mirror of
https://github.com/FairwindsOps/polaris.git
synced 2026-05-10 11:16:57 +00:00
68 lines
1.3 KiB
YAML
68 lines
1.3 KiB
YAML
---
|
|
config: |
|
|
resources:
|
|
cpuRequestsMissing: error
|
|
cpuLimitsMissing: error
|
|
memoryRequestsMissing: error
|
|
memoryLimitsMissing: error
|
|
images:
|
|
tagNotSpecified: error
|
|
healthChecks:
|
|
readinessProbeMissing: warning
|
|
livenessProbeMissing: warning
|
|
networking:
|
|
hostNetworkSet: warning
|
|
hostPortSet: warning
|
|
security:
|
|
hostIPCSet: error
|
|
hostPIDSet: error
|
|
notReadOnlyRootFileSystem: warning
|
|
privilegeEscalationAllowed: error
|
|
runAsRootAllowed: warning
|
|
runAsPrivileged: error
|
|
capabilities:
|
|
error:
|
|
ifAnyAdded:
|
|
- SYS_ADMIN
|
|
- NET_ADMIN
|
|
- ALL
|
|
warning:
|
|
ifAnyAddedBeyond:
|
|
- CHOWN
|
|
- DAC_OVERRIDE
|
|
- FSETID
|
|
- FOWNER
|
|
- MKNOD
|
|
- NET_RAW
|
|
- SETGID
|
|
- SETUID
|
|
- SETFCAP
|
|
- SETPCAP
|
|
- NET_BIND_SERVICE
|
|
- SYS_CHROOT
|
|
- KILL
|
|
- AUDIT_WRITE
|
|
|
|
dashboard:
|
|
enable: true
|
|
replicas: 1
|
|
service:
|
|
type: ClusterIP
|
|
image:
|
|
repository: quay.io/reactiveops/fairwinds
|
|
tag: master
|
|
pullPolicy: Always
|
|
|
|
webhook:
|
|
enable: false
|
|
replicas: 1
|
|
image:
|
|
repository: quay.io/reactiveops/fairwinds
|
|
tag: master
|
|
pullPolicy: Always
|
|
|
|
rbac:
|
|
create: true
|
|
|
|
templateOnly: false
|