.securityHub.endpoint📜
Type: string
""
target.securityHub.accountID📜
Type: string
""
target.securityHub.productName📜
Type: string
""
target.securityHub.minimumPriority📜
Type: string
""
target.securityHub.sources📜
Type: list
[]
target.securityHub.skipExistingOnStartup📜
Type: bool
true
target.securityHub.cleanup📜
Type: bool
false
target.securityHub.delayInSeconds📜
Type: int
2
target.securityHub.customFields📜
Type: object
{}
target.securityHub.filter📜
Type: object
{}
target.securityHub.channels📜
Type: list
[]
target.gcs.credentials📜
Type: string
""
target.gcs.secretRef📜
Type: string
""
target.gcs.mountedSecret📜
Type: string
""
target.gcs.bucket📜
Type: string
""
target.gcs.minimumPriority📜
Type: string
""
target.gcs.sources📜
Type: list
[]
target.gcs.skipExistingOnStartup📜
Type: bool
true
target.gcs.customFields📜
Type: object
{}
target.gcs.filter📜
Type: object
{}
target.gcs.channels📜
Type: list
[]
leaderElection.enabled📜
Type: bool
false
leaderElection.releaseOnCancel📜
Type: bool
true
leaderElection.leaseDuration📜
Type: int
15
leaderElection.renewDeadline📜
Type: int
10
leaderElection.retryPeriod📜
Type: int
2
redis.enabled📜
Type: bool
false
redis.address📜
Type: string
""
redis.database📜
Type: int
0
redis.prefix📜
Type: string
"policy-reporter"
redis.username📜
Type: string
""
redis.password📜
Type: string
""
podDisruptionBudget.minAvailable📜
Type: int
1
Description: Configures the minimum available pods for policy-reporter disruptions. Cannot be used if maxUnavailable is set.
podDisruptionBudget.maxUnavailable📜
Type: string
nil
Description: Configures the maximum unavailable pods for policy-reporter disruptions. Cannot be used if minAvailable is set.
nodeSelector📜
Type: object
{}
tolerations📜
Type: list
[]
affinity📜
Type: object
{}
topologySpreadConstraints📜
Type: list
[]
livenessProbe.httpGet.path📜
Type: string
"/healthz"
livenessProbe.httpGet.port📜
Type: string
"http"
readinessProbe.httpGet.path📜
Type: string
"/ready"
readinessProbe.httpGet.port📜
Type: string
"http"
sqliteVolume📜
Type: object
{}
tmpVolume📜
Type: object
{}
networkPolicies.enabled📜
Type: bool
false
networkPolicies.controlPlaneCidr📜
Type: string
"0.0.0.0/0"
networkPolicies.additionalPolicies📜
Type: list
[]
extraVolumes.volumeMounts📜
Type: list
[]
openshift📜
Type: bool
false
istio.enabled📜
Type: bool
false
istio.mtls.mode📜
Type: string
"STRICT"
istio.hardened.enabled📜
Type: bool
false
istio.hardened.outboundTrafficPolicyMode📜
Type: string
"REGISTRY_ONLY"
istio.hardened.customServiceEntries📜
Type: list
[]
bbtests.enabled📜
Type: bool
false
bbtests.cypress.artifacts📜
Type: bool
true
bbtests.cypress.envs.cypress_grafana_url📜
Type: string
"http://grafana.monitoring.svc.cluster.local"
bbtests.cypress.envs.cypress_prometheus_url📜
Type: string
"http://monitoring-kube-prometheus-prometheus.monitoring.svc.cluster.local:9090"
bbtests.cypress.envs.cypress_grafana_user📜
Type: string
"admin"
bbtests.cypress.envs.cypress_grafana_pass📜
Type: string
"prom-operator"
bbtests.cypress.envs.cypress_reporter_ns📜
Type: string
"kyverno-reporter"
bbtests.volumes📜
Type: list
[]