From 977f54c89e9b85b4a20d4b12b1a6c972ebb3fca0 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 25 Sep 2022 09:12:12 +0000 Subject: [PATCH 001/601] Update Knative Serving metadata and add version 1.7.1 --- .../1.7.1.yml | 122 ++++++++++++++++++ .../metadata.yml | 16 +++ 2 files changed, 138 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.7.1.yml create mode 100644 repo/packages/knative-serving.packages.kadras.io/metadata.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.7.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.7.1.yml new file mode 100644 index 0000000..a779aab --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.7.1.yml @@ -0,0 +1,122 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.7.1 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/knative/serving/releases + releasedAt: "2022-09-25T09:11:21Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-serving@sha256:dd95399d9bd8add0ca45f4e4a54b8174a300c2c19804a9f56fc08233eff67eef + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + domain: + additionalProperties: false + description: DNS configuration + properties: + name: + default: "" + description: Your own domain name if type real or empty if type sslip.io + or nip.io + type: string + type: + default: nip.io + description: Type of DNS configuration + type: string + url_template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The domain template to use when creating new services + type: string + type: object + ingress: + additionalProperties: false + description: Ingress configuration + properties: + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internale Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed + type: string + type: object + type: object + namespace: + default: knative-serving + description: The namespace where to install Knative Serving + type: string + scaling: + additionalProperties: false + description: Configuration for the Knative autoscaler + properties: + allow_zero_initial_scale: + default: "true" + description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' + annotation can be set to 0 + type: string + initial_scale: + default: "1" + description: The initial target scale of a revision after creation + type: string + max_scale: + default: "0" + description: The maximum scale of a revision. If set to 0, the revision + has no maximum scale. + type: string + min_scale: + default: "0" + description: The minimum scale of a revision + type: string + scale_down_delay: + default: 0s + description: The amount of time that must pass at reduced concurrency + before a scale down decision is applied. If 0s, no delay. + type: string + type: object + tls: + additionalProperties: false + description: Configuration for automatic TLS certificates + properties: + certmanager: + additionalProperties: false + description: Configuration for integrating with cert-manager for certificate + issuing + properties: + clusterissuer: + default: "" + description: Provide a cluster issuer if you want to enable auto-TLS + type: string + type: object + type: object + type: object + version: 1.7.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/metadata.yml b/repo/packages/knative-serving.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..42139d3 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/metadata.yml @@ -0,0 +1,16 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io +spec: + categories: + - serverless + - deployment + displayName: knative-serving + longDescription: Knative Serving builds on Kubernetes to support deploying and serving + of applications and functions as serverless containers + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: Serverless platform on Kubernetes From 45df90923ca44f4680bda2acd4e3ded0607e35bf Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Sep 2022 11:15:23 +0200 Subject: [PATCH 002/601] Add Knative Serving --- .github/workflows/release.yml | 16 ++++++++++------ README.md | 9 ++++++--- 2 files changed, 16 insertions(+), 9 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index fe730a6..4e9b715 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.1.1 + VERSION: 0.1.2 jobs: build: @@ -33,11 +33,15 @@ jobs: password: ${{ secrets.GITHUB_TOKEN }} registry: ${{ env.REGISTRY }} - - name: Create kind cluster - uses: helm/kind-action@v1.4.0 - with: - cluster_name: carvel-test - kubectl_version: v1.25.2 + - name: Create k3d cluster + run: | + brew install k3d + k3d cluster create test-cluster + + # Wait for the generation of a token for the Service Account + while [ $(kubectl get configmap kube-root-ca.crt --no-headers | wc -l) -eq 0 ] ; do + sleep 3 + done - name: Package and publish OCI bundle run: | diff --git a/README.md b/README.md index 5d74675..e4931b0 100644 --- a/README.md +++ b/README.md @@ -10,6 +10,7 @@ The following packages are maintained by the [Arktonix](https://github.com/arkto * [argo-cd](https://github.com/arktonix/package-for-argo-cd) * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) +* [knative-serving](https://github.com/arktonix/package-for-knative-serving) It also includes the following open-source packages maintained by the [VMware Tanzu](https://github.com/vmware-tanzu) organization: @@ -38,7 +39,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.1.1 \ + --url ghcr.io/arktonix/kadras-packages:0.1.2 \ -n carvel-packages ``` @@ -78,11 +79,13 @@ kctrl package repository update -r kadras-repo \ You can find more documentation about Carvel package management at [carvel.dev](https://carvel.dev/kapp-controller/docs/latest/packaging). -## References and inspiration +## References + +This package repository is based on and inspired by the work done by the Carvel team and the +Tanzu Community Edition project. * [Kubernetes native package management with Carvel](https://carvel.dev/kapp-controller/docs/latest/packaging) * [Tanzu Community Edition, an open-source Kubernetes platform](https://tanzucommunityedition.io) -* [An example of package repository for installing the Tanzu Application Platform OSS stack](https://github.com/vrabbi/tap-oss) ## Supply Chain Security From 809d7926ad7cc052908d665839b8b5dde6e7cf27 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 25 Sep 2022 10:30:40 +0000 Subject: [PATCH 003/601] Update FluxCD Source Controller metadata and add version 0.29.0 --- .../0.29.0.yml | 72 +++++++++++++++++++ .../metadata.yml | 19 +++++ 2 files changed, 91 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.29.0.yml create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.29.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.29.0.yml new file mode 100644 index 0000000..423ad41 --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.29.0.yml @@ -0,0 +1,72 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.29.0 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/fluxcd/source-controller/releases + releasedAt: "2022-09-25T10:29:36Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:1409bd8e11136785d76ce5b05ad2fc6bae7b00b18e081370f53fa4233b444406 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy URL + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the source-controller Service + type: integer + type: object + version: 0.29.0 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..86e07cd --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml @@ -0,0 +1,19 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io +spec: + categories: + - gitops + displayName: fluxcd-source-controller + longDescription: The FluxCD Source Controller is a Kubernetes operator, specialised + in artifacts acquisition from external sources such as Git, Helm repositories + and S3 buckets. It implements the source.toolkit.fluxcd.io API and is a core component + of the GitOps toolkit. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: The FluxCD Source Controller is a Kubernetes operator, specialised + in artifacts acquisition from external sources such as Git, Helm repositories + and S3 buckets. From e9e3593d74ffaa06d91c431ac96bd09763f0f493 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Sep 2022 13:10:37 +0200 Subject: [PATCH 004/601] Add FluxCD Source Controller --- .github/workflows/release.yml | 2 +- README.md | 3 ++- 2 files changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4e9b715..59726d5 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.1.2 + VERSION: 0.1.3 jobs: build: diff --git a/README.md b/README.md index e4931b0..53840c4 100644 --- a/README.md +++ b/README.md @@ -9,6 +9,7 @@ This repository contains the Carvel packages part of the Kadras project. The following packages are maintained by the [Arktonix](https://github.com/arktonix) organization: * [argo-cd](https://github.com/arktonix/package-for-argo-cd) +* [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) * [knative-serving](https://github.com/arktonix/package-for-knative-serving) @@ -39,7 +40,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.1.2 \ + --url ghcr.io/arktonix/kadras-packages:0.1.3 \ -n carvel-packages ``` From 25f05a9c377a9b54bae731d7602181f9b0d71c5d Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 25 Sep 2022 13:07:17 +0000 Subject: [PATCH 005/601] Update Tekton Pipelines metadata and add version 0.40.0 --- .../0.40.0.yml | 137 ++++++++++++++++++ .../metadata.yml | 14 ++ 2 files changed, 151 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.40.0.yml create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.40.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.40.0.yml new file mode 100644 index 0000000..cd5b2ae --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.40.0.yml @@ -0,0 +1,137 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.40.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/tektoncd/pipeline/releases + releasedAt: "2022-09-25T13:06:05Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:22f5bced42f931e3c2a17363a6601aa51aa07b03f4c7d883e6c0267fbffa6a23 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + defaults: + additionalProperties: false + description: Default configuration stored in the config-defaults ConfigMap. + properties: + affinity_assistant_pod_template: + default: "" + description: Pod template to use for affinity assistant pods. + type: string + cloud_events_sink: + default: "" + description: CloudEvents sink to be used for TaskRun and PipelineRun. + If no sink is specified, no CloudEvent is generated. + type: string + managed_by_label_value: + default: tekton-pipelines + description: Value given to the 'app.kubernetes.io/managed-by' label + applied to all Pods created for TaskRuns. + type: string + max_matrix_combinations_count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + pod_template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + service_account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + task_run_workspace_binding: + default: "" + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + example: 'emptyDir: {}' + type: string + x-example-description: Use emptyDir volume for workspace + timeout_minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the feature-flags ConfigMap. + properties: + await_sidecar_readiness: + default: "true" + description: Setting this flag to 'false' will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + disable_affinity_assistant: + default: "false" + description: Setting this flag to 'true' will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable_creds_init: + default: "false" + description: Setting this flag to 'true' will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable_api_fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable_custom_tasks: + default: "false" + description: Setting this flag to 'true' enables the use of custom tasks + from within pipelines. This is an experimental feature and thus should + still be considered an alpha feature. + type: string + enable_tekton_oci_bundles: + default: "false" + description: Setting this flag to 'true' enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + require_git_ssh_secret_known_hosts: + default: "false" + description: Setting this flag to 'true' will require that any Git SSH + Secret offered to Tekton must have known_hosts included. + type: string + running_in_environment_with_injected_sidecars: + default: "true" + description: This option should be set to 'false' when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send_cloudevents_for_runs: + default: "false" + description: Setting this flag to 'true' enables CloudEvents for Runs, + as long as a CloudEvents sink is configured in the config-defaults + config map. + type: string + type: object + type: object + version: 0.40.0 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml b/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..bd27b0d --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml @@ -0,0 +1,14 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io +spec: + categories: + - ci/cd + displayName: tekton-pipelines + longDescription: A cloud native solution for building CI/CD pipelines. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: A cloud native solution for building CI/CD pipelines. From 8b34497fd281b5edb06f82d6cb9066b041e3885a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Sep 2022 15:11:05 +0200 Subject: [PATCH 006/601] Add Tekton Pipelines --- .github/workflows/release.yml | 2 +- README.md | 3 ++- 2 files changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 59726d5..0e4a93b 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.1.3 + VERSION: 0.1.4 jobs: build: diff --git a/README.md b/README.md index 53840c4..0d0f531 100644 --- a/README.md +++ b/README.md @@ -12,6 +12,7 @@ The following packages are maintained by the [Arktonix](https://github.com/arkto * [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) * [knative-serving](https://github.com/arktonix/package-for-knative-serving) +* [tekton-pipelines](https://github.com/arktonix/package-for-tekton-pipelines) It also includes the following open-source packages maintained by the [VMware Tanzu](https://github.com/vmware-tanzu) organization: @@ -40,7 +41,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.1.3 \ + --url ghcr.io/arktonix/kadras-packages:0.1.4 \ -n carvel-packages ``` From cb95ef53a31194c87a84b7a6eeee9f81f0c1eacb Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 27 Sep 2022 20:00:34 +0000 Subject: [PATCH 007/601] Update Kpack Dependencies metadata and add version 0.1.0 --- .../0.1.0.yml | 34 +++++++++++++++++++ .../metadata.yml | 16 +++++++++ 2 files changed, 50 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.1.0.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..8e11fd9 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.1.0.yml @@ -0,0 +1,34 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.1.0 +spec: + refName: kpack-dependencies.packages.kadras.io + releasedAt: "2022-09-27T19:59:38Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kpack-dependencies@sha256:4f92a8c3cb2a6cc225306492be52ef13db443ac9a0e6ee0fd55382d2efea4174 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + default: "" + description: The OCI registry where to publish builder images. The same + as configured in kpack. + type: string + type: object + version: 0.1.0 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml b/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..ddeed20 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml @@ -0,0 +1,16 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io +spec: + categories: + - build + displayName: kpack-dependencies + longDescription: A set of buildpacks, stacks, and builders to use with kpack, a + Kubernetes-native implementation of Cloud Native Buildpacks. It supports multiple + languages and frameworks. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: A set of buildpacks, stacks, and builders to use with kpack. From 2f3a29e330048df5a09970fc1996d2a82bc69347 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 27 Sep 2022 22:02:47 +0200 Subject: [PATCH 008/601] Add Kpack Dependencies --- .github/workflows/release.yml | 4 +++- README.md | 3 ++- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 0e4a93b..000b474 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.1.4 + VERSION: 0.1.5 jobs: build: @@ -35,6 +35,8 @@ jobs: - name: Create k3d cluster run: | + # Workaround for https://github.com/actions/runner-images/issues/6283 + eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)" brew install k3d k3d cluster create test-cluster diff --git a/README.md b/README.md index 0d0f531..4612152 100644 --- a/README.md +++ b/README.md @@ -12,6 +12,7 @@ The following packages are maintained by the [Arktonix](https://github.com/arkto * [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) * [knative-serving](https://github.com/arktonix/package-for-knative-serving) +* [kpack-dependencies](https://github.com/arktonix/kpack-dependencies) * [tekton-pipelines](https://github.com/arktonix/package-for-tekton-pipelines) It also includes the following open-source packages maintained by the [VMware Tanzu](https://github.com/vmware-tanzu) organization: @@ -41,7 +42,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.1.4 \ + --url ghcr.io/arktonix/kadras-packages:0.1.5 \ -n carvel-packages ``` From 69897237ad60a122cac48de33e3483d6275f1ec1 Mon Sep 17 00:00:00 2001 From: github-actions Date: Thu, 29 Sep 2022 21:57:09 +0000 Subject: [PATCH 009/601] Update Cartographer Blueprints metadata and add version 0.1.0 --- .../0.1.0.yml | 36 +++++++++++++++++++ .../metadata.yml | 17 +++++++++ 2 files changed, 53 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..258308c --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.0.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.1.0 +spec: + refName: cartographer-blueprints.packages.kadras.io + releasedAt: "2022-09-29T21:56:00Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-blueprints@sha256:388156fc3c4cff7dd6e3b72643c366377b9303d1421c5498b0aaaeed5902607a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being applied. + items: + default: "" + type: string + type: array + type: object + version: 0.1.0 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..c12b08a --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml @@ -0,0 +1,17 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io +spec: + categories: + - developer experience + - ci/cd + - platform engineering + displayName: cartographer-blueprints + longDescription: A set of reusable blueprints for Cartographer, a Kubernetes-native + framework to build paved paths to production. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: A set of reusable blueprints for Cartographer. From 464a1472ddd5614934ca4b8f38a83e77d14b4113 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 Sep 2022 00:03:13 +0200 Subject: [PATCH 010/601] Add Cartographer Blueprints --- .github/workflows/release.yml | 2 +- README.md | 3 ++- 2 files changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 000b474..f48c95a 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.1.5 + VERSION: 0.1.6 jobs: build: diff --git a/README.md b/README.md index 4612152..df8a162 100644 --- a/README.md +++ b/README.md @@ -9,6 +9,7 @@ This repository contains the Carvel packages part of the Kadras project. The following packages are maintained by the [Arktonix](https://github.com/arktonix) organization: * [argo-cd](https://github.com/arktonix/package-for-argo-cd) +* [cartographer-blueprints](https://github.com/arktonix/cartographer-blueprints) * [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) * [knative-serving](https://github.com/arktonix/package-for-knative-serving) @@ -42,7 +43,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.1.5 \ + --url ghcr.io/arktonix/kadras-packages:0.1.6 \ -n carvel-packages ``` From 54837e5b7d0c7982e494774bb2beeb34563a51cf Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 30 Sep 2022 21:12:25 +0000 Subject: [PATCH 011/601] Update Spring Boot Conventions metadata and add version 0.1.0 --- .../0.1.0.yml | 64 +++++++++++++++++++ .../metadata.yml | 17 +++++ 2 files changed, 81 insertions(+) create mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.0.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..064d1dc --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.0.yml @@ -0,0 +1,64 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io.0.1.0 +spec: + refName: spring-boot-conventions.packages.kadras.io + releasedAt: "2022-09-30T21:11:16Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-spring-boot-conventions@sha256:9f2a483556d8c9a9d894bbbd13ad2948f5901d32cad87bd7f5a2e456cd391d3c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: spring-boot-conventions + description: The namespace where to install the Spring Boot Conventions + type: string + resources: + additionalProperties: false + description: Resource configuration for the Convention Server + properties: + limits: + additionalProperties: false + description: Resource limits + properties: + cpu: + default: 100m + description: CPU limits + type: string + memory: + default: 256Mi + description: Memory limits + type: string + type: object + requests: + additionalProperties: false + description: Resource requests + properties: + cpu: + default: 100m + description: CPU requests + type: string + memory: + default: 20Mi + description: Memory requests + type: string + type: object + type: object + type: object + version: 0.1.0 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..6d6fd27 --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml @@ -0,0 +1,17 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io +spec: + categories: + - ci/cd + - configuration + displayName: spring-boot-conventions + longDescription: The Spring Boot Convention Server works with the Cartographer Convention + Controller to apply best-practices to workloads at runtime by understanding the + developer's intent. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: Spring Boot Convention Server for Cartographer. From f2f7e902d4c0017b775d74839cfc1520772a162e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 Sep 2022 23:14:11 +0200 Subject: [PATCH 012/601] Add Spring Boot Conventions --- .github/workflows/release.yml | 2 +- README.md | 3 ++- 2 files changed, 3 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index f48c95a..5ffd089 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.1.6 + VERSION: 0.1.7 jobs: build: diff --git a/README.md b/README.md index df8a162..3610bff 100644 --- a/README.md +++ b/README.md @@ -14,6 +14,7 @@ The following packages are maintained by the [Arktonix](https://github.com/arkto * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) * [knative-serving](https://github.com/arktonix/package-for-knative-serving) * [kpack-dependencies](https://github.com/arktonix/kpack-dependencies) +* [spring-boot-conventions](https://github.com/arktonix/package-for-spring-boot-conventions) * [tekton-pipelines](https://github.com/arktonix/package-for-tekton-pipelines) It also includes the following open-source packages maintained by the [VMware Tanzu](https://github.com/vmware-tanzu) organization: @@ -43,7 +44,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.1.6 \ + --url ghcr.io/arktonix/kadras-packages:0.1.7 \ -n carvel-packages ``` From 4388a5b7c47aa9b7b971e29641e0361aacb6e9f6 Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 3 Oct 2022 12:38:14 +0000 Subject: [PATCH 013/601] Update Cartographer Golden Path Web metadata and add version 0.1.0 --- .../0.1.0.yml | 128 ++++++++++++++++++ .../metadata.yml | 17 +++ 2 files changed, 145 insertions(+) create mode 100644 repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/cartographer-golden-path-web.packages.kadras.io/metadata.yml diff --git a/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.0.yml b/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..6493a59 --- /dev/null +++ b/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.0.yml @@ -0,0 +1,128 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-golden-path-web.packages.kadras.io.0.1.0 +spec: + refName: cartographer-golden-path-web.packages.kadras.io + releasedAt: "2022-10-03T12:35:56Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/artographer-golden-path-web@sha256:21270578f2c96717aed21091372ef3c65966d2bd3798a769222578088b31ad99 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cluster_builder: + default: default + description: The ClusterBuilder used by kpack + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + gitops: + additionalProperties: false + description: Configuration for the GitOps steps in the supply chain + properties: + access_secret: + default: git-secret + description: The Secret containing credentials to access the specified + Git repository + type: string + branch: + default: main + description: The branch to use for GitOps activities + type: string + commit_message: + default: Update from Cartographer + description: The commit message to use when pushing configuration changes + to Git + type: string + commit_strategy: + default: direct + description: Whether to commit configuration changes to Git directly + or via a pull request + type: string + pull_request: + additionalProperties: false + properties: + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated + type: string + pull_request_body: + default: "" + description: The body of the pull request + type: string + pull_request_title: + default: "" + description: The title of the pull request + type: string + server_kind: + default: "" + description: The type of Git server where to open the pull request + example: github + type: string + x-example-description: Open a pull request on GitHub + type: object + repository_name: + default: "" + description: The name of the Git repository to use for GitOps + type: string + repository_owner: + default: "" + description: The owner of the specified Git repository + type: string + server_address: + default: "" + description: The server hosting the specified Git repository + type: string + user_email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository + type: string + user_name: + default: cartographer + description: The name of the user interacting with the Git repository + type: string + type: object + registry: + additionalProperties: false + description: Configuration for the OCI Registry where to store the application + images + properties: + repository: + default: "" + description: The repository under an OCI Registry where to store the + application images + type: string + server: + default: "" + description: The server of the OCI Registry where to store the application + images + type: string + type: object + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + supply_chain: + default: basic + description: The type of supply chain to use for this golden path + type: string + type: object + version: 0.1.0 diff --git a/repo/packages/cartographer-golden-path-web.packages.kadras.io/metadata.yml b/repo/packages/cartographer-golden-path-web.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..89d4ca3 --- /dev/null +++ b/repo/packages/cartographer-golden-path-web.packages.kadras.io/metadata.yml @@ -0,0 +1,17 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: cartographer-golden-path-web.packages.kadras.io +spec: + categories: + - ci/cd + - golden paths + - platform engineering + displayName: cartographer-golden-path-web + longDescription: Cartographer supply chains used to build a golden path for web + applications and functions. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: Golden path for web applications and functions. From 5d396f842c7b1c14c12a46f1e8cf21290ac66ccd Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 3 Oct 2022 12:41:50 +0000 Subject: [PATCH 014/601] Update Cartographer Delivery metadata and add version 0.1.0 --- .../0.1.0.yml | 41 +++++++++++++++++++ .../metadata.yml | 17 ++++++++ 2 files changed, 58 insertions(+) create mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.1.0.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..9e7bb2f --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/0.1.0.yml @@ -0,0 +1,41 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io.0.1.0 +spec: + refName: cartographer-delivery.packages.kadras.io + releasedAt: "2022-10-03T12:40:38Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-golden-paths/delivery@sha256:ae1240360cc97218b667070c2c470e693bc835a890e72e524c4693a7501ccc32 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + delivery_chain: + default: basic + description: The type of delivery chain to use when deploying workloads + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + type: object + version: 0.1.0 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml b/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..0f39740 --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml @@ -0,0 +1,17 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io +spec: + categories: + - ci/cd + - gitops + - deployment + displayName: cartographer-delivery + longDescription: A basic Cartographer delivery chain to deploy workloads either + using a GitOps or RegistryOps approach. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: Deployment with GitOps/RegistryOps. From 88fff703d3628373305f704ee0c325e6cabb19e9 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 3 Oct 2022 23:38:42 +0200 Subject: [PATCH 015/601] Add Cartographer golden path and delivery for web --- .github/workflows/release.yml | 2 +- README.md | 4 +++- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 5ffd089..04de7f9 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.1.7 + VERSION: 0.1.8 jobs: build: diff --git a/README.md b/README.md index 3610bff..d823ec3 100644 --- a/README.md +++ b/README.md @@ -10,6 +10,8 @@ The following packages are maintained by the [Arktonix](https://github.com/arkto * [argo-cd](https://github.com/arktonix/package-for-argo-cd) * [cartographer-blueprints](https://github.com/arktonix/cartographer-blueprints) +* [cartographer-delivery](https://github.com/arktonix/cartographer-delivery) +* [cartographer-golden-path-web](https://github.com/arktonix/cartographer-golden-path-web) * [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) * [knative-serving](https://github.com/arktonix/package-for-knative-serving) @@ -44,7 +46,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.1.7 \ + --url ghcr.io/arktonix/kadras-packages:0.1.8 \ -n carvel-packages ``` From 73417020490607dfc7830418df8df4473fedfc47 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 4 Oct 2022 08:57:30 +0000 Subject: [PATCH 016/601] Update Cartographer Golden Path Web metadata and add version 0.1.1 --- .../0.1.1.yml | 128 ++++++++++++++++++ 1 file changed, 128 insertions(+) create mode 100644 repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.1.yml diff --git a/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.1.yml b/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.1.yml new file mode 100644 index 0000000..ca3c2b9 --- /dev/null +++ b/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.1.yml @@ -0,0 +1,128 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-golden-path-web.packages.kadras.io.0.1.1 +spec: + refName: cartographer-golden-path-web.packages.kadras.io + releasedAt: "2022-10-04T08:56:25Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-golden-path-web@sha256:21270578f2c96717aed21091372ef3c65966d2bd3798a769222578088b31ad99 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cluster_builder: + default: default + description: The ClusterBuilder used by kpack + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + gitops: + additionalProperties: false + description: Configuration for the GitOps steps in the supply chain + properties: + access_secret: + default: git-secret + description: The Secret containing credentials to access the specified + Git repository + type: string + branch: + default: main + description: The branch to use for GitOps activities + type: string + commit_message: + default: Update from Cartographer + description: The commit message to use when pushing configuration changes + to Git + type: string + commit_strategy: + default: direct + description: Whether to commit configuration changes to Git directly + or via a pull request + type: string + pull_request: + additionalProperties: false + properties: + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated + type: string + pull_request_body: + default: "" + description: The body of the pull request + type: string + pull_request_title: + default: "" + description: The title of the pull request + type: string + server_kind: + default: "" + description: The type of Git server where to open the pull request + example: github + type: string + x-example-description: Open a pull request on GitHub + type: object + repository_name: + default: "" + description: The name of the Git repository to use for GitOps + type: string + repository_owner: + default: "" + description: The owner of the specified Git repository + type: string + server_address: + default: "" + description: The server hosting the specified Git repository + type: string + user_email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository + type: string + user_name: + default: cartographer + description: The name of the user interacting with the Git repository + type: string + type: object + registry: + additionalProperties: false + description: Configuration for the OCI Registry where to store the application + images + properties: + repository: + default: "" + description: The repository under an OCI Registry where to store the + application images + type: string + server: + default: "" + description: The server of the OCI Registry where to store the application + images + type: string + type: object + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + supply_chain: + default: basic + description: The type of supply chain to use for this golden path + type: string + type: object + version: 0.1.1 From 49a5c5cd9b8e83b516fc0dc0320b1225a6ff11f7 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 4 Oct 2022 09:01:28 +0000 Subject: [PATCH 017/601] Update Cartographer Blueprints metadata and add version 0.1.1 --- .../0.1.1.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.1.1.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.1.yml new file mode 100644 index 0000000..5661301 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.1.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.1.1 +spec: + refName: cartographer-blueprints.packages.kadras.io + releasedAt: "2022-10-04T09:00:23Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-blueprints@sha256:02e93af08580308e0697b9716d2f6aa83925a55300b717b079dcf16090998a16 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being applied. + items: + default: "" + type: string + type: array + type: object + version: 0.1.1 From 2e644f7d2953855c1b79f6d7da5284f53643f30b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 4 Oct 2022 11:03:24 +0200 Subject: [PATCH 018/601] Update Cartographer golden paths --- .github/workflows/release.yml | 2 +- README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 04de7f9..913e59d 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.1.8 + VERSION: 0.1.9 jobs: build: diff --git a/README.md b/README.md index d823ec3..38b3a1c 100644 --- a/README.md +++ b/README.md @@ -46,7 +46,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.1.8 \ + --url ghcr.io/arktonix/kadras-packages:0.1.9 \ -n carvel-packages ``` From d91d7153572d757d50af981dadb71bec1ec1ec49 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 4 Oct 2022 09:55:24 +0000 Subject: [PATCH 019/601] Update Cartographer Blueprints metadata and add version 0.1.2 --- .../0.1.2.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.1.2.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.2.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.2.yml new file mode 100644 index 0000000..6c3e129 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.2.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.1.2 +spec: + refName: cartographer-blueprints.packages.kadras.io + releasedAt: "2022-10-04T09:54:25Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-blueprints@sha256:2fcbe662755bcee390a7dca89752ab130a40cc3b6eb36adcd3d84078c9049abf + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being applied. + items: + default: "" + type: string + type: array + type: object + version: 0.1.2 From da6f86aa492a089bc003955931aab5be592101f3 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 4 Oct 2022 11:46:53 +0000 Subject: [PATCH 020/601] Update Cartographer Blueprints metadata and add version 0.1.3 --- .../0.1.3.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.1.3.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.3.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.3.yml new file mode 100644 index 0000000..44ea95e --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.3.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.1.3 +spec: + refName: cartographer-blueprints.packages.kadras.io + releasedAt: "2022-10-04T11:45:33Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-blueprints@sha256:4fbc55bca52d533a5f7120b7394b23163d98293e9cfa759182ef2bb961306661 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being applied. + items: + default: "" + type: string + type: array + type: object + version: 0.1.3 From 3bf57351fa50b9e407883dfea074fcce0a9c9734 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 4 Oct 2022 12:16:02 +0000 Subject: [PATCH 021/601] Update Cartographer Delivery metadata and add version 0.1.1 --- .../0.1.1.yml | 41 +++++++++++++++++++ 1 file changed, 41 insertions(+) create mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.1.1.yml diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.1.1.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.1.1.yml new file mode 100644 index 0000000..d81a915 --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/0.1.1.yml @@ -0,0 +1,41 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io.0.1.1 +spec: + refName: cartographer-delivery.packages.kadras.io + releasedAt: "2022-10-04T12:14:48Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-delivery@sha256:ae1240360cc97218b667070c2c470e693bc835a890e72e524c4693a7501ccc32 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + delivery_chain: + default: basic + description: The type of delivery chain to use when deploying workloads + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + type: object + version: 0.1.1 From ea0c632174644e1a6fb6fbbc8dbd8302d346fb83 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 4 Oct 2022 12:24:10 +0000 Subject: [PATCH 022/601] Update Namespace Setup metadata and add version 0.1.0 --- .../0.1.0.yml | 83 +++++++++++++++++++ .../metadata.yml | 9 ++ 2 files changed, 92 insertions(+) create mode 100644 repo/packages/namespace-setup.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/namespace-setup.packages.kadras.io/metadata.yml diff --git a/repo/packages/namespace-setup.packages.kadras.io/0.1.0.yml b/repo/packages/namespace-setup.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..51ceeca --- /dev/null +++ b/repo/packages/namespace-setup.packages.kadras.io/0.1.0.yml @@ -0,0 +1,83 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: namespace-setup.packages.kadras.io.0.1.0 +spec: + refName: namespace-setup.packages.kadras.io + releasedAt: "2022-10-04T12:22:40Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/namespace-setup@sha256:2ecd63315d79b822ef0ca074e1b38c876007d9c5cdb88e5e770c01ecf42ab0ea + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + gitops: + additionalProperties: false + description: Configuration to access the Git repositories used in the GitOps + workflows + properties: + password: + default: "" + description: The password for the Git server used in the GitOps workflows + type: string + server: + default: https://github.com + description: The Git server hosting the Git repositories used in the + GitOps workflows + type: string + username: + default: "" + description: The username for the Git server used in the GitOps workflows + type: string + type: object + namespaces: + default: [] + description: Configuration for developer namespaces + items: + additionalProperties: false + description: Details about the namespace to configure + properties: + exists: + default: false + type: boolean + name: + default: "" + type: string + type: object + type: array + registry: + additionalProperties: false + description: Configuration to access the OCI registry where the Kadras packages + are stored + properties: + password: + default: "" + description: The password for the OCI registry server where the Kadras + packages are stored + type: string + server: + default: "" + description: The OCI registry server where the Kadras packages are stored + type: string + username: + default: "" + description: The username for the OCI registry server where the Kadras + packages are stored + type: string + type: object + type: object + version: 0.1.0 diff --git a/repo/packages/namespace-setup.packages.kadras.io/metadata.yml b/repo/packages/namespace-setup.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..70000e2 --- /dev/null +++ b/repo/packages/namespace-setup.packages.kadras.io/metadata.yml @@ -0,0 +1,9 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: namespace-setup.packages.kadras.io +spec: + displayName: namespace-setup + longDescription: namespace-setup.packages.kadras.io + shortDescription: namespace-setup.packages.kadras.io From 6b52418873e57f11032ee05ba909922b3e48c2be Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 4 Oct 2022 13:08:17 +0000 Subject: [PATCH 023/601] Update Kadras Application Platform metadata and add version 0.1.0 --- .../0.1.0.yml | 133 ++++++++++++++++++ .../metadata.yml | 16 +++ 2 files changed, 149 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/application-platform.packages.kadras.io/metadata.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.1.0.yml b/repo/packages/application-platform.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..9a93468 --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.1.0.yml @@ -0,0 +1,133 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.1.0 +spec: + refName: application-platform.packages.kadras.io + releasedAt: "2022-10-04T13:07:10Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:88eaece5b5c4e9ed68d008397aff30050e1fb642cf83a25ca4b0ced8c9d559b3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + additionalProperties: false + description: Configuration for the Cartographer Blueprints package + properties: {} + type: object + delivery: + additionalProperties: false + description: Configuration for the Cartographer Delivery package + properties: {} + type: object + golden_path_web: + additionalProperties: false + description: Configuration for the Cartographer Golden Path Web package + properties: {} + type: object + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager package + properties: + namespace: + default: cert-manager + description: The namespace where to install of the Cert Manager package + type: string + type: object + contour: + additionalProperties: false + description: Configuration for the Contour package + properties: {} + type: object + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + additionalProperties: false + description: Configuration for the Spring Boot Conventions package + properties: {} + type: object + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + additionalProperties: false + description: Configuration for the Knative Serving package + properties: {} + type: object + type: object + kpack: + additionalProperties: false + description: Configuration for the Kpack package + properties: + kp_default_repository: + default: "" + description: The OCI registry where to publish builder images. + type: string + type: object + metrics_server: + additionalProperties: false + description: Configuration for the Metrics Server package + properties: {} + type: object + namespace_setup: + additionalProperties: false + description: Configuration for the Namespace Setup package + properties: {} + type: object + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + additionalProperties: false + description: Configuration for the Secretgen Controller package + properties: {} + type: object + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + additionalProperties: false + description: Configuration for the Tekton Pipelines package + properties: {} + type: object + type: object + type: object + version: 0.1.0 diff --git a/repo/packages/application-platform.packages.kadras.io/metadata.yml b/repo/packages/application-platform.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..fcc08cf --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/metadata.yml @@ -0,0 +1,16 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io +spec: + categories: + - internal developer platform + - application platform + displayName: application-platform + longDescription: A curated set of Carvel packages to build an application platform + or internal developer platform (IDP) on Kubernetes. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: Application platform on Kubernetes. From e08cd0a212e17415fb78af4c0ff983f0a59bd827 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 4 Oct 2022 15:09:57 +0200 Subject: [PATCH 024/601] Add Application Platform and Namespace Seyup --- .github/workflows/release.yml | 2 +- README.md | 4 +++- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 913e59d..c5ccc8f 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.1.9 + VERSION: 0.2.0 jobs: build: diff --git a/README.md b/README.md index 38b3a1c..e5241cb 100644 --- a/README.md +++ b/README.md @@ -8,6 +8,7 @@ This repository contains the Carvel packages part of the Kadras project. The following packages are maintained by the [Arktonix](https://github.com/arktonix) organization: +* [application-platform](https://github.com/arktonix/kadras-application-platform) * [argo-cd](https://github.com/arktonix/package-for-argo-cd) * [cartographer-blueprints](https://github.com/arktonix/cartographer-blueprints) * [cartographer-delivery](https://github.com/arktonix/cartographer-delivery) @@ -16,6 +17,7 @@ The following packages are maintained by the [Arktonix](https://github.com/arkto * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) * [knative-serving](https://github.com/arktonix/package-for-knative-serving) * [kpack-dependencies](https://github.com/arktonix/kpack-dependencies) +* [namespace-setup](https://github.com/arktonix/namespace-setup) * [spring-boot-conventions](https://github.com/arktonix/package-for-spring-boot-conventions) * [tekton-pipelines](https://github.com/arktonix/package-for-tekton-pipelines) @@ -46,7 +48,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.1.9 \ + --url ghcr.io/arktonix/kadras-packages:0.2.0 \ -n carvel-packages ``` From a0ab8736330d2f9b51475c7e41775981d82e39d8 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 4 Oct 2022 13:19:12 +0000 Subject: [PATCH 025/601] Update Kadras Application Platform metadata and add version 0.1.1 --- .../0.1.1.yml | 28 +++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.1.1.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.1.1.yml b/repo/packages/application-platform.packages.kadras.io/0.1.1.yml new file mode 100644 index 0000000..af16e4b --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.1.1.yml @@ -0,0 +1,28 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.1.1 +spec: + refName: application-platform.packages.kadras.io + releasedAt: "2022-10-04T13:17:59Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:76bfafcaa8dc685e4aa93533d291833c95d3091eaeb9bf1501e27527e61ad1b8 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.1.1 From 304e6135550186d8473c67ba3641f85cbcd05478 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 4 Oct 2022 15:22:33 +0200 Subject: [PATCH 026/601] Update application platform 0.2.1 --- .github/workflows/release.yml | 2 +- README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index c5ccc8f..60b8bda 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.2.0 + VERSION: 0.2.1 jobs: build: diff --git a/README.md b/README.md index e5241cb..76da969 100644 --- a/README.md +++ b/README.md @@ -48,7 +48,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.2.0 \ + --url ghcr.io/arktonix/kadras-packages:0.2.1 \ -n carvel-packages ``` From a426ad3a2c79e7078fb5c7516910bc9459d287c0 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 4 Oct 2022 13:37:18 +0000 Subject: [PATCH 027/601] Update Kadras Application Platform metadata and add version 0.1.2 --- .../0.1.2.yml | 115 ++++++++++++++++++ 1 file changed, 115 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.1.2.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.1.2.yml b/repo/packages/application-platform.packages.kadras.io/0.1.2.yml new file mode 100644 index 0000000..5168fcd --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.1.2.yml @@ -0,0 +1,115 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.1.2 +spec: + refName: application-platform.packages.kadras.io + releasedAt: "2022-10-04T13:36:05Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:cbc5eaedbbbb47200e0a12a3229ae21e682215c71f23f8ee61cb37e3a804c2e8 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + golden_path_web: + default: {} + description: Configuration for the Cartographer Golden Path Web package + nullable: true + type: object + cert_manager: + default: + namespace: cert-manager + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.1.2 From b2a37cb4bafc2faa0b4ec2ba4a4cbae45b10e88d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 4 Oct 2022 15:38:11 +0200 Subject: [PATCH 028/601] Update app platform --- .github/workflows/release.yml | 2 +- README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 60b8bda..8dabbdb 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.2.1 + VERSION: 0.2.2 jobs: build: diff --git a/README.md b/README.md index 76da969..99bebbd 100644 --- a/README.md +++ b/README.md @@ -48,7 +48,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.2.1 \ + --url ghcr.io/arktonix/kadras-packages:0.2.2 \ -n carvel-packages ``` From c2d68955d44dff59c6efbf44dea9f303efe091b9 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sat, 22 Oct 2022 16:08:31 +0000 Subject: [PATCH 029/601] Update Contour metadata and add version 1.23.0 --- .../contour.packages.kadras.io/1.23.0.yml | 186 ++++++++++++++++++ .../contour.packages.kadras.io/metadata.yml | 23 ++- 2 files changed, 197 insertions(+), 12 deletions(-) create mode 100644 repo/packages/contour.packages.kadras.io/1.23.0.yml diff --git a/repo/packages/contour.packages.kadras.io/1.23.0.yml b/repo/packages/contour.packages.kadras.io/1.23.0.yml new file mode 100644 index 0000000..133c6b5 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.23.0.yml @@ -0,0 +1,186 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.23.0 +spec: + capacityRequirementsDescription: Varies significantly based on number of Services, + Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each + Contour and Envoy pod, but this can and should be tuned based on observed usage. + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/projectcontour/contour/releases + releasedAt: "2022-10-22T16:07:26Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-contour@sha256:b2dfa33475159ac2c38965542cc3cce59b30491a08633461e85acb15343f2535 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + description: OpenAPIv3 Schema + properties: + certificates: + additionalProperties: false + description: Settings for the TLS certificates for securing communication + between Contour and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If useCertManager is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If useCertManager is false, this field is ignored. + type: string + useCertManager: + default: false + description: Whether to use cert-manager to provision TLS certificates + for securing communication between Contour and Envoy. If false, the + upstream Contour certgen job will be used to provision certificates. + If true, the cert-manager addon must be installed in the cluster. + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + configFileContents: + default: null + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + logLevel: + default: info + description: The Contour log level. Valid options are 'info' and 'debug'. + type: string + replicas: + default: 2 + description: How many Contour pod replicas to have. + type: integer + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enable: + default: false + description: Whether to enable host ports. If false, http & https + are ignored. + type: boolean + http: + default: 80 + description: If enable == true, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enable == true, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + logLevel: + default: info + description: The Envoy log level. + type: string + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If infrastructure + provider is not 'aws', these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: "" + description: The external traffic policy for the Envoy service. + If type is 'ClusterIP', this field is ignored. Otherwise, defaults + to 'Cluster' for vsphere and 'Local' for others. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If type is not 'LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not 'NodePort' or 'LoadBalancer', these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: "" + description: The type of Kubernetes service to provision for Envoy. + If not specified, will default to 'NodePort' for docker and vsphere + and 'LoadBalancer' for others. + type: string + type: object + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: object + infrastructureProvider: + default: "" + description: The underlying infrastructure provider. Options are aws, azure, + docker and vsphere. This field is not required, but enables better validation + and defaulting if provided. + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.23.0 diff --git a/repo/packages/contour.packages.kadras.io/metadata.yml b/repo/packages/contour.packages.kadras.io/metadata.yml index 439fc65..e8ca714 100644 --- a/repo/packages/contour.packages.kadras.io/metadata.yml +++ b/repo/packages/contour.packages.kadras.io/metadata.yml @@ -1,19 +1,18 @@ apiVersion: data.packaging.carvel.dev/v1alpha1 kind: PackageMetadata metadata: + creationTimestamp: null name: contour.packages.kadras.io spec: + categories: + - ingress + - envoy + - gateway displayName: contour - shortDescription: "An ingress controller" - longDescription: "An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. See https://projectcontour.io for more information." - providerName: VMware + iconSVGBase64: PHN2ZyBpZD0iTGF5ZXJfMSIgZGF0YS1uYW1lPSJMYXllciAxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHZpZXdCb3g9IjAgMCAzNjAgMzYwIj48ZGVmcz48c3R5bGU+LmNscy0xe2ZpbGw6IzAwOWNkYzt9PC9zdHlsZT48L2RlZnM+PHBhdGggY2xhc3M9ImNscy0xIiBkPSJNMjMzLjQ5MzU0LDEzLjYwNzQyQTE3Mi41NDE2NiwxNzIuNTQxNjYsMCwwLDAsMTg5LjYwMSw1LjQzODE0Yy0xOC4xMDk1OSw5OS44NzYtNjguMDE5MzUsMTY5Ljc2MzQyLTExMS4yOTYzNCwyMTMuNTM4QTQzMC42MDM4OCw0MzAuNjAzODgsMCwwLDEsMjcuOTk3LDI2Mi40ODQzN2ExNzQuMTU5ODMsMTc0LjE1OTgzLDAsMCwwLDEzLjk4MDY2LDIxLjQwNzc1YzI3LjIyMi0xNy4yMzI0Niw1Mi4xNzU4Mi0zNi44MDY1OCw3MS42ODAzLTU1LjM4NTc3QzE2MC4yODkzNiwxODQuMDg3NTgsMjE0LjA3NzQ2LDExMy40OTg1NSwyMzMuNDkzNTQsMTMuNjA3NDJaIi8+PHBhdGggY2xhc3M9ImNscy0xIiBkPSJNMjkxLjg4OTM3LDEyMy45NDY3QTM3Mi41NDI4OSwzNzIuNTQyODksMCwwLDAsMzE1LjI5NjE5LDcwLjAzOSwxNzUuMTA3NzIsMTc1LjEwNzcyLDAsMCwwLDI4NC42NjU3Nyw0MC4zMDMyYy0yMy44NDQxMiw5NC4xNzk4Ny03OS40NDQ1NywxNjIuMTA2MTMtMTI3Ljk3OTI4LDIwNS45MDM1OWE0OTcuNjM2NjIsNDk3LjYzNjYyLDAsMCwxLTg5LjYyNDgyLDY0LjI1NDI5LDE3NC43NzM3MywxNzQuNzczNzMsMCwwLDAsMTQuNzE4NywxMS4zNzIzN0E1MTcuMTc5NDksNTE3LjE3OTQ5LDAsMCwwLDE4OC4yNzg2NSwyNTEuMTM2QzIzMi4xOTIxLDIxMy40MDI2NywyNjcuMDUyMTIsMTcwLjYwOTcxLDI5MS44ODkzNywxMjMuOTQ2N1oiLz48cGF0aCBjbGFzcz0iY2xzLTEiIGQ9Ik0yNzcuMTUwODIsMzQuODk4ODFBMTczLjI0MjA2LDE3My4yNDIwNiwwLDAsMCwyMzguODU1OSwxNS40MjU3MkMyMTkuMDU2MSwxMTYuMzIxLDE2NC42ODA0MiwxODcuNjQ2MjUsMTE3LjUyMzI4LDIzMi41NjUxYTQ2NC4xMzgyNyw0NjQuMTM4MjcsMCwwLDEtNzEuODE3NzcsNTYuMDY4MDYsMTc1LjAzNSwxNzUuMDM1LDAsMCwwLDE0LjYyNDM1LDE1LjcyODI1LDQ4NS4yMjExNyw0ODUuMjIxMTcsMCwwLDAsOTAuNjEzMjYtNjQuNTE4OTVDMTk5LjA2NTQyLDE5Ni40MTY4MiwyNTQuMjY4MjYsMTI4Ljc5ODg3LDI3Ny4xNTA4MiwzNC44OTg4MVoiLz48cGF0aCBjbGFzcz0iY2xzLTEiIGQ9Ik0zMzYuMTM0MDUsMTMzLjIwMDIxYzIuNTE3MzctNC40ODYxMyw0Ljg5Mjc2LTkuMDA2MTcsNy4yMDMtMTMuNTQxMzdBMTczLjI1NTE3LDE3My4yNTUxNywwLDAsMCwzMjMuNjQxNTQsODEuMjQ4MSwzODYuMDQ3MywzODYuMDQ3MywwLDAsMSwzMDIuMDc2NjYsMTI5LjM2OWMtMjUuNTEzNzgsNDcuOTM0ODctNjEuMjcxMyw5MS44NDgzMi0xMDYuMjc3MTEsMTMwLjUyMDgzQTUzMy40ODk2Niw1MzMuNDg5NjYsMCwwLDEsOTMuMTcyLDMyOS4wMzE2MXE3LjA2MTUxLDQuMTAxNiwxNC41MjQ1OCw3LjU0NGE1NTAuMDcyMDUsNTUwLjA3MjA1LDAsMCwwLDExNy45Ni03NC4xNzkyN0MyNzIuNDI3MSwyMjMuOTYzNTgsMzA5LjU5NjMsMTgwLjQ5NTU0LDMzNi4xMzQwNSwxMzMuMjAwMjFaIi8+PHBhdGggY2xhc3M9ImNscy0xIiBkPSJNMTg2LjkzNzg4LDUuMzQwMzZjLTIuMjc3MDctLjA4OTEyLTQuNTU1NDEtLjE3MzkxLTYuODUzOTUtLjE3MzkxLTk1Ljc0NDcsMC0xNzMuNjM5NTksNzcuODk3MDYtMTczLjYzOTU5LDE3My42Mzk2YTE3Mi41MzM5NCwxNzIuNTMzOTQsMCwwLDAsMjAuMjg4MzQsODEuMzMzMjMsNDI3Ljk2NDczLDQyNy45NjQ3MywwLDAsMCw0OS42OTY1MS00My4wMTc5MkMxMTkuMzY5NzMsMTczLjY4Njg4LDE2OC44ODQzOSwxMDQuMzc1MjksMTg2LjkzNzg4LDUuMzQwMzZaIi8+PHBhdGggY2xhc3M9ImNscy0xIiBkPSJNMzQ4Ljc4NjU3LDE0MC4yOTk4N2MtMjcuNDIyNDYsNDguODczMzMtNjUuNzQ5ODUsOTMuNzI0NTMtMTEzLjkxNzgsMTMzLjMwNjQ2QTU3MS4zMjU2Niw1NzEuMzI1NjYsMCwwLDEsMTI2LjExOSwzNDMuODE2NTJhMTcyLjg4MDA3LDE3Mi44ODAwNywwLDAsMCw1My45NjQ4OSw4LjYyOTEzYzk1Ljc0NDM1LDAsMTczLjYzOTYtNzcuODk2ODgsMTczLjYzOTYtMTczLjYzOTZBMTczLjM3NTE4LDE3My4zNzUxOCwwLDAsMCwzNDkuMTkxLDEzOS41NDJDMzQ5LjA1MDg2LDEzOS43OTMyOSwzNDguOTI3NDcsMTQwLjA0ODc1LDM0OC43ODY1NywxNDAuMjk5ODdaIi8+PC9zdmc+ + longDescription: An Envoy-based ingress controller that supports dynamic configuration + updates and multi-team ingress delegation. maintainers: - - name: Steve Kriss - - name: Nick Young - - name: Sunjay Bhatia - - name: Nicholas Seemiller - categories: - - "ingress" - - "envoy" - - "contour" - supportDescription: "Go to https://projectcontour.io for documentation or the #contour channel on Kubernetes slack" + - name: Thomas Vitale + providerName: Arktonix + shortDescription: An Envoy-based ingress controller From 1f8b11e3a13e0f52b047f633f6615086e1e30d2e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 22 Oct 2022 18:12:56 +0200 Subject: [PATCH 030/601] Add Contour 1.23.0 --- .github/workflows/release.yml | 2 +- README.md | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 8dabbdb..86efcf2 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.2.2 + VERSION: 0.2.3 jobs: build: diff --git a/README.md b/README.md index 99bebbd..4823100 100644 --- a/README.md +++ b/README.md @@ -13,6 +13,7 @@ The following packages are maintained by the [Arktonix](https://github.com/arkto * [cartographer-blueprints](https://github.com/arktonix/cartographer-blueprints) * [cartographer-delivery](https://github.com/arktonix/cartographer-delivery) * [cartographer-golden-path-web](https://github.com/arktonix/cartographer-golden-path-web) +* [contour](https://github.com/arktonix/package-for-contour) * [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) * [knative-serving](https://github.com/arktonix/package-for-knative-serving) @@ -25,7 +26,6 @@ It also includes the following open-source packages maintained by the [VMware Ta * [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) * [cert-manager](https://github.com/vmware-tanzu/community-edition/tree/main/addons/packages/cert-manager) -* [contour](https://github.com/vmware-tanzu/community-edition/tree/main/addons/packages/contour) * [kpack](https://github.com/vmware-tanzu/package-for-kpack) * [metrics-server](https://github.com/vmware-tanzu/community-edition/tree/main/addons/packages/metrics-server) * [secretgen-controller](https://github.com/vmware-tanzu/carvel-secretgen-controller) @@ -48,7 +48,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.2.2 \ + --url ghcr.io/arktonix/kadras-packages:0.2.3 \ -n carvel-packages ``` From 43085ac7f097779bce22488b6db2ae1b4f01ced6 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sat, 22 Oct 2022 20:08:32 +0000 Subject: [PATCH 031/601] Update Metrics Server metadata and add version 0.6.1 --- .../0.6.1.yml | 190 +++++++++--------- .../metadata.yml | 22 +- 2 files changed, 110 insertions(+), 102 deletions(-) diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.1.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.1.yml index ccd121e..b7ee7a4 100644 --- a/repo/packages/metrics-server.packages.kadras.io/0.6.1.yml +++ b/repo/packages/metrics-server.packages.kadras.io/0.6.1.yml @@ -1,143 +1,149 @@ apiVersion: data.packaging.carvel.dev/v1alpha1 kind: Package metadata: + creationTimestamp: null name: metrics-server.packages.kadras.io.0.6.1 spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kubernetes-sigs/metrics-server/releases + releasedAt: "2022-10-22T20:07:36Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-metrics-server@sha256:ea17539f905f37760155a9df26c848dcda2273875d4aa06b369e7a6dfd5e2c8a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml valuesSchema: openAPIv3: - type: object additionalProperties: false description: OpenAPIv3 Schema for metrics-server properties: - namespace: - type: string - description: The namespace in which metrics-server is deployed - default: kube-system - nodeSelector: - nullable: true - description: NodeSelector configuration applied to all the deployments - default: null - deployment: - type: object + daemonset: additionalProperties: false properties: updateStrategy: - type: string - nullable: true - description: Update strategy of deployments default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: rollingUpdate: - type: object additionalProperties: false properties: - maxUnavailable: - type: integer - nullable: true - description: The maxUnavailable of rollingUpdate. Applied only if RollingUpdate is used as updateStrategy - default: null maxSurge: - type: integer + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy nullable: true - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate is used as updateStrategy + type: integer + maxUnavailable: default: null - daemonset: - type: object - additionalProperties: false - properties: + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object updateStrategy: - type: string - nullable: true - description: Update strategy of daemonsets default: null - metricsServer: + description: Update strategy of deployments + nullable: true + type: string type: object + metricsServer: additionalProperties: false properties: - namespace: - type: string - nullable: true - description: The namespace value used by older templates, will be overwriten if top level namespace is present, kept for backward compatibility - default: null - createNamespace: - type: boolean - description: Whether to create namespace specified for metrics-server - default: true config: - type: object additionalProperties: false properties: - securePort: - type: integer - description: The HTTPS secure port used by metrics-server - default: 4443 - updateStrategy: - type: string - description: The update strategy of the metrics-server deployment - default: RollingUpdate + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean args: - type: array + default: [] description: Arguments passed into metrics-server container items: - type: string default: "" - default: [] + type: string + type: array probe: - type: object additionalProperties: false properties: failureThreshold: - type: integer - description: Probe failureThreshold of metrics-server deployment default: 3 - periodSeconds: + description: Probe failureThreshold of metrics-server deployment type: integer - description: Probe period of metrics-server deployment + periodSeconds: default: 10 - apiServiceInsecureTLS: - type: boolean - description: Whether to enable insecure TLS for metrics-server api service - default: true + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer tolerations: - nullable: true - description: Metrics-server deployment tolerations default: [] - image: + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: additionalProperties: false properties: - repository: - type: string - description: The repository of metrics-server image - default: "" name: - type: string + default: "" description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: default: "" - tag: + description: The repository of metrics-server image type: string - description: The image tag + tag: default: "" - pullPolicy: + description: The image tag type: string - description: The pull policy of image - default: IfNotPresent - refName: metrics-server.packages.kadras.io + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object version: 0.6.1 - releaseNotes: metrics-server 0.6.1 https://github.com/kubernetes-sigs/metrics-server/releases/tag/v0.6.1 - licenses: - - Apache 2.0 - template: - spec: - fetch: - - imgpkgBundle: - image: projects.registry.vmware.com/tce/metrics-server@sha256:55f29f8ba79933204c49642b1c9b745e1d60af3221d16b7772f4ba1b7ad60725 - template: - - ytt: - paths: - - config/ - - kbld: - paths: - - '-' - - .imgpkg/images.yml - deploy: - - kapp: {} diff --git a/repo/packages/metrics-server.packages.kadras.io/metadata.yml b/repo/packages/metrics-server.packages.kadras.io/metadata.yml index 93de629..22e6aa8 100644 --- a/repo/packages/metrics-server.packages.kadras.io/metadata.yml +++ b/repo/packages/metrics-server.packages.kadras.io/metadata.yml @@ -1,16 +1,18 @@ apiVersion: data.packaging.carvel.dev/v1alpha1 kind: PackageMetadata metadata: + creationTimestamp: null name: metrics-server.packages.kadras.io spec: - displayName: "metrics-server" - longDescription: "Metrics Server is a scalable, efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines." - shortDescription: "Metrics Server is a scalable, efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines." - providerName: VMware - maintainers: - - name: Guanpeng Gao categories: - - "observability" - - "metrics-server" - - "cluster" - - "metrics" + - monitoring + - metrics + - observability + displayName: metrics-server + longDescription: Metrics Server is a scalable and efficient source of container + resource metrics for Kubernetes built-in autoscaling pipelines. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: Scalable and efficient source of container resource metrics for + Kubernetes built-in autoscaling pipelines. From 1fe6c56d00f568d09fb0a028bdf92e4b3fb9dc9a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 22 Oct 2022 22:14:29 +0200 Subject: [PATCH 032/601] Add Metrics Server 0.6.1 --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 4823100..1ee64b7 100644 --- a/README.md +++ b/README.md @@ -18,6 +18,7 @@ The following packages are maintained by the [Arktonix](https://github.com/arkto * [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) * [knative-serving](https://github.com/arktonix/package-for-knative-serving) * [kpack-dependencies](https://github.com/arktonix/kpack-dependencies) +* [metrics-server](https://github.com/arktonix/package-for-metrics-server) * [namespace-setup](https://github.com/arktonix/namespace-setup) * [spring-boot-conventions](https://github.com/arktonix/package-for-spring-boot-conventions) * [tekton-pipelines](https://github.com/arktonix/package-for-tekton-pipelines) @@ -27,7 +28,6 @@ It also includes the following open-source packages maintained by the [VMware Ta * [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) * [cert-manager](https://github.com/vmware-tanzu/community-edition/tree/main/addons/packages/cert-manager) * [kpack](https://github.com/vmware-tanzu/package-for-kpack) -* [metrics-server](https://github.com/vmware-tanzu/community-edition/tree/main/addons/packages/metrics-server) * [secretgen-controller](https://github.com/vmware-tanzu/carvel-secretgen-controller) ## Prerequisites From 980a7dc04a9d837d90e36c72a4064baa8ef3b3c6 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sat, 22 Oct 2022 20:57:31 +0000 Subject: [PATCH 033/601] Update Cert Manager metadata and add version 1.10.0 --- .../1.10.0.yml | 36 +++++++++++++++++++ .../metadata.yml | 21 +++++------ 2 files changed, 47 insertions(+), 10 deletions(-) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.0.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.0.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.0.yml new file mode 100644 index 0000000..9dd6191 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.10.0.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.10.0 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2022-10-22T20:56:26Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-cert-manager@sha256:e0f240e13eb7a75567f0d51a64019ece053bc0b5520f0a8bb3390b126534871f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager + type: string + type: object + version: 1.10.0 diff --git a/repo/packages/cert-manager.packages.kadras.io/metadata.yml b/repo/packages/cert-manager.packages.kadras.io/metadata.yml index d4902bb..6e31ccc 100644 --- a/repo/packages/cert-manager.packages.kadras.io/metadata.yml +++ b/repo/packages/cert-manager.packages.kadras.io/metadata.yml @@ -1,16 +1,17 @@ apiVersion: data.packaging.carvel.dev/v1alpha1 kind: PackageMetadata metadata: + creationTimestamp: null name: cert-manager.packages.kadras.io spec: - displayName: "cert-manager" - longDescription: "Provides certificate management provisioning within the cluster" - shortDescription: "Certificate management" - providerName: VMware - maintainers: - - name: Nicholas Seemiller categories: - - "security" - - "tls" - - "certificate" - supportDescription: "Go to https://cert-manager.io/ for documentation or the #cert-manager channel on Kubernetes slack" + - certificate + - security + - tls + displayName: cert-manager + iconSVGBase64: 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 + longDescription: Automatically provision and manage TLS certificates in Kubernetes + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: Cloud native certificate management From 153d94d569f3697f4d57ab3c46546c6105e647a0 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 22 Oct 2022 23:16:15 +0200 Subject: [PATCH 034/601] Update package repo documentation --- README.md | 51 ++++++++++++++++++++++++--------------------------- 1 file changed, 24 insertions(+), 27 deletions(-) diff --git a/README.md b/README.md index 1ee64b7..fd91f68 100644 --- a/README.md +++ b/README.md @@ -2,33 +2,30 @@ A collection of Kubernetes-native packages based on [Carvel](https://carvel.dev) and part of the Kadras project. -## Components - -This repository contains the Carvel packages part of the Kadras project. - -The following packages are maintained by the [Arktonix](https://github.com/arktonix) organization: - -* [application-platform](https://github.com/arktonix/kadras-application-platform) -* [argo-cd](https://github.com/arktonix/package-for-argo-cd) -* [cartographer-blueprints](https://github.com/arktonix/cartographer-blueprints) -* [cartographer-delivery](https://github.com/arktonix/cartographer-delivery) -* [cartographer-golden-path-web](https://github.com/arktonix/cartographer-golden-path-web) -* [contour](https://github.com/arktonix/package-for-contour) -* [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) -* [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) -* [knative-serving](https://github.com/arktonix/package-for-knative-serving) -* [kpack-dependencies](https://github.com/arktonix/kpack-dependencies) -* [metrics-server](https://github.com/arktonix/package-for-metrics-server) -* [namespace-setup](https://github.com/arktonix/namespace-setup) -* [spring-boot-conventions](https://github.com/arktonix/package-for-spring-boot-conventions) -* [tekton-pipelines](https://github.com/arktonix/package-for-tekton-pipelines) - -It also includes the following open-source packages maintained by the [VMware Tanzu](https://github.com/vmware-tanzu) organization: - -* [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) -* [cert-manager](https://github.com/vmware-tanzu/community-edition/tree/main/addons/packages/cert-manager) -* [kpack](https://github.com/vmware-tanzu/package-for-kpack) -* [secretgen-controller](https://github.com/vmware-tanzu/carvel-secretgen-controller) +## Package Repository + +This repository contains the Carvel packages part of the [Kadras](https://kadras.io) project. + +| Package | Description | +|---------|-------------| +| [application-platform](https://github.com/arktonix/kadras-application-platform) | A curated collection of packages to build an application platform or internal developer platform (IDP) on Kubernetes. | +| [argo-cd](https://github.com/arktonix/package-for-argo-cd) | A declarative and GitOps continuous delivery tool for Kubernetes. | +| [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | +| [cartographer-blueprints](https://github.com/arktonix/cartographer-blueprints) | A curated set of reusable blueprints for Cartographer, a Kubernetes-native framework to build paved paths to production. | +| [cartographer-delivery](https://github.com/arktonix/cartographer-delivery) | A curated set of Cartographer delivery chains to deploy workloads to Kubernetes based on GitOps or RegistryOps. | +| [cartographer-golden-path-web](https://github.com/arktonix/cartographer-golden-path-web) | A curated set of Cartographer supply chains to build golden paths to production for web applications and functions, from source code to delivery in a Kubernetes cluster. | +| [cert-manager](https://github.com/arktonix/package-for-cert-manager) | Cloud-native solution to automatically provision and manage TLS certificates in Kubernetes. | +| [contour](https://github.com/arktonix/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | +| [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) | A source management component from the Flux GitOps Toolkit to provide a common interface for artifacts acquisition. | +| [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | +| [knative-serving](https://github.com/arktonix/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | +| [kpack](https://github.com/vmware-tanzu/package-for-kpack) | Kubernetes-native container build service based on Cloud Native Buildpacks. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | +| [kpack-dependencies](https://github.com/arktonix/kpack-dependencies) | A set of buildpacks, stacks, and builders to use with kpack. | +| [metrics-server](https://github.com/arktonix/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | +| [namespace-setup](https://github.com/arktonix/namespace-setup) | Sets up up namespaces with the necessary RBAC and Secrets to work with the Kadras platform. | +| [secretgen-controller](https://github.com/vmware-tanzu/carvel-secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | +| [spring-boot-conventions](https://github.com/arktonix/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | +| [tekton-pipelines](https://github.com/arktonix/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | ## Prerequisites From b442d60b99f0f841526c75e36b658ba581430f8e Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 24 Oct 2022 19:34:28 +0000 Subject: [PATCH 035/601] Update kpack metadata and add version 0.7.1 --- .../kpack.packages.kadras.io/0.7.1.yml | 93 +++++++++++++++++++ .../kpack.packages.kadras.io/metadata.yml | 23 ++--- 2 files changed, 103 insertions(+), 13 deletions(-) create mode 100644 repo/packages/kpack.packages.kadras.io/0.7.1.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.7.1.yml b/repo/packages/kpack.packages.kadras.io/0.7.1.yml new file mode 100644 index 0000000..5cae272 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.7.1.yml @@ -0,0 +1,93 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.7.1 +spec: + capacityRequirementsDescription: Registry with > 1GB available space + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/pivotal/kpack/releases + releasedAt: "2022-10-24T19:33:24Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-kpack@sha256:c4403002c15d82c8f78f4d1d9bf3e4b86a8a3f248876f5ea6fb12481225486e2 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'CA Certificate to be injected into the kpack controller trust + store for communicating with self signed registries. Note: This will not + be injected into builds, you need to use the cert injection webhook with + the kpack.io/build label value' + type: string + kp_default_repository: + default: "" + description: The default repository to use for builder images and dependencies + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + kp_default_repository_aws_iam_role_arn: + default: "" + description: IAM credentials to access kp_default_repository if the registry + is on AWS + type: string + kp_default_repository_password: + default: "" + description: 'Token to access kp_default_repository. Note: Use contents + of service account key json for GCR' + type: string + kp_default_repository_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to access + kp_default_repository + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + kp_default_repository + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials to + access kp_default_repository + type: string + type: object + kp_default_repository_username: + default: "" + description: 'Username to access kp_default_repository. Note: Use _json_key + for GCR' + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.7.1 diff --git a/repo/packages/kpack.packages.kadras.io/metadata.yml b/repo/packages/kpack.packages.kadras.io/metadata.yml index cfcff14..8e4b16b 100644 --- a/repo/packages/kpack.packages.kadras.io/metadata.yml +++ b/repo/packages/kpack.packages.kadras.io/metadata.yml @@ -1,20 +1,17 @@ apiVersion: data.packaging.carvel.dev/v1alpha1 kind: PackageMetadata metadata: + creationTimestamp: null name: kpack.packages.kadras.io spec: - displayName: "kpack" - longDescription: "kpack extends Kubernetes and utilizes unprivileged Kubernetes primitives to provide builds of OCI images as a platform implementation of Cloud Native Buildpacks (CNB)." - shortDescription: "kpack builds application source code into OCI compliant images using Cloud Native Buildpacks" - supportDescription: "Go to https://github.com/vmware-tanzu/package-for-kpack and https://github.com/pivotal/kpack for documentation or the #kpack channel on Kubernetes slack" - providerName: "VMware" categories: - - "build" + - build + displayName: kpack + longDescription: kpack extends Kubernetes and utilizes unprivileged Kubernetes primitives + to provide builds of OCI images as a platform implementation of Cloud Native Buildpacks + (CNB) maintainers: - - name: "Matthew McNew" - - name: "Tom Kennedy" - - name: "Tyler Phelan" - - name: "Nicholas Carlson" - - name: "Viraj Patel" - - name: "Matt Gibson" - - name: "Malini Valliath" + - name: Thomas Vitale + providerName: Arktonix + shortDescription: kpack builds application source code into OCI compliant images + using Cloud Native Buildpacks From 2383fc90435a04f78ebe6cd75c7a052dfb587e70 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 24 Oct 2022 21:50:36 +0200 Subject: [PATCH 036/601] Add kpack 0.7.1 --- .github/workflows/release.yml | 2 +- README.md | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 86efcf2..bcdf0ff 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.2.3 + VERSION: 0.2.4 jobs: build: diff --git a/README.md b/README.md index fd91f68..38c9f8a 100644 --- a/README.md +++ b/README.md @@ -19,7 +19,7 @@ This repository contains the Carvel packages part of the [Kadras](https://kadras | [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) | A source management component from the Flux GitOps Toolkit to provide a common interface for artifacts acquisition. | | [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | | [knative-serving](https://github.com/arktonix/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | -| [kpack](https://github.com/vmware-tanzu/package-for-kpack) | Kubernetes-native container build service based on Cloud Native Buildpacks. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | +| [kpack](https://github.com/arktonix/package-for-kpack) | Kubernetes-native container build service based on Cloud Native Buildpacks. | | [kpack-dependencies](https://github.com/arktonix/kpack-dependencies) | A set of buildpacks, stacks, and builders to use with kpack. | | [metrics-server](https://github.com/arktonix/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | | [namespace-setup](https://github.com/arktonix/namespace-setup) | Sets up up namespaces with the necessary RBAC and Secrets to work with the Kadras platform. | @@ -45,7 +45,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.2.3 \ + --url ghcr.io/arktonix/kadras-packages:0.2.4 \ -n carvel-packages ``` From ba6f245b15b2ed8d25a61b23aec84547ba38d671 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 25 Oct 2022 19:46:39 +0000 Subject: [PATCH 037/601] Update Tekton Pipelines metadata and add version 0.40.2 --- .../0.40.2.yml | 137 ++++++++++++++++++ 1 file changed, 137 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.40.2.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.40.2.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.40.2.yml new file mode 100644 index 0000000..e2a96ef --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.40.2.yml @@ -0,0 +1,137 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.40.2 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/tektoncd/pipeline/releases + releasedAt: "2022-10-25T19:45:30Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:002d09fe984aec80881459b8d24a74ee9f6dc10632cfc6be7828646bea4d7b82 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + defaults: + additionalProperties: false + description: Default configuration stored in the config-defaults ConfigMap. + properties: + affinity_assistant_pod_template: + default: "" + description: Pod template to use for affinity assistant pods. + type: string + cloud_events_sink: + default: "" + description: CloudEvents sink to be used for TaskRun and PipelineRun. + If no sink is specified, no CloudEvent is generated. + type: string + managed_by_label_value: + default: tekton-pipelines + description: Value given to the 'app.kubernetes.io/managed-by' label + applied to all Pods created for TaskRuns. + type: string + max_matrix_combinations_count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + pod_template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + service_account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + task_run_workspace_binding: + default: "" + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + example: 'emptyDir: {}' + type: string + x-example-description: Use emptyDir volume for workspace + timeout_minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the feature-flags ConfigMap. + properties: + await_sidecar_readiness: + default: "true" + description: Setting this flag to 'false' will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + disable_affinity_assistant: + default: "false" + description: Setting this flag to 'true' will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable_creds_init: + default: "false" + description: Setting this flag to 'true' will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable_api_fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable_custom_tasks: + default: "false" + description: Setting this flag to 'true' enables the use of custom tasks + from within pipelines. This is an experimental feature and thus should + still be considered an alpha feature. + type: string + enable_tekton_oci_bundles: + default: "false" + description: Setting this flag to 'true' enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + require_git_ssh_secret_known_hosts: + default: "false" + description: Setting this flag to 'true' will require that any Git SSH + Secret offered to Tekton must have known_hosts included. + type: string + running_in_environment_with_injected_sidecars: + default: "true" + description: This option should be set to 'false' when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send_cloudevents_for_runs: + default: "false" + description: Setting this flag to 'true' enables CloudEvents for Runs, + as long as a CloudEvents sink is configured in the config-defaults + config map. + type: string + type: object + type: object + version: 0.40.2 From 0ddfe7946c26c08cf6c7357d8d7450d10fe850d1 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 25 Oct 2022 20:42:38 +0000 Subject: [PATCH 038/601] Update Knative Serving metadata and add version 1.8.0 --- .../1.8.0.yml | 122 ++++++++++++++++++ 1 file changed, 122 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.0.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.0.yml new file mode 100644 index 0000000..4f59793 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.8.0.yml @@ -0,0 +1,122 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.8.0 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/knative/serving/releases + releasedAt: "2022-10-25T20:41:25Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-serving@sha256:58d4eef2ee7a909f277c6f2cb4ea24a63f16d865183b12b9192f19fb3a6c80a5 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + domain: + additionalProperties: false + description: DNS configuration + properties: + name: + default: "" + description: Your own domain name if type real or empty if type sslip.io + or nip.io + type: string + type: + default: nip.io + description: Type of DNS configuration + type: string + url_template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The domain template to use when creating new services + type: string + type: object + ingress: + additionalProperties: false + description: Ingress configuration + properties: + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internale Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed + type: string + type: object + type: object + namespace: + default: knative-serving + description: The namespace where to install Knative Serving + type: string + scaling: + additionalProperties: false + description: Configuration for the Knative autoscaler + properties: + allow_zero_initial_scale: + default: "true" + description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' + annotation can be set to 0 + type: string + initial_scale: + default: "1" + description: The initial target scale of a revision after creation + type: string + max_scale: + default: "0" + description: The maximum scale of a revision. If set to 0, the revision + has no maximum scale. + type: string + min_scale: + default: "0" + description: The minimum scale of a revision + type: string + scale_down_delay: + default: 0s + description: The amount of time that must pass at reduced concurrency + before a scale down decision is applied. If 0s, no delay. + type: string + type: object + tls: + additionalProperties: false + description: Configuration for automatic TLS certificates + properties: + certmanager: + additionalProperties: false + description: Configuration for integrating with cert-manager for certificate + issuing + properties: + clusterissuer: + default: "" + description: Provide a cluster issuer if you want to enable auto-TLS + type: string + type: object + type: object + type: object + version: 1.8.0 From 559391984f6bc33dc5ab9001b322fd40d13c50df Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 25 Oct 2022 20:48:16 +0000 Subject: [PATCH 039/601] Update Knative Eventing metadata and add version 1.8.0 --- .../1.8.0.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.0.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.0.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.0.yml new file mode 100644 index 0000000..8daed67 --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.8.0.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.8.0 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/knative/eventing/releases + releasedAt: "2022-10-25T20:47:08Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-eventing@sha256:08a2585fb7c6cc8d862bbaa36050f952bdeb0a5ee0501292cea1dd3148f72f8b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.8.0 From ffe0b6d4a8c5a739da33bd82c0b7a2de5f3d76a7 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 25 Oct 2022 20:54:53 +0000 Subject: [PATCH 040/601] Update FluxCD Source Controller metadata and add version 0.31.0 --- .../0.31.0.yml | 72 +++++++++++++++++++ 1 file changed, 72 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0.yml new file mode 100644 index 0000000..f6e7b7a --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0.yml @@ -0,0 +1,72 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.31.0 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/fluxcd/source-controller/releases + releasedAt: "2022-10-25T20:53:27Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:bfa861d1153cc3136fd52c3daec21d7833a80c8beb881ec5cd9030514ddb3159 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy URL + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the source-controller Service + type: integer + type: object + version: 0.31.0 From cfd2e763fc5726df519c33ad761cf808d0d68527 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 25 Oct 2022 21:05:13 +0000 Subject: [PATCH 041/601] Update Argo CD metadata and add version 2.5.0 --- .../argo-cd.packages.kadras.io/2.5.0.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.0.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.0.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.0.yml new file mode 100644 index 0000000..0f57307 --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.5.0.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.5.0 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/argoproj/argo-cd/releases + releasedAt: "2022-10-25T21:03:56Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-argo-cd@sha256:0176f9b204f1801e8790d9311e11cacbf597e572e77fad7aaa1f1bb07a91be30 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.5.0 From b9bd819ad7c793063afe5e2326615cc277f0028c Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 25 Oct 2022 21:06:51 +0000 Subject: [PATCH 042/601] Update Kpack Dependencies metadata and add version 0.2.0 --- .../0.2.0.yml | 34 +++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.2.0.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..7ddaf09 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.2.0.yml @@ -0,0 +1,34 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.2.0 +spec: + refName: kpack-dependencies.packages.kadras.io + releasedAt: "2022-10-25T21:05:46Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kpack-dependencies@sha256:6b95a9dda1e836a8b976a0be4e1e6f997731d86bea5d245fddbfd25b7b347d32 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + default: "" + description: The OCI registry where to publish builder images. The same + as configured in kpack. + type: string + type: object + version: 0.2.0 From ed29f5bf5377db4efdcd546755d3f9ea1f126322 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 25 Oct 2022 21:18:04 +0000 Subject: [PATCH 043/601] Update Kadras Application Platform metadata and add version 0.2.0 --- .../0.2.0.yml | 116 ++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.2.0.yml b/repo/packages/application-platform.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..ba6f89c --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.2.0.yml @@ -0,0 +1,116 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.2.0 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releasedAt: "2022-10-25T21:16:26Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:80fddca7e4b837a97fc44dfc82cd573facae3ff6450ae633c3a36f112faf9490 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + golden_path_web: + default: {} + description: Configuration for the Cartographer Golden Path Web package + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.2.0 From e4e957cdfebce0f03eabe966d416dea42133ea2d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 25 Oct 2022 23:20:31 +0200 Subject: [PATCH 044/601] Update documentation --- .github/workflows/release.yml | 16 ++++++++-------- README.md | 13 ++++++------- 2 files changed, 14 insertions(+), 15 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index bcdf0ff..ac695a5 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.2.4 + VERSION: 0.3.0 jobs: build: @@ -19,7 +19,7 @@ jobs: image-release: ${{ steps.image-info.outputs.release }} steps: - name: Checkout source code - uses: actions/checkout@v3.0.2 + uses: actions/checkout@v3.1.0 - name: Set up Carvel uses: vmware-tanzu/carvel-setup-action@v1.1.1 @@ -55,7 +55,7 @@ jobs: package_file=repo/package-repository.yml image_release=$(yq '.spec.fetch.imgpkgBundle.image' ${package_file}) echo "IMAGE_RELEASE=${image_release}" >> $GITHUB_ENV - echo "::set-output name=release::${image_release}" + echo "release=${image_release}" >> $GITHUB_OUTPUT - name: Add additional tags to OCI image run: | @@ -83,9 +83,9 @@ jobs: IMAGE_RELEASE: ${{ needs.build.outputs.image-release }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v2.7.0 + uses: sigstore/cosign-installer@v2.8.1 with: - cosign-release: 'v1.12.1' + cosign-release: 'v1.13.0' - name: Log into container registry uses: redhat-actions/podman-login@v1.4 @@ -110,9 +110,9 @@ jobs: PROVENANCE_FILE: provenance.att steps: - name: Install Cosign - uses: sigstore/cosign-installer@v2.7.0 + uses: sigstore/cosign-installer@v2.8.1 with: - cosign-release: 'v1.12.1' + cosign-release: 'v1.13.0' - name: Log into container registry uses: redhat-actions/podman-login@v1.4 @@ -140,7 +140,7 @@ jobs: jq '.predicate' "${PROVENANCE_FILE}" > provenance-predicate.att cosign attest --predicate provenance-predicate.att --type slsaprovenance "${IMAGE_RELEASE}" - - uses: actions/upload-artifact@v3.1.0 + - uses: actions/upload-artifact@v3.1.1 with: name: provenance.att path: ${{ env.PROVENANCE_FILE }} diff --git a/README.md b/README.md index 38c9f8a..239e6ec 100644 --- a/README.md +++ b/README.md @@ -1,10 +1,10 @@ # Kadras Packages -A collection of Kubernetes-native packages based on [Carvel](https://carvel.dev) and part of the Kadras project. +A collection of Kubernetes-native packages built with [Carvel](https://carvel.dev) and part of the Kadras project. ## Package Repository -This repository contains the Carvel packages part of the [Kadras](https://kadras.io) project. +This repository contains the following Carvel packages part of the [Kadras](https://kadras.io) project. | Package | Description | |---------|-------------| @@ -45,7 +45,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.2.4 \ + --url ghcr.io/arktonix/kadras-packages:0.3.0 \ -n carvel-packages ``` @@ -87,11 +87,10 @@ You can find more documentation about Carvel package management at [carvel.dev]( ## References -This package repository is based on and inspired by the work done by the Carvel team and the -Tanzu Community Edition project. +This package repository is inspired by the work done by the Carvel team and the +[Tanzu Community Edition](https://github.com/vmware-tanzu/community-edition) project (now retired). -* [Kubernetes native package management with Carvel](https://carvel.dev/kapp-controller/docs/latest/packaging) -* [Tanzu Community Edition, an open-source Kubernetes platform](https://tanzucommunityedition.io) +Learn more about [Kubernetes-native package management with Carvel](https://carvel.dev/kapp-controller/docs/latest/packaging). ## Supply Chain Security From 3960d0028fe6968ace72133332e8a4267aeceff6 Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 26 Oct 2022 19:46:12 +0000 Subject: [PATCH 045/601] Update Cartographer Blueprints metadata and add version 0.2.0 --- .../0.2.0.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.2.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..3784099 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.2.0.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.2.0 +spec: + refName: cartographer-blueprints.packages.kadras.io + releasedAt: "2022-10-26T19:45:11Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-blueprints@sha256:b03ad09707b3ebb5de2f3657bfc1e43e98da3e114bb7c67133509d2ea133114b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being applied. + items: + default: "" + type: string + type: array + type: object + version: 0.2.0 From 265ade4220ad6996ee9ef5a1a5eece0ac2d051c5 Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 26 Oct 2022 20:13:26 +0000 Subject: [PATCH 046/601] Update Cartographer Golden Path Web metadata and add version 0.2.0 --- .../0.2.0.yml | 128 ++++++++++++++++++ 1 file changed, 128 insertions(+) create mode 100644 repo/packages/cartographer-golden-path-web.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.2.0.yml b/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..1658162 --- /dev/null +++ b/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.2.0.yml @@ -0,0 +1,128 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-golden-path-web.packages.kadras.io.0.2.0 +spec: + refName: cartographer-golden-path-web.packages.kadras.io + releasedAt: "2022-10-26T20:12:25Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-golden-path-web@sha256:573fd896083c5e6b618d2b51946c34d2b429a84c60359614d17e8e729e17602d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cluster_builder: + default: default + description: The ClusterBuilder used by kpack + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + gitops: + additionalProperties: false + description: Configuration for the GitOps steps in the supply chain + properties: + access_secret: + default: git-secret + description: The Secret containing credentials to access the specified + Git repository + type: string + branch: + default: main + description: The branch to use for GitOps activities + type: string + commit_message: + default: Update from Cartographer + description: The commit message to use when pushing configuration changes + to Git + type: string + commit_strategy: + default: direct + description: Whether to commit configuration changes to Git directly + or via a pull request + type: string + pull_request: + additionalProperties: false + properties: + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated + type: string + pull_request_body: + default: "" + description: The body of the pull request + type: string + pull_request_title: + default: "" + description: The title of the pull request + type: string + server_kind: + default: "" + description: The type of Git server where to open the pull request + example: github + type: string + x-example-description: Open a pull request on GitHub + type: object + repository_name: + default: "" + description: The name of the Git repository to use for GitOps + type: string + repository_owner: + default: "" + description: The owner of the specified Git repository + type: string + server_address: + default: "" + description: The server hosting the specified Git repository + type: string + user_email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository + type: string + user_name: + default: cartographer + description: The name of the user interacting with the Git repository + type: string + type: object + registry: + additionalProperties: false + description: Configuration for the OCI Registry where to store the application + images + properties: + repository: + default: "" + description: The repository under an OCI Registry where to store the + application images + type: string + server: + default: "" + description: The server of the OCI Registry where to store the application + images + type: string + type: object + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + supply_chain: + default: basic + description: The type of supply chain to use for this golden path + type: string + type: object + version: 0.2.0 From f1c387035ec5dfd321336bffacb6166c17615e1e Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 26 Oct 2022 20:21:43 +0000 Subject: [PATCH 047/601] Update Kadras Application Platform metadata and add version 0.2.1 --- .../0.2.1.yml | 116 ++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.2.1.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.2.1.yml b/repo/packages/application-platform.packages.kadras.io/0.2.1.yml new file mode 100644 index 0000000..2a31e19 --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.2.1.yml @@ -0,0 +1,116 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.2.1 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releasedAt: "2022-10-26T20:20:32Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:3c97263db70f0b9345e5d14729a3fcbbc2aa4e206b0a302c9dcd2d00c13b6d85 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + golden_path_web: + default: {} + description: Configuration for the Cartographer Golden Path Web package + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.2.1 From ba05f9f81dea99686a5e82d1ea26ec8368568dd2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 26 Oct 2022 22:31:56 +0200 Subject: [PATCH 048/601] Update Cartographer supply chains --- .github/workflows/release.yml | 2 +- README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index ac695a5..75fd1ce 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.3.0 + VERSION: 0.3.1 jobs: build: diff --git a/README.md b/README.md index 239e6ec..a74e37b 100644 --- a/README.md +++ b/README.md @@ -45,7 +45,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.3.0 \ + --url ghcr.io/arktonix/kadras-packages:0.3.1 \ -n carvel-packages ``` From 935a61e330a0b892cf6884ba3f73ecc7751d1b78 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 30 Oct 2022 19:15:49 +0000 Subject: [PATCH 049/601] Update kpack metadata and add version 0.7.2 --- .../kpack.packages.kadras.io/0.7.2.yml | 95 +++++++++++++++++++ 1 file changed, 95 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.7.2.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.7.2.yml b/repo/packages/kpack.packages.kadras.io/0.7.2.yml new file mode 100644 index 0000000..ced0179 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.7.2.yml @@ -0,0 +1,95 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.7.2 +spec: + capacityRequirementsDescription: Registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/pivotal/kpack/releases + releasedAt: "2022-10-30T19:14:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-kpack@sha256:e3f5138646859b197af3d92bafce1a590c688ee95c7da3bab56ce61edcadc07a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'CA Certificate to be injected into the kpack controller trust + store for communicating with self signed registries. Note: This will not + be injected into builds, you need to use the cert injection webhook with + the kpack.io/build label value' + type: string + kp_default_repository: + default: "" + description: The default repository to use for builder images and dependencies + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + kp_default_repository_aws_iam_role_arn: + default: "" + description: IAM credentials to access kp_default_repository if the registry + is on AWS + type: string + kp_default_repository_password: + default: "" + description: 'Token to access kp_default_repository. Note: Use contents + of service account key json for GCR' + type: string + kp_default_repository_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to access + kp_default_repository + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + kp_default_repository + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials to + access kp_default_repository + type: string + type: object + kp_default_repository_username: + default: "" + description: 'Username to access kp_default_repository. Note: Use _json_key + for GCR' + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.7.2 From d5c5c8c9c77157a6c02e8a00e9d69cdc37ce89b1 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 1 Nov 2022 17:16:54 +0000 Subject: [PATCH 050/601] Update Kpack Dependencies metadata and add version 0.3.0 --- .../0.3.0.yml | 34 +++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.0.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.0.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.0.yml new file mode 100644 index 0000000..2bea3f7 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.0.yml @@ -0,0 +1,34 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.3.0 +spec: + refName: kpack-dependencies.packages.kadras.io + releasedAt: "2022-11-01T17:15:52Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kpack-dependencies@sha256:fba211984814aabdeee418506a0909abea1d8064f04c5d1b7cc462eb3db4afc6 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + default: "" + description: The OCI registry where to publish builder images. The same + as configured in kpack. + type: string + type: object + version: 0.3.0 From 677c64a7dc9244425b9e1858057504877c532e85 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 1 Nov 2022 17:54:38 +0000 Subject: [PATCH 051/601] Update Namespace Setup metadata and add version 0.1.1 --- .../0.1.1.yml | 83 +++++++++++++++++++ 1 file changed, 83 insertions(+) create mode 100644 repo/packages/namespace-setup.packages.kadras.io/0.1.1.yml diff --git a/repo/packages/namespace-setup.packages.kadras.io/0.1.1.yml b/repo/packages/namespace-setup.packages.kadras.io/0.1.1.yml new file mode 100644 index 0000000..214ea9f --- /dev/null +++ b/repo/packages/namespace-setup.packages.kadras.io/0.1.1.yml @@ -0,0 +1,83 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: namespace-setup.packages.kadras.io.0.1.1 +spec: + refName: namespace-setup.packages.kadras.io + releasedAt: "2022-11-01T17:53:33Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/namespace-setup@sha256:8a95e7f23fa9698013c1f1a472230787d0ac6d1e9384091dd50a5c0b3760d77f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + gitops: + additionalProperties: false + description: Configuration to access the Git repositories used in the GitOps + workflows + properties: + password: + default: "" + description: The password for the Git server used in the GitOps workflows + type: string + server: + default: https://github.com + description: The Git server hosting the Git repositories used in the + GitOps workflows + type: string + username: + default: "" + description: The username for the Git server used in the GitOps workflows + type: string + type: object + namespaces: + default: [] + description: Configuration for developer namespaces + items: + additionalProperties: false + description: Details about the namespace to configure + properties: + exists: + default: false + type: boolean + name: + default: "" + type: string + type: object + type: array + registry: + additionalProperties: false + description: Configuration to access the OCI registry where the Kadras packages + are stored + properties: + password: + default: "" + description: The password for the OCI registry server where the Kadras + packages are stored + type: string + server: + default: "" + description: The OCI registry server where the Kadras packages are stored + type: string + username: + default: "" + description: The username for the OCI registry server where the Kadras + packages are stored + type: string + type: object + type: object + version: 0.1.1 From 2ae595cea235f0f7c851ca5e806de510acffb792 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 1 Nov 2022 18:07:50 +0000 Subject: [PATCH 052/601] Update Application Platform metadata and add version 0.2.2 --- .../0.2.2.yml | 116 ++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.2.2.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.2.2.yml b/repo/packages/application-platform.packages.kadras.io/0.2.2.yml new file mode 100644 index 0000000..2500213 --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.2.2.yml @@ -0,0 +1,116 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.2.2 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releasedAt: "2022-11-01T18:06:41Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:5a85a74b97749674333798ff79834e8ba38babb291b3a0d3a0f194724fa9a2ff + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + golden_path_web: + default: {} + description: Configuration for the Cartographer Golden Path Web package + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.2.2 From 648d8b163906d8f0411157d1aa251e8df8924457 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 1 Nov 2022 19:11:26 +0100 Subject: [PATCH 053/601] Bump version to 0.3.2 --- .github/workflows/release.yml | 6 +----- README.md | 2 +- 2 files changed, 2 insertions(+), 6 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 75fd1ce..4139891 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.3.1 + VERSION: 0.3.2 jobs: build: @@ -84,8 +84,6 @@ jobs: steps: - name: Install Cosign uses: sigstore/cosign-installer@v2.8.1 - with: - cosign-release: 'v1.13.0' - name: Log into container registry uses: redhat-actions/podman-login@v1.4 @@ -111,8 +109,6 @@ jobs: steps: - name: Install Cosign uses: sigstore/cosign-installer@v2.8.1 - with: - cosign-release: 'v1.13.0' - name: Log into container registry uses: redhat-actions/podman-login@v1.4 diff --git a/README.md b/README.md index a74e37b..ab2b54b 100644 --- a/README.md +++ b/README.md @@ -45,7 +45,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.3.1 \ + --url ghcr.io/arktonix/kadras-packages:0.3.2 \ -n carvel-packages ``` From 72f421ac07c859a7934e1224d641232999b3417d Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 6 Nov 2022 13:14:45 +0000 Subject: [PATCH 054/601] Update Argo CD metadata and add version 2.5.1 --- .../argo-cd.packages.kadras.io/2.5.1.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.1.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.1.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.1.yml new file mode 100644 index 0000000..bf87bef --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.5.1.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.5.1 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/argoproj/argo-cd/releases + releasedAt: "2022-11-06T13:12:28Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-argo-cd@sha256:f0880ad6fdfaf80a49f331abefff202b3f57940a9c8e69037df3f54cc8d0fcc1 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.5.1 From 3885aede1765bee741af6458dad5b350b19116c5 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 6 Nov 2022 13:30:54 +0000 Subject: [PATCH 055/601] Update Tekton Pipelines metadata and add version 0.41.0 --- .../0.41.0.yml | 137 ++++++++++++++++++ 1 file changed, 137 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.41.0.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.41.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.41.0.yml new file mode 100644 index 0000000..8647589 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.41.0.yml @@ -0,0 +1,137 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.41.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/tektoncd/pipeline/releases + releasedAt: "2022-11-06T13:29:50Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:c4ae69b7d9cf261d09846d6e39fa53b7ef68890df1333339c921a1f5f10fe321 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + defaults: + additionalProperties: false + description: Default configuration stored in the config-defaults ConfigMap. + properties: + affinity_assistant_pod_template: + default: "" + description: Pod template to use for affinity assistant pods. + type: string + cloud_events_sink: + default: "" + description: CloudEvents sink to be used for TaskRun and PipelineRun. + If no sink is specified, no CloudEvent is generated. + type: string + managed_by_label_value: + default: tekton-pipelines + description: Value given to the 'app.kubernetes.io/managed-by' label + applied to all Pods created for TaskRuns. + type: string + max_matrix_combinations_count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + pod_template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + service_account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + task_run_workspace_binding: + default: "" + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + example: 'emptyDir: {}' + type: string + x-example-description: Use emptyDir volume for workspace + timeout_minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the feature-flags ConfigMap. + properties: + await_sidecar_readiness: + default: "true" + description: Setting this flag to 'false' will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + disable_affinity_assistant: + default: "false" + description: Setting this flag to 'true' will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable_creds_init: + default: "false" + description: Setting this flag to 'true' will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable_api_fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable_custom_tasks: + default: "false" + description: Setting this flag to 'true' enables the use of custom tasks + from within pipelines. This is an experimental feature and thus should + still be considered an alpha feature. + type: string + enable_tekton_oci_bundles: + default: "false" + description: Setting this flag to 'true' enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + require_git_ssh_secret_known_hosts: + default: "false" + description: Setting this flag to 'true' will require that any Git SSH + Secret offered to Tekton must have known_hosts included. + type: string + running_in_environment_with_injected_sidecars: + default: "true" + description: This option should be set to 'false' when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send_cloudevents_for_runs: + default: "false" + description: Setting this flag to 'true' enables CloudEvents for Runs, + as long as a CloudEvents sink is configured in the config-defaults + config map. + type: string + type: object + type: object + version: 0.41.0 From 2e38048adba817ff28cc870bc204c70b8ab04e7e Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 13 Nov 2022 11:19:59 +0000 Subject: [PATCH 056/601] Update Argo CD metadata and add version 2.5.2 --- .../argo-cd.packages.kadras.io/2.5.2.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.2.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.2.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.2.yml new file mode 100644 index 0000000..2cdaa88 --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.5.2.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.5.2 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/argoproj/argo-cd/releases + releasedAt: "2022-11-13T11:18:56Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-argo-cd@sha256:215f490bfb3f17f55f995ce8cda135f4be45f6c84e4a17a8fc5369549830403b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.5.2 From 111f8227ca3e91a0640dac2f9bea19970f1b6878 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 13 Nov 2022 14:25:22 +0000 Subject: [PATCH 057/601] Update Cert Manager metadata and add version 1.10.0-kadras.1 --- .../1.10.0-kadras.1.yml | 40 +++++++++++++++++++ 1 file changed, 40 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.0-kadras.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.0-kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.0-kadras.1.yml new file mode 100644 index 0000000..250860c --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.10.0-kadras.1.yml @@ -0,0 +1,40 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.10.0-kadras.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2022-11-13T14:24:26Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-cert-manager@sha256:074da91e68a85ad579cbd06c279bad63257368301ce3759c650c243c1b5aa85c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager + type: string + type: object + version: 1.10.0-kadras.1 From a800b4cbcca2ccef790e62e05e91b79a194d102c Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 13 Nov 2022 15:20:19 +0000 Subject: [PATCH 058/601] Update Contour metadata and add version 1.23.0-kadras.1 --- .../1.23.0-kadras.1.yml | 206 ++++++++++++++++++ 1 file changed, 206 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.23.0-kadras.1.yml diff --git a/repo/packages/contour.packages.kadras.io/1.23.0-kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.23.0-kadras.1.yml new file mode 100644 index 0000000..360c3b2 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.23.0-kadras.1.yml @@ -0,0 +1,206 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.23.0-kadras.1 +spec: + capacityRequirementsDescription: Varies significantly based on number of Services, + Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each + Contour and Envoy pod, but this can and should be tuned based on observed usage. + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/projectcontour/contour/releases + releasedAt: "2022-11-13T15:19:13Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-contour@sha256:630042e1bc237671ff2821f1487bbe85a6564602b18481d49561e0c2990a0ca4 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + description: OpenAPIv3 Schema + properties: + certificates: + additionalProperties: false + description: Settings for the TLS certificates for securing communication + between Contour and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If useCertManager is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If useCertManager is false, this field is ignored. + type: string + useCertManager: + default: false + description: Whether to use cert-manager to provision TLS certificates + for securing communication between Contour and Envoy. If false, the + upstream Contour certgen job will be used to provision certificates. + If true, the cert-manager addon must be installed in the cluster. + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + configFileContents: + default: null + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + logLevel: + default: info + description: The Contour log level. Valid options are 'info' and 'debug'. + type: string + replicas: + default: 2 + description: How many Contour pod replicas to have. + type: integer + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enable: + default: false + description: Whether to enable host ports. If false, http & https + are ignored. + type: boolean + http: + default: 80 + description: If enable == true, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enable == true, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + logLevel: + default: info + description: The Envoy log level. + type: string + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If infrastructure + provider is not 'aws', these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: "" + description: The external traffic policy for the Envoy service. + If type is 'ClusterIP', this field is ignored. Otherwise, defaults + to 'Cluster' for vsphere and 'Local' for others. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If type is not 'LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not 'NodePort' or 'LoadBalancer', these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: "" + description: The type of Kubernetes service to provision for Envoy. + If not specified, will default to 'NodePort' for docker and vsphere + and 'LoadBalancer' for others. + type: string + type: object + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + replicas: + default: 2 + description: The number of Envoy replicas to deploy when 'type' + is set to 'Deployment'. If not specified, it will default to '2'. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload Envoy is deployed as. + Options are 'Deployment' or 'DaemonSet'. If not specified, will + default to 'DaemonSet'. + type: string + type: object + type: object + infrastructureProvider: + default: "" + description: The underlying infrastructure provider. Options are aws, azure, + docker and vsphere. This field is not required, but enables better validation + and defaulting if provided. + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.23.0-kadras.1 From cc4f33fa90305bff4104f710ec1192ad7a59de21 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 13 Nov 2022 19:59:11 +0000 Subject: [PATCH 059/601] Update Cert Manager metadata and add version 1.10.0+kadras.2 --- .../1.10.0+kadras.2.yml | 40 +++++++++++++++++++ 1 file changed, 40 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.0+kadras.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.0+kadras.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.0+kadras.2.yml new file mode 100644 index 0000000..41f9152 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.10.0+kadras.2.yml @@ -0,0 +1,40 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.10.0+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2022-11-13T19:58:08Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-cert-manager@sha256:074da91e68a85ad579cbd06c279bad63257368301ce3759c650c243c1b5aa85c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager + type: string + type: object + version: 1.10.0+kadras.2 From b266ad4efc98bc3af8b1a71c962f7c180f318629 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 13 Nov 2022 20:15:23 +0000 Subject: [PATCH 060/601] Update Contour metadata and add version 1.23.0+kadras.2 --- .../1.23.0+kadras.2.yml | 206 ++++++++++++++++++ 1 file changed, 206 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.23.0+kadras.2.yml diff --git a/repo/packages/contour.packages.kadras.io/1.23.0+kadras.2.yml b/repo/packages/contour.packages.kadras.io/1.23.0+kadras.2.yml new file mode 100644 index 0000000..a3a1d1e --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.23.0+kadras.2.yml @@ -0,0 +1,206 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.23.0+kadras.2 +spec: + capacityRequirementsDescription: Varies significantly based on number of Services, + Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each + Contour and Envoy pod, but this can and should be tuned based on observed usage. + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/projectcontour/contour/releases + releasedAt: "2022-11-13T20:14:23Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-contour@sha256:630042e1bc237671ff2821f1487bbe85a6564602b18481d49561e0c2990a0ca4 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + description: OpenAPIv3 Schema + properties: + certificates: + additionalProperties: false + description: Settings for the TLS certificates for securing communication + between Contour and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If useCertManager is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If useCertManager is false, this field is ignored. + type: string + useCertManager: + default: false + description: Whether to use cert-manager to provision TLS certificates + for securing communication between Contour and Envoy. If false, the + upstream Contour certgen job will be used to provision certificates. + If true, the cert-manager addon must be installed in the cluster. + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + configFileContents: + default: null + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + logLevel: + default: info + description: The Contour log level. Valid options are 'info' and 'debug'. + type: string + replicas: + default: 2 + description: How many Contour pod replicas to have. + type: integer + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enable: + default: false + description: Whether to enable host ports. If false, http & https + are ignored. + type: boolean + http: + default: 80 + description: If enable == true, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enable == true, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + logLevel: + default: info + description: The Envoy log level. + type: string + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If infrastructure + provider is not 'aws', these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: "" + description: The external traffic policy for the Envoy service. + If type is 'ClusterIP', this field is ignored. Otherwise, defaults + to 'Cluster' for vsphere and 'Local' for others. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If type is not 'LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not 'NodePort' or 'LoadBalancer', these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: "" + description: The type of Kubernetes service to provision for Envoy. + If not specified, will default to 'NodePort' for docker and vsphere + and 'LoadBalancer' for others. + type: string + type: object + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + replicas: + default: 2 + description: The number of Envoy replicas to deploy when 'type' + is set to 'Deployment'. If not specified, it will default to '2'. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload Envoy is deployed as. + Options are 'Deployment' or 'DaemonSet'. If not specified, will + default to 'DaemonSet'. + type: string + type: object + type: object + infrastructureProvider: + default: "" + description: The underlying infrastructure provider. Options are aws, azure, + docker and vsphere. This field is not required, but enables better validation + and defaulting if provided. + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.23.0+kadras.2 From 49ddb34506486da09831d4c27ad87868da5acf89 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 13 Nov 2022 21:26:49 +0100 Subject: [PATCH 061/601] Remove unsupported package versions --- .../0.1.0.yml | 133 ----------- .../0.1.1.yml | 28 --- .../0.2.0.yml | 116 ---------- .../0.2.1.yml | 116 ---------- .../argo-cd.packages.kadras.io/2.5.0.yml | 45 ---- .../argo-cd.packages.kadras.io/2.5.1.yml | 45 ---- .../0.1.0.yml | 36 --- .../0.1.1.yml | 36 --- .../0.1.2.yml | 36 --- .../0.1.0.yml | 128 ----------- .../1.10.0-kadras.1.yml | 40 ---- .../1.23.0-kadras.1.yml | 206 ------------------ .../0.2.0.yml | 34 --- .../kpack.packages.kadras.io/0.7.1.yml | 93 -------- .../0.40.0.yml | 137 ------------ 15 files changed, 1229 deletions(-) delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.1.1.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.2.0.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.2.1.yml delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.0.yml delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.1.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.1.1.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.1.2.yml delete mode 100644 repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.0-kadras.1.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.23.0-kadras.1.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.2.0.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.7.1.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.40.0.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.1.0.yml b/repo/packages/application-platform.packages.kadras.io/0.1.0.yml deleted file mode 100644 index 9a93468..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,133 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.1.0 -spec: - refName: application-platform.packages.kadras.io - releasedAt: "2022-10-04T13:07:10Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:88eaece5b5c4e9ed68d008397aff30050e1fb642cf83a25ca4b0ced8c9d559b3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - additionalProperties: false - description: Configuration for the Cartographer Blueprints package - properties: {} - type: object - delivery: - additionalProperties: false - description: Configuration for the Cartographer Delivery package - properties: {} - type: object - golden_path_web: - additionalProperties: false - description: Configuration for the Cartographer Golden Path Web package - properties: {} - type: object - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager package - properties: - namespace: - default: cert-manager - description: The namespace where to install of the Cert Manager package - type: string - type: object - contour: - additionalProperties: false - description: Configuration for the Contour package - properties: {} - type: object - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - additionalProperties: false - description: Configuration for the Spring Boot Conventions package - properties: {} - type: object - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - additionalProperties: false - description: Configuration for the Knative Serving package - properties: {} - type: object - type: object - kpack: - additionalProperties: false - description: Configuration for the Kpack package - properties: - kp_default_repository: - default: "" - description: The OCI registry where to publish builder images. - type: string - type: object - metrics_server: - additionalProperties: false - description: Configuration for the Metrics Server package - properties: {} - type: object - namespace_setup: - additionalProperties: false - description: Configuration for the Namespace Setup package - properties: {} - type: object - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - additionalProperties: false - description: Configuration for the Secretgen Controller package - properties: {} - type: object - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - additionalProperties: false - description: Configuration for the Tekton Pipelines package - properties: {} - type: object - type: object - type: object - version: 0.1.0 diff --git a/repo/packages/application-platform.packages.kadras.io/0.1.1.yml b/repo/packages/application-platform.packages.kadras.io/0.1.1.yml deleted file mode 100644 index af16e4b..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.1.1.yml +++ /dev/null @@ -1,28 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.1.1 -spec: - refName: application-platform.packages.kadras.io - releasedAt: "2022-10-04T13:17:59Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:76bfafcaa8dc685e4aa93533d291833c95d3091eaeb9bf1501e27527e61ad1b8 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.1.1 diff --git a/repo/packages/application-platform.packages.kadras.io/0.2.0.yml b/repo/packages/application-platform.packages.kadras.io/0.2.0.yml deleted file mode 100644 index ba6f89c..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,116 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.2.0 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releasedAt: "2022-10-25T21:16:26Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:80fddca7e4b837a97fc44dfc82cd573facae3ff6450ae633c3a36f112faf9490 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - golden_path_web: - default: {} - description: Configuration for the Cartographer Golden Path Web package - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.2.0 diff --git a/repo/packages/application-platform.packages.kadras.io/0.2.1.yml b/repo/packages/application-platform.packages.kadras.io/0.2.1.yml deleted file mode 100644 index 2a31e19..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.2.1.yml +++ /dev/null @@ -1,116 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.2.1 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releasedAt: "2022-10-26T20:20:32Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:3c97263db70f0b9345e5d14729a3fcbbc2aa4e206b0a302c9dcd2d00c13b6d85 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - golden_path_web: - default: {} - description: Configuration for the Cartographer Golden Path Web package - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.2.1 diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.0.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.0.yml deleted file mode 100644 index 0f57307..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.5.0.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.5.0 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/argoproj/argo-cd/releases - releasedAt: "2022-10-25T21:03:56Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-argo-cd@sha256:0176f9b204f1801e8790d9311e11cacbf597e572e77fad7aaa1f1bb07a91be30 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.5.0 diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.1.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.1.yml deleted file mode 100644 index bf87bef..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.5.1.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.5.1 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/argoproj/argo-cd/releases - releasedAt: "2022-11-06T13:12:28Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-argo-cd@sha256:f0880ad6fdfaf80a49f331abefff202b3f57940a9c8e69037df3f54cc8d0fcc1 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.5.1 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.0.yml deleted file mode 100644 index 258308c..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.1.0 -spec: - refName: cartographer-blueprints.packages.kadras.io - releasedAt: "2022-09-29T21:56:00Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-blueprints@sha256:388156fc3c4cff7dd6e3b72643c366377b9303d1421c5498b0aaaeed5902607a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being applied. - items: - default: "" - type: string - type: array - type: object - version: 0.1.0 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.1.yml deleted file mode 100644 index 5661301..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.1.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.1.1 -spec: - refName: cartographer-blueprints.packages.kadras.io - releasedAt: "2022-10-04T09:00:23Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-blueprints@sha256:02e93af08580308e0697b9716d2f6aa83925a55300b717b079dcf16090998a16 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being applied. - items: - default: "" - type: string - type: array - type: object - version: 0.1.1 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.2.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.2.yml deleted file mode 100644 index 6c3e129..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.2.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.1.2 -spec: - refName: cartographer-blueprints.packages.kadras.io - releasedAt: "2022-10-04T09:54:25Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-blueprints@sha256:2fcbe662755bcee390a7dca89752ab130a40cc3b6eb36adcd3d84078c9049abf - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being applied. - items: - default: "" - type: string - type: array - type: object - version: 0.1.2 diff --git a/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.0.yml b/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.0.yml deleted file mode 100644 index 6493a59..0000000 --- a/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,128 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-golden-path-web.packages.kadras.io.0.1.0 -spec: - refName: cartographer-golden-path-web.packages.kadras.io - releasedAt: "2022-10-03T12:35:56Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/artographer-golden-path-web@sha256:21270578f2c96717aed21091372ef3c65966d2bd3798a769222578088b31ad99 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cluster_builder: - default: default - description: The ClusterBuilder used by kpack - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - gitops: - additionalProperties: false - description: Configuration for the GitOps steps in the supply chain - properties: - access_secret: - default: git-secret - description: The Secret containing credentials to access the specified - Git repository - type: string - branch: - default: main - description: The branch to use for GitOps activities - type: string - commit_message: - default: Update from Cartographer - description: The commit message to use when pushing configuration changes - to Git - type: string - commit_strategy: - default: direct - description: Whether to commit configuration changes to Git directly - or via a pull request - type: string - pull_request: - additionalProperties: false - properties: - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated - type: string - pull_request_body: - default: "" - description: The body of the pull request - type: string - pull_request_title: - default: "" - description: The title of the pull request - type: string - server_kind: - default: "" - description: The type of Git server where to open the pull request - example: github - type: string - x-example-description: Open a pull request on GitHub - type: object - repository_name: - default: "" - description: The name of the Git repository to use for GitOps - type: string - repository_owner: - default: "" - description: The owner of the specified Git repository - type: string - server_address: - default: "" - description: The server hosting the specified Git repository - type: string - user_email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository - type: string - user_name: - default: cartographer - description: The name of the user interacting with the Git repository - type: string - type: object - registry: - additionalProperties: false - description: Configuration for the OCI Registry where to store the application - images - properties: - repository: - default: "" - description: The repository under an OCI Registry where to store the - application images - type: string - server: - default: "" - description: The server of the OCI Registry where to store the application - images - type: string - type: object - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - supply_chain: - default: basic - description: The type of supply chain to use for this golden path - type: string - type: object - version: 0.1.0 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.0-kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.0-kadras.1.yml deleted file mode 100644 index 250860c..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.10.0-kadras.1.yml +++ /dev/null @@ -1,40 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.10.0-kadras.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2022-11-13T14:24:26Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-cert-manager@sha256:074da91e68a85ad579cbd06c279bad63257368301ce3759c650c243c1b5aa85c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager - type: string - type: object - version: 1.10.0-kadras.1 diff --git a/repo/packages/contour.packages.kadras.io/1.23.0-kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.23.0-kadras.1.yml deleted file mode 100644 index 360c3b2..0000000 --- a/repo/packages/contour.packages.kadras.io/1.23.0-kadras.1.yml +++ /dev/null @@ -1,206 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.23.0-kadras.1 -spec: - capacityRequirementsDescription: Varies significantly based on number of Services, - Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each - Contour and Envoy pod, but this can and should be tuned based on observed usage. - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/projectcontour/contour/releases - releasedAt: "2022-11-13T15:19:13Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-contour@sha256:630042e1bc237671ff2821f1487bbe85a6564602b18481d49561e0c2990a0ca4 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - description: OpenAPIv3 Schema - properties: - certificates: - additionalProperties: false - description: Settings for the TLS certificates for securing communication - between Contour and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If useCertManager is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If useCertManager is false, this field is ignored. - type: string - useCertManager: - default: false - description: Whether to use cert-manager to provision TLS certificates - for securing communication between Contour and Envoy. If false, the - upstream Contour certgen job will be used to provision certificates. - If true, the cert-manager addon must be installed in the cluster. - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - configFileContents: - default: null - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - logLevel: - default: info - description: The Contour log level. Valid options are 'info' and 'debug'. - type: string - replicas: - default: 2 - description: How many Contour pod replicas to have. - type: integer - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enable: - default: false - description: Whether to enable host ports. If false, http & https - are ignored. - type: boolean - http: - default: 80 - description: If enable == true, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enable == true, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - logLevel: - default: info - description: The Envoy log level. - type: string - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If infrastructure - provider is not 'aws', these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: "" - description: The external traffic policy for the Envoy service. - If type is 'ClusterIP', this field is ignored. Otherwise, defaults - to 'Cluster' for vsphere and 'Local' for others. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If type is not 'LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not 'NodePort' or 'LoadBalancer', these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: "" - description: The type of Kubernetes service to provision for Envoy. - If not specified, will default to 'NodePort' for docker and vsphere - and 'LoadBalancer' for others. - type: string - type: object - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - replicas: - default: 2 - description: The number of Envoy replicas to deploy when 'type' - is set to 'Deployment'. If not specified, it will default to '2'. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload Envoy is deployed as. - Options are 'Deployment' or 'DaemonSet'. If not specified, will - default to 'DaemonSet'. - type: string - type: object - type: object - infrastructureProvider: - default: "" - description: The underlying infrastructure provider. Options are aws, azure, - docker and vsphere. This field is not required, but enables better validation - and defaulting if provided. - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.23.0-kadras.1 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.2.0.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.2.0.yml deleted file mode 100644 index 7ddaf09..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,34 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.2.0 -spec: - refName: kpack-dependencies.packages.kadras.io - releasedAt: "2022-10-25T21:05:46Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kpack-dependencies@sha256:6b95a9dda1e836a8b976a0be4e1e6f997731d86bea5d245fddbfd25b7b347d32 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - default: "" - description: The OCI registry where to publish builder images. The same - as configured in kpack. - type: string - type: object - version: 0.2.0 diff --git a/repo/packages/kpack.packages.kadras.io/0.7.1.yml b/repo/packages/kpack.packages.kadras.io/0.7.1.yml deleted file mode 100644 index 5cae272..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.7.1.yml +++ /dev/null @@ -1,93 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.7.1 -spec: - capacityRequirementsDescription: Registry with > 1GB available space - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/pivotal/kpack/releases - releasedAt: "2022-10-24T19:33:24Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-kpack@sha256:c4403002c15d82c8f78f4d1d9bf3e4b86a8a3f248876f5ea6fb12481225486e2 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'CA Certificate to be injected into the kpack controller trust - store for communicating with self signed registries. Note: This will not - be injected into builds, you need to use the cert injection webhook with - the kpack.io/build label value' - type: string - kp_default_repository: - default: "" - description: The default repository to use for builder images and dependencies - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - kp_default_repository_aws_iam_role_arn: - default: "" - description: IAM credentials to access kp_default_repository if the registry - is on AWS - type: string - kp_default_repository_password: - default: "" - description: 'Token to access kp_default_repository. Note: Use contents - of service account key json for GCR' - type: string - kp_default_repository_secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to access - kp_default_repository - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - kp_default_repository - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials to - access kp_default_repository - type: string - type: object - kp_default_repository_username: - default: "" - description: 'Username to access kp_default_repository. Note: Use _json_key - for GCR' - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - type: object - version: 0.7.1 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.40.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.40.0.yml deleted file mode 100644 index cd5b2ae..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.40.0.yml +++ /dev/null @@ -1,137 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.40.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/tektoncd/pipeline/releases - releasedAt: "2022-09-25T13:06:05Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:22f5bced42f931e3c2a17363a6601aa51aa07b03f4c7d883e6c0267fbffa6a23 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - defaults: - additionalProperties: false - description: Default configuration stored in the config-defaults ConfigMap. - properties: - affinity_assistant_pod_template: - default: "" - description: Pod template to use for affinity assistant pods. - type: string - cloud_events_sink: - default: "" - description: CloudEvents sink to be used for TaskRun and PipelineRun. - If no sink is specified, no CloudEvent is generated. - type: string - managed_by_label_value: - default: tekton-pipelines - description: Value given to the 'app.kubernetes.io/managed-by' label - applied to all Pods created for TaskRuns. - type: string - max_matrix_combinations_count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - pod_template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - service_account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - task_run_workspace_binding: - default: "" - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - example: 'emptyDir: {}' - type: string - x-example-description: Use emptyDir volume for workspace - timeout_minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the feature-flags ConfigMap. - properties: - await_sidecar_readiness: - default: "true" - description: Setting this flag to 'false' will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - disable_affinity_assistant: - default: "false" - description: Setting this flag to 'true' will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable_creds_init: - default: "false" - description: Setting this flag to 'true' will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable_api_fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable_custom_tasks: - default: "false" - description: Setting this flag to 'true' enables the use of custom tasks - from within pipelines. This is an experimental feature and thus should - still be considered an alpha feature. - type: string - enable_tekton_oci_bundles: - default: "false" - description: Setting this flag to 'true' enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - require_git_ssh_secret_known_hosts: - default: "false" - description: Setting this flag to 'true' will require that any Git SSH - Secret offered to Tekton must have known_hosts included. - type: string - running_in_environment_with_injected_sidecars: - default: "true" - description: This option should be set to 'false' when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send_cloudevents_for_runs: - default: "false" - description: Setting this flag to 'true' enables CloudEvents for Runs, - as long as a CloudEvents sink is configured in the config-defaults - config map. - type: string - type: object - type: object - version: 0.40.0 From e08f3a8b3b8ee0bc66d69b163749cf317c2522f7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 13 Nov 2022 21:30:25 +0100 Subject: [PATCH 062/601] Update Carvel action in release workflow --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4139891..6a0f948 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -22,7 +22,7 @@ jobs: uses: actions/checkout@v3.1.0 - name: Set up Carvel - uses: vmware-tanzu/carvel-setup-action@v1.1.1 + uses: vmware-tanzu/carvel-setup-action@v1.2.0 with: token: ${{ secrets.GITHUB_TOKEN }} From 572546e290dd7ca76185cc929ecbf1b5527f5511 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 13 Nov 2022 21:39:05 +0100 Subject: [PATCH 063/601] Bump to 0.4.0 --- .github/workflows/release.yml | 2 +- README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6a0f948..4a6131b 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.3.2 + VERSION: 0.4.0 jobs: build: diff --git a/README.md b/README.md index ab2b54b..77289d2 100644 --- a/README.md +++ b/README.md @@ -45,7 +45,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace carvel-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.3.2 \ + --url ghcr.io/arktonix/kadras-packages:0.4.0 \ -n carvel-packages ``` From 3240aec891945abf9681a7659b615a7f8f21e1de Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 13 Nov 2022 21:10:27 +0000 Subject: [PATCH 064/601] Update Contour metadata and add version 1.23.0+kadras.3 --- .../1.23.0+kadras.3.yml | 206 ++++++++++++++++++ 1 file changed, 206 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.23.0+kadras.3.yml diff --git a/repo/packages/contour.packages.kadras.io/1.23.0+kadras.3.yml b/repo/packages/contour.packages.kadras.io/1.23.0+kadras.3.yml new file mode 100644 index 0000000..b731b17 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.23.0+kadras.3.yml @@ -0,0 +1,206 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.23.0+kadras.3 +spec: + capacityRequirementsDescription: Varies significantly based on number of Services, + Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each + Contour and Envoy pod, but this can and should be tuned based on observed usage. + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/projectcontour/contour/releases + releasedAt: "2022-11-13T21:09:17Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-contour@sha256:11386b167df2e945b07effe506169e073b0678251586f2902420a58ff8ea6eee + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + description: OpenAPIv3 Schema + properties: + certificates: + additionalProperties: false + description: Settings for the TLS certificates for securing communication + between Contour and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If useCertManager is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If useCertManager is false, this field is ignored. + type: string + useCertManager: + default: false + description: Whether to use cert-manager to provision TLS certificates + for securing communication between Contour and Envoy. If false, the + upstream Contour certgen job will be used to provision certificates. + If true, the cert-manager addon must be installed in the cluster. + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + configFileContents: + default: null + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + logLevel: + default: info + description: The Contour log level. Valid options are 'info' and 'debug'. + type: string + replicas: + default: 2 + description: How many Contour pod replicas to have. + type: integer + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enable: + default: false + description: Whether to enable host ports. If false, http & https + are ignored. + type: boolean + http: + default: 80 + description: If enable == true, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enable == true, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + logLevel: + default: info + description: The Envoy log level. + type: string + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If infrastructure + provider is not 'aws', these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: "" + description: The external traffic policy for the Envoy service. + If type is 'ClusterIP', this field is ignored. Otherwise, defaults + to 'Cluster' for vsphere and 'Local' for others. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If type is not 'LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not 'NodePort' or 'LoadBalancer', these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: "" + description: The type of Kubernetes service to provision for Envoy. + If not specified, will default to 'NodePort' for docker and vsphere + and 'LoadBalancer' for others. + type: string + type: object + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + replicas: + default: 2 + description: The number of Envoy replicas to deploy when 'type' + is set to 'Deployment'. If not specified, it will default to '2'. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload Envoy is deployed as. + Options are 'Deployment' or 'DaemonSet'. If not specified, will + default to 'DaemonSet'. + type: string + type: object + type: object + infrastructureProvider: + default: "" + description: The underlying infrastructure provider. Options are aws, azure, + docker and vsphere. This field is not required, but enables better validation + and defaulting if provided. + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.23.0+kadras.3 From 50c2466ca65be9503fa5f52458870c567c4cda55 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 13 Nov 2022 21:45:19 +0000 Subject: [PATCH 065/601] Update FluxCD Source Controller metadata and add version 0.31.0+kadras.1 --- .../0.31.0+kadras.1.yml | 72 +++++++++++++++++++ 1 file changed, 72 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0+kadras.1.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0+kadras.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0+kadras.1.yml new file mode 100644 index 0000000..78c3284 --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0+kadras.1.yml @@ -0,0 +1,72 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.31.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/fluxcd/source-controller/releases + releasedAt: "2022-11-13T21:44:27Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:255eedc6c25ad88261df7df289ac6acdba2fab97544265c0b9a93cdf4d9c3c70 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy URL + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the source-controller Service + type: integer + type: object + version: 0.31.0+kadras.1 From 06f244782c269b29a8b0602fdfaf983be6e2e126 Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 21 Nov 2022 22:29:32 +0000 Subject: [PATCH 066/601] Update Kpack metadata and add version 0.8.0 --- .../kpack.packages.kadras.io/0.8.0.yml | 95 +++++++++++++++++++ 1 file changed, 95 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.8.0.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.8.0.yml b/repo/packages/kpack.packages.kadras.io/0.8.0.yml new file mode 100644 index 0000000..fb6bdb8 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.8.0.yml @@ -0,0 +1,95 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.8.0 +spec: + capacityRequirementsDescription: Registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/pivotal/kpack/releases + releasedAt: "2022-11-21T22:28:35Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-kpack@sha256:9318ca1ffbc7b3cfcbbdaf7f2fd59df8249fba7556e30a710b544b6784eb4884 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'CA Certificate to be injected into the kpack controller trust + store for communicating with self signed registries. Note: This will not + be injected into builds, you need to use the cert injection webhook with + the kpack.io/build label value' + type: string + kp_default_repository: + default: "" + description: The default repository to use for builder images and dependencies + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + kp_default_repository_aws_iam_role_arn: + default: "" + description: IAM credentials to access kp_default_repository if the registry + is on AWS + type: string + kp_default_repository_password: + default: "" + description: 'Token to access kp_default_repository. Note: Use contents + of service account key json for GCR' + type: string + kp_default_repository_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to access + kp_default_repository + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + kp_default_repository + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials to + access kp_default_repository + type: string + type: object + kp_default_repository_username: + default: "" + description: 'Username to access kp_default_repository. Note: Use _json_key + for GCR' + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.8.0 From fe411d39582faf5bb45746addaf1ca9a55007fe0 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 22 Nov 2022 22:48:44 +0100 Subject: [PATCH 067/601] Add secretgen-controlle 0.12.0 --- .../0.12.0.yml | 66 +++++++++++++++++++ .../metadata.yml | 15 +++-- 2 files changed, 74 insertions(+), 7 deletions(-) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.12.0.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.12.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.12.0.yml new file mode 100644 index 0000000..b2e5145 --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.12.0.yml @@ -0,0 +1,66 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + name: secretgen-controller.packages.kadras.io.0.12.0 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releasedAt: "2022-11-22T20:23:09Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/vmware-tanzu/carvel-secretgen-controller-package-bundle@sha256:d509a0b0707d495b655d9a080ae638f7b24bdc16c5b7e6a1bca9a7a938b62120 + template: + - ytt: + paths: + - config/package-bundle/config + - config/release-config.yml + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + create_namespace: + default: true + description: Whether to create namespace specified for secretgen-controller + type: boolean + deployment: + additionalProperties: false + description: Configuration for secretgen-controller deployment + properties: + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: 0 + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + type: integer + maxUnavailable: + default: 1 + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + type: integer + type: object + updateStrategy: + default: "" + description: Update strategy of deployments, empty uses default strategy + type: string + type: object + namespace: + default: secretgen-controller + description: The namespace in which to deploy secretgen-controller + type: string + type: object + version: 0.12.0 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml b/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml index baa19af..4300b28 100644 --- a/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml +++ b/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml @@ -3,11 +3,12 @@ kind: PackageMetadata metadata: name: secretgen-controller.packages.kadras.io spec: - displayName: "secretgen-controller" - longDescription: "Provide CRDs to specify what secrets need to be on cluster (generated or not)." - shortDescription: "Secret generation and sharing" - providerName: carvel.dev - maintainers: - - name: Carvel team (see www.carvel.dev for team members) categories: - - "package management" + - package management + displayName: secretgen-controller + longDescription: Provide CRDs to specify what secrets need to be on cluster (generated + or not). + maintainers: + - name: Carvel team (see www.carvel.dev for team members) + providerName: carvel.dev + shortDescription: Secret generation and sharing From c3e1160feb5276e5c9d25e88555535e5891aad0d Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 22 Nov 2022 21:51:27 +0000 Subject: [PATCH 068/601] Update Kpack metadata and add version 0.8.1 --- .../kpack.packages.kadras.io/0.8.1.yml | 95 +++++++++++++++++++ 1 file changed, 95 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.8.1.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.8.1.yml b/repo/packages/kpack.packages.kadras.io/0.8.1.yml new file mode 100644 index 0000000..e8f94fc --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.8.1.yml @@ -0,0 +1,95 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.8.1 +spec: + capacityRequirementsDescription: Registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/pivotal/kpack/releases + releasedAt: "2022-11-22T21:50:17Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-kpack@sha256:a19bd62bfc496920f6578cf77378732db6efacfe143cc2c7b4766cf0d85ba51a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'CA Certificate to be injected into the kpack controller trust + store for communicating with self signed registries. Note: This will not + be injected into builds, you need to use the cert injection webhook with + the kpack.io/build label value' + type: string + kp_default_repository: + default: "" + description: The default repository to use for builder images and dependencies + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + kp_default_repository_aws_iam_role_arn: + default: "" + description: IAM credentials to access kp_default_repository if the registry + is on AWS + type: string + kp_default_repository_password: + default: "" + description: 'Token to access kp_default_repository. Note: Use contents + of service account key json for GCR' + type: string + kp_default_repository_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to access + kp_default_repository + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + kp_default_repository + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials to + access kp_default_repository + type: string + type: object + kp_default_repository_username: + default: "" + description: 'Username to access kp_default_repository. Note: Use _json_key + for GCR' + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.8.1 From e42dd7a25aca524c8f823007144b6cc273901568 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Nov 2022 18:06:52 +0100 Subject: [PATCH 069/601] Add Cartographer 0.6.0 Fix gh-50 --- .../cartographer.packages.kadras.io/0.6.0.yml | 131 ++++++++++++++++++ .../metadata.yml | 1 + 2 files changed, 132 insertions(+) create mode 100644 repo/packages/cartographer.packages.kadras.io/0.6.0.yml diff --git a/repo/packages/cartographer.packages.kadras.io/0.6.0.yml b/repo/packages/cartographer.packages.kadras.io/0.6.0.yml new file mode 100644 index 0000000..071c528 --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.6.0.yml @@ -0,0 +1,131 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + name: cartographer.packages.kadras.io.0.6.0 +spec: + refName: cartographer.packages.kadras.io + version: 0.6.0 + releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.6.0 + releasedAt: "2022-11-17T17:54:12Z" + valuesSchema: + openAPIv3: + title: cartographer.packages.kadras.io.0.6.0 values schema + properties: + ca_cert_data: + type: string + description: 'Optional: PEM Encoded certificate data for image registries with private CA.' + default: "" + excluded_components: + type: array + items: + type: string + default: [] + description: 'Optional: List of components to exclude from installation (e.g. [conventions])' + aws_iam_role_arn: + type: string + description: 'Optional: Arn role that has access to pull images from ECR container registry' + default: "" + cartographer: + type: object + properties: + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maxium amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + conventions: + type: object + properties: + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maxium amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + template: + spec: + fetch: + - imgpkgBundle: + image: index.docker.io/projectcartographer/package-for-cartographer@sha256:0515493aa89a9f793c93a14012dfa5b6e5a7a6602b2dfae5a6d0fe61c13d2e19 + template: + - ytt: + ignoreUnknownComments: true + paths: + - config + - kbld: + paths: + - .imgpkg/images.yml + - '-' + deploy: + - kapp: {} diff --git a/repo/packages/cartographer.packages.kadras.io/metadata.yml b/repo/packages/cartographer.packages.kadras.io/metadata.yml index a23e5e6..262a7be 100644 --- a/repo/packages/cartographer.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer.packages.kadras.io/metadata.yml @@ -16,3 +16,4 @@ spec: get to an environment. Requires cert-manager to be installed. maintainers: - name: VMware + iconSVGBase64: PHN2ZyB3aWR0aD0iMTAwIiBoZWlnaHQ9IjEwMCIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj48cGF0aCBkPSJNIDEwIDEwIEggOTAgViA5MCBIIDEwIEwgMTAgMTAiLz48L3N2Zz4K From e044431ba366b4ac2de766c3c247a475662bad5d Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 23 Nov 2022 19:48:03 +0000 Subject: [PATCH 070/601] Update Cert Manager metadata and add version 1.10.1 --- .../1.10.1.yml | 40 +++++++++++++++++++ 1 file changed, 40 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.1.yml new file mode 100644 index 0000000..4058c03 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.10.1.yml @@ -0,0 +1,40 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.10.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2022-11-23T19:46:49Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-cert-manager@sha256:14dd64e02208c5baabd29c3c1e02472e3f91890dc8b3d81384d0bee57db49b53 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager + type: string + type: object + version: 1.10.1 From 16dee03f5919a510f7a93435658a836fbe51c579 Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 23 Nov 2022 20:00:15 +0000 Subject: [PATCH 071/601] Update FluxCD Source Controller metadata and add version 0.32.1 --- .../0.32.1.yml | 72 +++++++++++++++++++ 1 file changed, 72 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1.yml new file mode 100644 index 0000000..7942f3d --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1.yml @@ -0,0 +1,72 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.32.1 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/fluxcd/source-controller/releases + releasedAt: "2022-11-23T19:59:00Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:255eedc6c25ad88261df7df289ac6acdba2fab97544265c0b9a93cdf4d9c3c70 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy URL + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the source-controller Service + type: integer + type: object + version: 0.32.1 From 5113fd9925f949b9914639e1208fb6e7a4752abe Mon Sep 17 00:00:00 2001 From: github-actions Date: Thu, 24 Nov 2022 06:31:01 +0000 Subject: [PATCH 072/601] Update Knative Eventing metadata and add version 1.8.1 --- .../1.8.1.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.1.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.1.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.1.yml new file mode 100644 index 0000000..b742e4f --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.8.1.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.8.1 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/knative/eventing/releases + releasedAt: "2022-11-24T06:30:01Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-eventing@sha256:7b545966388cf21fc6b028928c54ad0f72f3e178cc585f60a6241a6badfac5a0 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.8.1 From d952059566fd7c0744c77b7c6b9c1519f8cea1ea Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 25 Nov 2022 23:24:59 +0000 Subject: [PATCH 073/601] Update Knative Serving metadata and add version 1.8.0+kadras.1 --- .../1.8.0+kadras.1.yml | 122 ++++++++++++++++++ 1 file changed, 122 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.1.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.1.yml new file mode 100644 index 0000000..b753d1d --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.1.yml @@ -0,0 +1,122 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.8.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/knative/serving/releases + releasedAt: "2022-11-25T23:23:56Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-serving@sha256:a4fb26462934be081544939ecf78716f2048c9ded6b1f660e9183cace87d001f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + domain: + additionalProperties: false + description: DNS configuration + properties: + name: + default: "" + description: Your own domain name if type real or empty if type sslip.io + or nip.io + type: string + type: + default: nip.io + description: Type of DNS configuration + type: string + url_template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The domain template to use when creating new services + type: string + type: object + ingress: + additionalProperties: false + description: Ingress configuration + properties: + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internale Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed + type: string + type: object + type: object + namespace: + default: knative-serving + description: The namespace where to install Knative Serving + type: string + scaling: + additionalProperties: false + description: Configuration for the Knative autoscaler + properties: + allow_zero_initial_scale: + default: "true" + description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' + annotation can be set to 0 + type: string + initial_scale: + default: "1" + description: The initial target scale of a revision after creation + type: string + max_scale: + default: "0" + description: The maximum scale of a revision. If set to 0, the revision + has no maximum scale. + type: string + min_scale: + default: "0" + description: The minimum scale of a revision + type: string + scale_down_delay: + default: 0s + description: The amount of time that must pass at reduced concurrency + before a scale down decision is applied. If 0s, no delay. + type: string + type: object + tls: + additionalProperties: false + description: Configuration for automatic TLS certificates + properties: + certmanager: + additionalProperties: false + description: Configuration for integrating with cert-manager for certificate + issuing + properties: + clusterissuer: + default: "" + description: Provide a cluster issuer if you want to enable auto-TLS + type: string + type: object + type: object + type: object + version: 1.8.0+kadras.1 From db91f7e8eb1803cf40943207ae2f8f8cf2ce0ef5 Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 25 Nov 2022 23:45:09 +0000 Subject: [PATCH 074/601] Update Kpack Dependencies metadata and add version 0.3.1 --- .../0.3.1.yml | 34 +++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.1.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.1.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.1.yml new file mode 100644 index 0000000..75a9202 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.1.yml @@ -0,0 +1,34 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.3.1 +spec: + refName: kpack-dependencies.packages.kadras.io + releasedAt: "2022-11-25T23:44:12Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kpack-dependencies@sha256:c7bc98f1f63e0879f3896fa008fbbdc24a832de7ebd3b40f8a8b56bafc6d7aba + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + default: "" + description: The OCI registry where to publish builder images. The same + as configured in kpack. + type: string + type: object + version: 0.3.1 From c1cfa0933a8ea5f80b337b176cf391ed864c7049 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 27 Nov 2022 15:23:21 +0000 Subject: [PATCH 075/601] Update Cert Manager metadata and add version 1.10.1+kadras.1 --- .../1.10.1+kadras.1.yml | 40 +++++++++++++++++++ 1 file changed, 40 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.1.yml new file mode 100644 index 0000000..68a0c09 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.1.yml @@ -0,0 +1,40 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.10.1+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2022-11-27T15:22:22Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-cert-manager@sha256:fc0fe8d308308145f39c5aaa033c0e2f9bc5339a36422f284cf152866f08de52 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager + type: string + type: object + version: 1.10.1+kadras.1 From 3f09133d63a86a8550eefea490600cdc72655c9c Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 27 Nov 2022 21:02:19 +0000 Subject: [PATCH 076/601] Update Contour metadata and add version 1.23.0+kadras.4 --- .../1.23.0+kadras.4.yml | 206 ++++++++++++++++++ 1 file changed, 206 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.23.0+kadras.4.yml diff --git a/repo/packages/contour.packages.kadras.io/1.23.0+kadras.4.yml b/repo/packages/contour.packages.kadras.io/1.23.0+kadras.4.yml new file mode 100644 index 0000000..cf2413b --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.23.0+kadras.4.yml @@ -0,0 +1,206 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.23.0+kadras.4 +spec: + capacityRequirementsDescription: Varies significantly based on number of Services, + Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each + Contour and Envoy pod, but this can and should be tuned based on observed usage. + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/projectcontour/contour/releases + releasedAt: "2022-11-27T21:01:18Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-contour@sha256:05c8a8b953faf9f9a46e707cfe2b59eb3a19ea3d7c808074e851c8e1ddd1742a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: Settings for the TLS certificates for securing communication + between Contour and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If useCertManager is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If useCertManager is false, this field is ignored. + type: string + useCertManager: + default: false + description: Whether to use cert-manager to provision TLS certificates + for securing communication between Contour and Envoy. If false, the + upstream Contour certgen job will be used to provision certificates. + If true, the cert-manager addon must be installed in the cluster. + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + configFileContents: + default: null + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + logLevel: + default: info + description: The Contour log level. Valid options are 'info' and 'debug'. + type: string + replicas: + default: 2 + description: How many Contour pod replicas to have. + type: integer + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enable: + default: false + description: Whether to enable host ports. If false, http & https + are ignored. + type: boolean + http: + default: 80 + description: If enable == true, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enable == true, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + logLevel: + default: info + description: The Envoy log level. + type: string + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If infrastructure + provider is not 'aws', these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: "" + description: The external traffic policy for the Envoy service. + If type is 'ClusterIP', this field is ignored. Otherwise, defaults + to 'Cluster' for vsphere and 'Local' for others. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If type is not 'LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not 'NodePort' or 'LoadBalancer', these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, will default to 'NodePort' for docker and vsphere + and 'LoadBalancer' for others. + nullable: true + type: string + type: object + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + replicas: + default: 2 + description: The number of Envoy replicas to deploy when 'type' + is set to 'Deployment'. If not specified, it will default to '2'. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload Envoy is deployed as. + Options are 'Deployment' or 'DaemonSet'. If not specified, will + default to 'DaemonSet'. + type: string + type: object + type: object + infrastructureProvider: + default: "" + description: The underlying infrastructure provider. Options are aws, azure, + docker and vsphere. This field is not required, but enables better validation + and defaulting if provided. + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.23.0+kadras.4 From fcf43a36c8bb601d69d4fcbf0d249a7e798da01f Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 27 Nov 2022 21:30:11 +0000 Subject: [PATCH 077/601] Update FluxCD Source Controller metadata and add version 0.32.1+kadras.1 --- .../0.32.1+kadras.1.yml | 72 +++++++++++++++++++ 1 file changed, 72 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.1.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.1.yml new file mode 100644 index 0000000..b32dcc8 --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.1.yml @@ -0,0 +1,72 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.32.1+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/fluxcd/source-controller/releases + releasedAt: "2022-11-27T21:29:11Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:505bca54e3b3c22607c2e3ad22622334828348fb761cdd50adb1bee5f7d9c21b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy URL + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the source-controller Service + type: integer + type: object + version: 0.32.1+kadras.1 From 92f85495d2c6f2b9905817ffa2ef9e19d172db9b Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 27 Nov 2022 22:37:05 +0000 Subject: [PATCH 078/601] Update Knative Eventing metadata and add version 1.8.1+kadras.1 --- .../1.8.1+kadras.1.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.1+kadras.1.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.1+kadras.1.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.1+kadras.1.yml new file mode 100644 index 0000000..42bbd8c --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.8.1+kadras.1.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.8.1+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/knative/eventing/releases + releasedAt: "2022-11-27T22:36:10Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-eventing@sha256:da0fb08e4091a1b530699eae0cbdce1556c08b7ee9af7f8364c4040cd0583310 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.8.1+kadras.1 From f34bde2583bdd98a8b971ade060a76b400e293c1 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sun, 27 Nov 2022 23:13:09 +0000 Subject: [PATCH 079/601] Update Knative Serving metadata and add version 1.8.0+kadras.2 --- .../1.8.0+kadras.2.yml | 122 ++++++++++++++++++ 1 file changed, 122 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.2.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.2.yml new file mode 100644 index 0000000..29abe86 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.2.yml @@ -0,0 +1,122 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.8.0+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/knative/serving/releases + releasedAt: "2022-11-27T23:12:14Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-serving@sha256:a701488c9a44e05dacd7e17650d05fbad1f5f452d20e398c72831e8a8b99d12c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + domain: + additionalProperties: false + description: DNS configuration + properties: + name: + default: "" + description: Your own domain name if type real or empty if type sslip.io + or nip.io + type: string + type: + default: nip.io + description: Type of DNS configuration + type: string + url_template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The domain template to use when creating new services + type: string + type: object + ingress: + additionalProperties: false + description: Ingress configuration + properties: + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internale Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed + type: string + type: object + type: object + namespace: + default: knative-serving + description: The namespace where to install Knative Serving + type: string + scaling: + additionalProperties: false + description: Configuration for the Knative autoscaler + properties: + allow_zero_initial_scale: + default: "true" + description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' + annotation can be set to 0 + type: string + initial_scale: + default: "1" + description: The initial target scale of a revision after creation + type: string + max_scale: + default: "0" + description: The maximum scale of a revision. If set to 0, the revision + has no maximum scale. + type: string + min_scale: + default: "0" + description: The minimum scale of a revision + type: string + scale_down_delay: + default: 0s + description: The amount of time that must pass at reduced concurrency + before a scale down decision is applied. If 0s, no delay. + type: string + type: object + tls: + additionalProperties: false + description: Configuration for automatic TLS certificates + properties: + certmanager: + additionalProperties: false + description: Configuration for integrating with cert-manager for certificate + issuing + properties: + clusterissuer: + default: "" + description: Provide a cluster issuer if you want to enable auto-TLS + type: string + type: object + type: object + type: object + version: 1.8.0+kadras.2 From eb17a76fedc0a5ba10fffc3bf91307007233038f Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 28 Nov 2022 18:45:46 +0000 Subject: [PATCH 080/601] Update Kpack Dependencies metadata and add version 0.3.2 --- .../0.3.2.yml | 34 +++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.2.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.2.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.2.yml new file mode 100644 index 0000000..9c5614a --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.2.yml @@ -0,0 +1,34 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.3.2 +spec: + refName: kpack-dependencies.packages.kadras.io + releasedAt: "2022-11-28T18:44:40Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kpack-dependencies@sha256:6548de6f924a10c11236eea2b988b95b5702486ca91378f764422b68db25ee97 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + default: "" + description: The OCI registry where to publish builder images. The same + as configured in kpack. + type: string + type: object + version: 0.3.2 From 62c32cbfe9fde868025eb5f2c69d1687be5fed26 Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 28 Nov 2022 19:56:16 +0000 Subject: [PATCH 081/601] Update Kpack metadata and add version 0.8.1+kadras.1 --- .../0.8.1+kadras.1.yml | 95 +++++++++++++++++++ 1 file changed, 95 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.8.1+kadras.1.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.8.1+kadras.1.yml b/repo/packages/kpack.packages.kadras.io/0.8.1+kadras.1.yml new file mode 100644 index 0000000..2433bbe --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.8.1+kadras.1.yml @@ -0,0 +1,95 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.8.1+kadras.1 +spec: + capacityRequirementsDescription: Registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/pivotal/kpack/releases + releasedAt: "2022-11-28T19:55:07Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-kpack@sha256:474f7923618c5d9a08aad70ce4121d002072370c86ba7cba69a5b2db2c142710 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'CA Certificate to be injected into the kpack controller trust + store for communicating with self signed registries. Note: This will not + be injected into builds, you need to use the cert injection webhook with + the kpack.io/build label value' + type: string + kp_default_repository: + default: "" + description: The default repository to use for builder images and dependencies + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + kp_default_repository_aws_iam_role_arn: + default: "" + description: IAM credentials to access kp_default_repository if the registry + is on AWS + type: string + kp_default_repository_password: + default: "" + description: 'Token to access kp_default_repository. Note: Use contents + of service account key json for GCR' + type: string + kp_default_repository_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to access + kp_default_repository + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + kp_default_repository + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials to + access kp_default_repository + type: string + type: object + kp_default_repository_username: + default: "" + description: 'Username to access kp_default_repository. Note: Use _json_key + for GCR' + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.8.1+kadras.1 From bb1ac2c27bab46fa71c8bb23194615d8734a6db9 Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 28 Nov 2022 21:18:25 +0000 Subject: [PATCH 082/601] Update Metrics Server metadata and add version 0.6.1+kadras.1 --- .../0.6.1+kadras.1.yml | 148 ++++++++++++++++++ 1 file changed, 148 insertions(+) create mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.1+kadras.1.yml diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.1+kadras.1.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.1+kadras.1.yml new file mode 100644 index 0000000..a363fd8 --- /dev/null +++ b/repo/packages/metrics-server.packages.kadras.io/0.6.1+kadras.1.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: metrics-server.packages.kadras.io.0.6.1+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kubernetes-sigs/metrics-server/releases + releasedAt: "2022-11-28T21:17:26Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-metrics-server@sha256:69e5e2583b47f308f8336f4cc5ae3e012e4eae61060232a36afd3031fa368f72 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + daemonset: + additionalProperties: false + properties: + updateStrategy: + default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + nullable: true + type: integer + maxUnavailable: + default: null + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object + updateStrategy: + default: null + description: Update strategy of deployments + nullable: true + type: string + type: object + metricsServer: + additionalProperties: false + properties: + config: + additionalProperties: false + properties: + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean + args: + default: [] + description: Arguments passed into metrics-server container + items: + default: "" + type: string + type: array + probe: + additionalProperties: false + properties: + failureThreshold: + default: 3 + description: Probe failureThreshold of metrics-server deployment + type: integer + periodSeconds: + default: 10 + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer + tolerations: + default: [] + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string + type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: + additionalProperties: false + properties: + name: + default: "" + description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: + default: "" + description: The repository of metrics-server image + type: string + tag: + default: "" + description: The image tag + type: string + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object + version: 0.6.1+kadras.1 From 7a0ce4a5531cfbb380196f523138465c5f9ce8a8 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 29 Nov 2022 22:27:41 +0000 Subject: [PATCH 083/601] Update Tekton Pipelines metadata and add version 0.42.0 --- .../0.42.0.yml | 151 ++++++++++++++++++ 1 file changed, 151 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.42.0.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0.yml new file mode 100644 index 0000000..4ea24e5 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0.yml @@ -0,0 +1,151 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.42.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/tektoncd/pipeline/releases + releasedAt: "2022-11-29T22:26:40Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:86ebaf0133d4647454c3ddcb3783b344dcb750b37b350612bf534994db349bd9 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + defaults: + additionalProperties: false + description: Default configuration stored in the config-defaults ConfigMap. + properties: + affinity_assistant_pod_template: + default: "" + description: Pod template to use for affinity assistant pods. + type: string + cloud_events_sink: + default: "" + description: CloudEvents sink to be used for TaskRun and PipelineRun. + If no sink is specified, no CloudEvent is generated. + type: string + managed_by_label_value: + default: tekton-pipelines + description: Value given to the 'app.kubernetes.io/managed-by' label + applied to all Pods created for TaskRuns. + type: string + max_matrix_combinations_count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + pod_template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + service_account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + task_run_workspace_binding: + default: "" + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + example: 'emptyDir: {}' + type: string + x-example-description: Use emptyDir volume for workspace + timeout_minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the feature-flags ConfigMap. + properties: + await_sidecar_readiness: + default: "true" + description: Setting this flag to 'false' will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + disable_affinity_assistant: + default: "false" + description: Setting this flag to 'true' will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable_creds_init: + default: "false" + description: Setting this flag to 'true' will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable_api_fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable_custom_tasks: + default: "false" + description: Setting this flag to 'true' enables the use of custom tasks + from within pipelines. This is an experimental feature and thus should + still be considered an alpha feature. + type: string + enable_provenance_in_status: + default: "false" + description: Setting this flag to 'true' enables populating the 'provenance' + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable_tekton_oci_bundles: + default: "false" + description: Setting this flag to 'true' enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + require_git_ssh_secret_known_hosts: + default: "false" + description: Setting this flag to 'true' will require that any Git SSH + Secret offered to Tekton must have known_hosts included. + type: string + resource_verification_mode: + default: skip + description: Setting this flag to 'enforce' will enforce verification + of tasks/pipeline. Failing to verify will fail the taskrun/pipelinerun. + 'warn' will only log the err message and 'skip' will skip the whole + verification. + type: string + running_in_environment_with_injected_sidecars: + default: "true" + description: This option should be set to 'false' when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send_cloudevents_for_runs: + default: "false" + description: Setting this flag to 'true' enables CloudEvents for Runs, + as long as a CloudEvents sink is configured in the config-defaults + config map. + type: string + type: object + type: object + version: 0.42.0 From 567e5907986f2c37ad48f28b928447bb0ffbef21 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 29 Nov 2022 23:40:45 +0100 Subject: [PATCH 084/601] Update issue templates --- .github/ISSUE_TEMPLATE/bug_report.md | 38 +++++++++++++++++++++++ .github/ISSUE_TEMPLATE/feature_request.md | 20 ++++++++++++ 2 files changed, 58 insertions(+) create mode 100644 .github/ISSUE_TEMPLATE/bug_report.md create mode 100644 .github/ISSUE_TEMPLATE/feature_request.md diff --git a/.github/ISSUE_TEMPLATE/bug_report.md b/.github/ISSUE_TEMPLATE/bug_report.md new file mode 100644 index 0000000..dd84ea7 --- /dev/null +++ b/.github/ISSUE_TEMPLATE/bug_report.md @@ -0,0 +1,38 @@ +--- +name: Bug report +about: Create a report to help us improve +title: '' +labels: '' +assignees: '' + +--- + +**Describe the bug** +A clear and concise description of what the bug is. + +**To Reproduce** +Steps to reproduce the behavior: +1. Go to '...' +2. Click on '....' +3. Scroll down to '....' +4. See error + +**Expected behavior** +A clear and concise description of what you expected to happen. + +**Screenshots** +If applicable, add screenshots to help explain your problem. + +**Desktop (please complete the following information):** + - OS: [e.g. iOS] + - Browser [e.g. chrome, safari] + - Version [e.g. 22] + +**Smartphone (please complete the following information):** + - Device: [e.g. iPhone6] + - OS: [e.g. iOS8.1] + - Browser [e.g. stock browser, safari] + - Version [e.g. 22] + +**Additional context** +Add any other context about the problem here. diff --git a/.github/ISSUE_TEMPLATE/feature_request.md b/.github/ISSUE_TEMPLATE/feature_request.md new file mode 100644 index 0000000..bbcbbe7 --- /dev/null +++ b/.github/ISSUE_TEMPLATE/feature_request.md @@ -0,0 +1,20 @@ +--- +name: Feature request +about: Suggest an idea for this project +title: '' +labels: '' +assignees: '' + +--- + +**Is your feature request related to a problem? Please describe.** +A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] + +**Describe the solution you'd like** +A clear and concise description of what you want to happen. + +**Describe alternatives you've considered** +A clear and concise description of any alternative solutions or features you've considered. + +**Additional context** +Add any other context or screenshots about the feature request here. From 4f6c82fe71bcd2bdfa6860cad004e001f9fca58c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 29 Nov 2022 23:40:16 +0100 Subject: [PATCH 085/601] Create CODE_OF_CONDUCT.md --- CODE_OF_CONDUCT.md | 128 +++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 128 insertions(+) create mode 100644 CODE_OF_CONDUCT.md diff --git a/CODE_OF_CONDUCT.md b/CODE_OF_CONDUCT.md new file mode 100644 index 0000000..39afb14 --- /dev/null +++ b/CODE_OF_CONDUCT.md @@ -0,0 +1,128 @@ +# Contributor Covenant Code of Conduct + +## Our Pledge + +We as members, contributors, and leaders pledge to make participation in our +community a harassment-free experience for everyone, regardless of age, body +size, visible or invisible disability, ethnicity, sex characteristics, gender +identity and expression, level of experience, education, socio-economic status, +nationality, personal appearance, race, religion, or sexual identity +and orientation. + +We pledge to act and interact in ways that contribute to an open, welcoming, +diverse, inclusive, and healthy community. + +## Our Standards + +Examples of behavior that contributes to a positive environment for our +community include: + +* Demonstrating empathy and kindness toward other people +* Being respectful of differing opinions, viewpoints, and experiences +* Giving and gracefully accepting constructive feedback +* Accepting responsibility and apologizing to those affected by our mistakes, + and learning from the experience +* Focusing on what is best not just for us as individuals, but for the + overall community + +Examples of unacceptable behavior include: + +* The use of sexualized language or imagery, and sexual attention or + advances of any kind +* Trolling, insulting or derogatory comments, and personal or political attacks +* Public or private harassment +* Publishing others' private information, such as a physical or email + address, without their explicit permission +* Other conduct which could reasonably be considered inappropriate in a + professional setting + +## Enforcement Responsibilities + +Community leaders are responsible for clarifying and enforcing our standards of +acceptable behavior and will take appropriate and fair corrective action in +response to any behavior that they deem inappropriate, threatening, offensive, +or harmful. + +Community leaders have the right and responsibility to remove, edit, or reject +comments, commits, code, wiki edits, issues, and other contributions that are +not aligned to this Code of Conduct, and will communicate reasons for moderation +decisions when appropriate. + +## Scope + +This Code of Conduct applies within all community spaces, and also applies when +an individual is officially representing the community in public spaces. +Examples of representing our community include using an official e-mail address, +posting via an official social media account, or acting as an appointed +representative at an online or offline event. + +## Enforcement + +Instances of abusive, harassing, or otherwise unacceptable behavior may be +reported to the community leaders responsible for enforcement at +community@arktonix.com. +All complaints will be reviewed and investigated promptly and fairly. + +All community leaders are obligated to respect the privacy and security of the +reporter of any incident. + +## Enforcement Guidelines + +Community leaders will follow these Community Impact Guidelines in determining +the consequences for any action they deem in violation of this Code of Conduct: + +### 1. Correction + +**Community Impact**: Use of inappropriate language or other behavior deemed +unprofessional or unwelcome in the community. + +**Consequence**: A private, written warning from community leaders, providing +clarity around the nature of the violation and an explanation of why the +behavior was inappropriate. A public apology may be requested. + +### 2. Warning + +**Community Impact**: A violation through a single incident or series +of actions. + +**Consequence**: A warning with consequences for continued behavior. No +interaction with the people involved, including unsolicited interaction with +those enforcing the Code of Conduct, for a specified period of time. This +includes avoiding interactions in community spaces as well as external channels +like social media. Violating these terms may lead to a temporary or +permanent ban. + +### 3. Temporary Ban + +**Community Impact**: A serious violation of community standards, including +sustained inappropriate behavior. + +**Consequence**: A temporary ban from any sort of interaction or public +communication with the community for a specified period of time. No public or +private interaction with the people involved, including unsolicited interaction +with those enforcing the Code of Conduct, is allowed during this period. +Violating these terms may lead to a permanent ban. + +### 4. Permanent Ban + +**Community Impact**: Demonstrating a pattern of violation of community +standards, including sustained inappropriate behavior, harassment of an +individual, or aggression toward or disparagement of classes of individuals. + +**Consequence**: A permanent ban from any sort of public interaction within +the community. + +## Attribution + +This Code of Conduct is adapted from the [Contributor Covenant][homepage], +version 2.0, available at +https://www.contributor-covenant.org/version/2/0/code_of_conduct.html. + +Community Impact Guidelines were inspired by [Mozilla's code of conduct +enforcement ladder](https://github.com/mozilla/diversity). + +[homepage]: https://www.contributor-covenant.org + +For answers to common questions about this code of conduct, see the FAQ at +https://www.contributor-covenant.org/faq. Translations are available at +https://www.contributor-covenant.org/translations. From bb8bfb76471324bfbc726f69c00c0d160db88d3d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 29 Nov 2022 23:38:33 +0100 Subject: [PATCH 086/601] Update docs and bump to 0.5.0 --- .github/workflows/release.yml | 2 +- README.md | 83 ++++++++++++++++++----------------- 2 files changed, 43 insertions(+), 42 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4a6131b..de713d9 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.4.0 + VERSION: 0.5.0 jobs: build: diff --git a/README.md b/README.md index 77289d2..58d4baa 100644 --- a/README.md +++ b/README.md @@ -29,68 +29,69 @@ This repository contains the following Carvel packages part of the [Kadras](http ## Prerequisites -* Install the [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI to manage Carvel packages in a convenient way. -* Ensure [kapp-controller](https://carvel.dev/kapp-controller) is deployed in your Kubernetes cluster. You can do that with Carvel -[`kapp`](https://carvel.dev/kapp/docs/latest/install) (recommended choice) or `kubectl`. +* Kubernetes 1.24+ +* Carvel [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI. +* Carvel [kapp-controller](https://carvel.dev/kapp-controller) deployed in your Kubernetes cluster. You can install it with Carvel [`kapp`](https://carvel.dev/kapp/docs/latest/install) (recommended choice) or `kubectl`. -```shell -kapp deploy -a kapp-controller -y \ - -f https://github.com/vmware-tanzu/carvel-kapp-controller/releases/latest/download/release.yml -``` + ```shell + kapp deploy -a kapp-controller -y \ + -f https://github.com/vmware-tanzu/carvel-kapp-controller/releases/latest/download/release.yml + ``` ## Installation You can install the Kadras package repository in a dedicated namespace using `kctrl`: -```shell -kubectl create namespace carvel-packages -kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.4.0 \ - -n carvel-packages -``` + ```shell + kubectl create namespace kadras-packages + kctrl package repository add -r kadras-repo \ + --url ghcr.io/arktonix/kadras-packages:0.5.0 \ + -n kadras-packages + ``` -Alternatively, you can add the repository by applying the `PackageRepository` manifest: +### Verification -```shell -kubectl create namespace carvel-packages -kapp deploy -a kadras-repo -n carvel-packages -y \ - -f https://github.com/arktonix/kadras-packages/releases/latest/download/package-repository.yml -``` +You can verify the list of available Carvel package repositories and their status. -After the installation, you can retrieve the list of available Carvel package repositories in your cluster -with the following command. + ```shell + kctrl package repository list -n kadras-packages + ``` -```shell -kctrl package repository list -n carvel-packages -``` +### Packages -The Kadras package repository provides a collection of Carvel packages that you can list as follows. +The Kadras package repository provides a collection of Carvel packages that you can list. -```shell -kctrl package available list -n carvel-packages -``` + ```shell + kctrl package available list -p kpack.packages.kadras.io -n kadras-packages + ``` -## Update +## Upgrading -You can update the repository by applying the `PackageRepository` manifest from the newest release, similar -to the process described in the "Installation" section. Alternatively, you can use the `kctrl` CLI. +You can upgrade an existing repository to a newer version using `kctrl`. -```shell -kctrl package repository update -r kadras-repo \ + ```shell + kctrl package repository update -r kadras-repo \ --url ghcr.io/arktonix/kadras-packages: \ - -n carvel-packages -``` + -n kadras-packages + ``` -## Documentation +## Other -You can find more documentation about Carvel package management at [carvel.dev](https://carvel.dev/kapp-controller/docs/latest/packaging). +Instead of installing the Kadras package repository with `kctrl`, you can apply the necessary Carvel `PackageMetadata` and `Package` resources directly using [`kapp`](https://carvel.dev/kapp/docs/latest/install) or `kubectl`. -## References + ```shell + kubectl create namespace kadras-packages + kapp deploy -a kadras-repo -n kadras-packages -y \ + -f https://github.com/arktonix/kadras-packages/releases/latest/download/package-repository.yml + ``` -This package repository is inspired by the work done by the Carvel team and the -[Tanzu Community Edition](https://github.com/vmware-tanzu/community-edition) project (now retired). +## Support and Documentation + +For support and documentation about Carvel package management, check out [carvel.dev](https://carvel.dev/kapp-controller/docs/latest/packaging). + +## References -Learn more about [Kubernetes-native package management with Carvel](https://carvel.dev/kapp-controller/docs/latest/packaging). +This package repository is inspired by the work done by the Carvel team and the [Tanzu Community Edition](https://github.com/vmware-tanzu/community-edition) project (now retired). Learn more about [Kubernetes-native package management with Carvel](https://carvel.dev/kapp-controller/docs/latest/packaging). ## Supply Chain Security From 29aeb6dda888e4b64bd1b828cf15d752d309511b Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 29 Nov 2022 22:55:22 +0000 Subject: [PATCH 087/601] Update Application Platform metadata and add version 0.3.0 --- .../0.3.0.yml | 116 ++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.3.0.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.3.0.yml b/repo/packages/application-platform.packages.kadras.io/0.3.0.yml new file mode 100644 index 0000000..80876f2 --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.3.0.yml @@ -0,0 +1,116 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.3.0 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releasedAt: "2022-11-29T22:53:35Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:e395923a668ccb4a0c0a644cb5d82781a96cb4742d03f8248df85437e07853c3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + golden_path_web: + default: {} + description: Configuration for the Cartographer Golden Path Web package + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.3.0 From cb3e3a5e05431b4bf3e2505fdb9e4905ab4a71bf Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 29 Nov 2022 23:59:17 +0100 Subject: [PATCH 088/601] Bump to 0.5.1 --- .github/workflows/release.yml | 9 +++++---- README.md | 2 +- 2 files changed, 6 insertions(+), 5 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index de713d9..c5a5110 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.5.0 + VERSION: 0.5.1 jobs: build: @@ -35,9 +35,10 @@ jobs: - name: Create k3d cluster run: | - # Workaround for https://github.com/actions/runner-images/issues/6283 - eval "$(/home/linuxbrew/.linuxbrew/bin/brew shellenv)" - brew install k3d + # Install k3d + curl -s https://raw.githubusercontent.com/k3d-io/k3d/main/install.sh | bash + + # Create a Kubernetes cluster k3d cluster create test-cluster # Wait for the generation of a token for the Service Account diff --git a/README.md b/README.md index 58d4baa..ae66ff6 100644 --- a/README.md +++ b/README.md @@ -45,7 +45,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace kadras-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.5.0 \ + --url ghcr.io/arktonix/kadras-packages:0.5.1 \ -n kadras-packages ``` From 6c0fff88121eab308980b735462c30a419e2870a Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 12 Dec 2022 19:40:29 +0000 Subject: [PATCH 089/601] Update Knative Serving metadata and add version 1.8.3 --- .../1.8.3.yml | 117 ++++++++++++++++++ 1 file changed, 117 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.3.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.3.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.3.yml new file mode 100644 index 0000000..9c2e5b7 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.8.3.yml @@ -0,0 +1,117 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.8.3 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/knative/serving/releases + releasedAt: "2022-12-12T19:37:54Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-serving@sha256:23498b64d519fdbe964817cb683359010d0bb8f203ab91e46cfdbcec26cf9df6 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + domain: + additionalProperties: false + description: DNS configuration + properties: + name: + default: 127.0.0.1.sslip.io + description: Your own domain name + type: string + url_template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The domain template to use when creating new services + type: string + type: object + ingress: + additionalProperties: false + description: Ingress configuration + properties: + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internale Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed + type: string + type: object + type: object + namespace: + default: knative-serving + description: The namespace where to install Knative Serving + type: string + scaling: + additionalProperties: false + description: Configuration for the Knative autoscaler + properties: + allow_zero_initial_scale: + default: "true" + description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' + annotation can be set to 0 + type: string + initial_scale: + default: "1" + description: The initial target scale of a revision after creation + type: string + max_scale: + default: "0" + description: The maximum scale of a revision. If set to 0, the revision + has no maximum scale. + type: string + min_scale: + default: "0" + description: The minimum scale of a revision + type: string + scale_down_delay: + default: 0s + description: The amount of time that must pass at reduced concurrency + before a scale down decision is applied. If 0s, no delay. + type: string + type: object + tls: + additionalProperties: false + description: Configuration for automatic TLS certificates + properties: + certmanager: + additionalProperties: false + description: Configuration for integrating with cert-manager for certificate + issuing + properties: + clusterissuer: + default: "" + description: Provide a cluster issuer if you want to enable auto-TLS + type: string + type: object + type: object + type: object + version: 1.8.3 From 5237ba15c68eae7079220eb0db0e0628f44ee707 Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 12 Dec 2022 22:23:29 +0000 Subject: [PATCH 090/601] Update Contour metadata and add version 1.23.2 --- .../contour.packages.kadras.io/1.23.2.yml | 206 ++++++++++++++++++ 1 file changed, 206 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.23.2.yml diff --git a/repo/packages/contour.packages.kadras.io/1.23.2.yml b/repo/packages/contour.packages.kadras.io/1.23.2.yml new file mode 100644 index 0000000..1dbba37 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.23.2.yml @@ -0,0 +1,206 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.23.2 +spec: + capacityRequirementsDescription: Varies significantly based on number of Services, + Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each + Contour and Envoy pod, but this can and should be tuned based on observed usage. + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/projectcontour/contour/releases + releasedAt: "2022-12-12T22:21:12Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-contour@sha256:199401260a26831f6cefb5ace643b55278e77b5cf889b7ccd84f8f660d84679b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: Settings for the TLS certificates for securing communication + between Contour and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If useCertManager is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If useCertManager is false, this field is ignored. + type: string + useCertManager: + default: false + description: Whether to use cert-manager to provision TLS certificates + for securing communication between Contour and Envoy. If false, the + upstream Contour certgen job will be used to provision certificates. + If true, the cert-manager addon must be installed in the cluster. + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + configFileContents: + default: null + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + logLevel: + default: info + description: The Contour log level. Valid options are 'info' and 'debug'. + type: string + replicas: + default: 2 + description: How many Contour pod replicas to have. + type: integer + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enable: + default: false + description: Whether to enable host ports. If false, http & https + are ignored. + type: boolean + http: + default: 80 + description: If enable == true, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enable == true, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + logLevel: + default: info + description: The Envoy log level. + type: string + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If infrastructure + provider is not 'aws', these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: "" + description: The external traffic policy for the Envoy service. + If type is 'ClusterIP', this field is ignored. Otherwise, defaults + to 'Cluster' for vsphere and 'Local' for others. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If type is not 'LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not 'NodePort' or 'LoadBalancer', these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, will default to 'NodePort' for docker and vsphere + and 'LoadBalancer' for others. + nullable: true + type: string + type: object + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + replicas: + default: 2 + description: The number of Envoy replicas to deploy when 'type' + is set to 'Deployment'. If not specified, it will default to '2'. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload Envoy is deployed as. + Options are 'Deployment' or 'DaemonSet'. If not specified, will + default to 'DaemonSet'. + type: string + type: object + type: object + infrastructureProvider: + default: "" + description: The underlying infrastructure provider. Options are aws, azure, + docker and vsphere. This field is not required, but enables better validation + and defaulting if provided. + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.23.2 From f974b390cdec853a5ae9a5c0632232e8e8b3d44a Mon Sep 17 00:00:00 2001 From: github-actions Date: Mon, 12 Dec 2022 22:40:32 +0000 Subject: [PATCH 091/601] Update Cert Manager metadata and add version 1.10.1+kadras.2 --- .../1.10.1+kadras.2.yml | 40 +++++++++++++++++++ 1 file changed, 40 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.2.yml new file mode 100644 index 0000000..ea6aac0 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.2.yml @@ -0,0 +1,40 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.10.1+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2022-12-12T22:38:19Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-cert-manager@sha256:fc0fe8d308308145f39c5aaa033c0e2f9bc5339a36422f284cf152866f08de52 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager + type: string + type: object + version: 1.10.1+kadras.2 From e1145c3235075bcd92281def10f15e78a7918a28 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 13 Dec 2022 19:36:30 +0000 Subject: [PATCH 092/601] Update Tekton Pipelines metadata and add version 0.42.0+kadras.1 --- .../0.42.0+kadras.1.yml | 151 ++++++++++++++++++ 1 file changed, 151 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.42.0+kadras.1.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0+kadras.1.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0+kadras.1.yml new file mode 100644 index 0000000..05df656 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0+kadras.1.yml @@ -0,0 +1,151 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.42.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/tektoncd/pipeline/releases + releasedAt: "2022-12-13T19:34:24Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:6bb807ef2182b2fca97eb57c3837c47b873a15ca02a0745943ea7b8b92ba616f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + defaults: + additionalProperties: false + description: Default configuration stored in the config-defaults ConfigMap. + properties: + affinity_assistant_pod_template: + default: "" + description: Pod template to use for affinity assistant pods. + type: string + cloud_events_sink: + default: "" + description: CloudEvents sink to be used for TaskRun and PipelineRun. + If no sink is specified, no CloudEvent is generated. + type: string + managed_by_label_value: + default: tekton-pipelines + description: Value given to the 'app.kubernetes.io/managed-by' label + applied to all Pods created for TaskRuns. + type: string + max_matrix_combinations_count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + pod_template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + service_account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + task_run_workspace_binding: + default: "" + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + example: 'emptyDir: {}' + type: string + x-example-description: Use emptyDir volume for workspace + timeout_minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the feature-flags ConfigMap. + properties: + await_sidecar_readiness: + default: "true" + description: Setting this flag to 'false' will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + disable_affinity_assistant: + default: "false" + description: Setting this flag to 'true' will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable_creds_init: + default: "false" + description: Setting this flag to 'true' will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable_api_fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable_custom_tasks: + default: "false" + description: Setting this flag to 'true' enables the use of custom tasks + from within pipelines. This is an experimental feature and thus should + still be considered an alpha feature. + type: string + enable_provenance_in_status: + default: "false" + description: Setting this flag to 'true' enables populating the 'provenance' + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable_tekton_oci_bundles: + default: "false" + description: Setting this flag to 'true' enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + require_git_ssh_secret_known_hosts: + default: "false" + description: Setting this flag to 'true' will require that any Git SSH + Secret offered to Tekton must have known_hosts included. + type: string + resource_verification_mode: + default: skip + description: Setting this flag to 'enforce' will enforce verification + of tasks/pipeline. Failing to verify will fail the taskrun/pipelinerun. + 'warn' will only log the err message and 'skip' will skip the whole + verification. + type: string + running_in_environment_with_injected_sidecars: + default: "true" + description: This option should be set to 'false' when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send_cloudevents_for_runs: + default: "false" + description: Setting this flag to 'true' enables CloudEvents for Runs, + as long as a CloudEvents sink is configured in the config-defaults + config map. + type: string + type: object + type: object + version: 0.42.0+kadras.1 From 3a4185985f6a8b965d37a36da30c30e9cfc9efc3 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 13 Dec 2022 21:46:01 +0000 Subject: [PATCH 093/601] Update FluxCD Source Controller metadata and add version 0.32.1+kadras.2 --- .../0.32.1+kadras.2.yml | 72 +++++++++++++++++++ 1 file changed, 72 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.2.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.2.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.2.yml new file mode 100644 index 0000000..a3cc595 --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.2.yml @@ -0,0 +1,72 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.32.1+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/fluxcd/source-controller/releases + releasedAt: "2022-12-13T21:43:54Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:505bca54e3b3c22607c2e3ad22622334828348fb761cdd50adb1bee5f7d9c21b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy URL + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the source-controller Service + type: integer + type: object + version: 0.32.1+kadras.2 From 13d10433166081cc672d2866a8b7cae30aa55b71 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 13 Dec 2022 22:18:57 +0000 Subject: [PATCH 094/601] Update Metrics Server metadata and add version 0.6.2 --- .../0.6.2.yml | 148 ++++++++++++++++++ 1 file changed, 148 insertions(+) create mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.2.yml diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.2.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.2.yml new file mode 100644 index 0000000..8bb0ace --- /dev/null +++ b/repo/packages/metrics-server.packages.kadras.io/0.6.2.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: metrics-server.packages.kadras.io.0.6.2 +spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kubernetes-sigs/metrics-server/releases + releasedAt: "2022-12-13T22:16:43Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-metrics-server@sha256:57a109b45ad86ffd9f47f3626800fed777f94ba4fbb5eb1ca1a9a4286f66c9ed + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + daemonset: + additionalProperties: false + properties: + updateStrategy: + default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + nullable: true + type: integer + maxUnavailable: + default: null + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object + updateStrategy: + default: null + description: Update strategy of deployments + nullable: true + type: string + type: object + metricsServer: + additionalProperties: false + properties: + config: + additionalProperties: false + properties: + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean + args: + default: [] + description: Arguments passed into metrics-server container + items: + default: "" + type: string + type: array + probe: + additionalProperties: false + properties: + failureThreshold: + default: 3 + description: Probe failureThreshold of metrics-server deployment + type: integer + periodSeconds: + default: 10 + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer + tolerations: + default: [] + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string + type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: + additionalProperties: false + properties: + name: + default: "" + description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: + default: "" + description: The repository of metrics-server image + type: string + tag: + default: "" + description: The image tag + type: string + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object + version: 0.6.2 From 1b3b2d663b92ff5a4a8f0eee9d7e5fe98468c24b Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 14 Dec 2022 20:16:05 +0000 Subject: [PATCH 095/601] Update Kpack metadata and add version 0.9.1 --- .../kpack.packages.kadras.io/0.9.1.yml | 95 +++++++++++++++++++ 1 file changed, 95 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.9.1.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.9.1.yml b/repo/packages/kpack.packages.kadras.io/0.9.1.yml new file mode 100644 index 0000000..edb12ea --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.9.1.yml @@ -0,0 +1,95 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.9.1 +spec: + capacityRequirementsDescription: Registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/pivotal/kpack/releases + releasedAt: "2022-12-14T20:14:11Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-kpack@sha256:18b6ce3b289f61a86bde3e42be9919019483f3dceef08ba43cafc83b9fd15b62 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'CA Certificate to be injected into the kpack controller trust + store for communicating with self signed registries. Note: This will not + be injected into builds, you need to use the cert injection webhook with + the kpack.io/build label value' + type: string + kp_default_repository: + default: "" + description: The default repository to use for builder images and dependencies + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + kp_default_repository_aws_iam_role_arn: + default: "" + description: IAM credentials to access kp_default_repository if the registry + is on AWS + type: string + kp_default_repository_password: + default: "" + description: 'Token to access kp_default_repository. Note: Use contents + of service account key json for GCR' + type: string + kp_default_repository_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to access + kp_default_repository + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + kp_default_repository + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials to + access kp_default_repository + type: string + type: object + kp_default_repository_username: + default: "" + description: 'Username to access kp_default_repository. Note: Use _json_key + for GCR' + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.9.1 From 1718cadc0354f685ed47ef64a8d07ea6310cdc8c Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 14 Dec 2022 20:21:01 +0000 Subject: [PATCH 096/601] Update Argo CD metadata and add version 2.5.4 --- .../argo-cd.packages.kadras.io/2.5.4.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.4.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.4.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.4.yml new file mode 100644 index 0000000..593e85d --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.5.4.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.5.4 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/argoproj/argo-cd/releases + releasedAt: "2022-12-14T20:18:57Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-argo-cd@sha256:7f782298540e7e77e49214bdfaa85c46455d9c84a5019e8f85e46340beaa9d5b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.5.4 From 3bb830f2d29ed425c512180d8e18de88091e967e Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 14 Dec 2022 20:36:54 +0000 Subject: [PATCH 097/601] Update Knative Eventing metadata and add version 1.8.3 --- .../1.8.3.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.3.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.3.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.3.yml new file mode 100644 index 0000000..aabbe68 --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.8.3.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.8.3 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/knative/eventing/releases + releasedAt: "2022-12-14T20:34:49Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-eventing@sha256:48445772ec10ce67585cda0c5ce4beb8b226a5a5ccba2e507acc2330561a38b6 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.8.3 From 99728327c184724ba7484abe3d66d5e7cfa9be8a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 21 Dec 2022 16:33:02 +0100 Subject: [PATCH 098/601] Add Cartographer 0.6.2 --- .../cartographer.packages.kadras.io/0.6.2.yml | 131 ++++++++++++++++++ 1 file changed, 131 insertions(+) create mode 100644 repo/packages/cartographer.packages.kadras.io/0.6.2.yml diff --git a/repo/packages/cartographer.packages.kadras.io/0.6.2.yml b/repo/packages/cartographer.packages.kadras.io/0.6.2.yml new file mode 100644 index 0000000..846d0b2 --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.6.2.yml @@ -0,0 +1,131 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + name: cartographer.packages.kadras.io.0.6.2 +spec: + refName: cartographer.packages.kadras.io + version: 0.6.2 + releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.6.2 + releasedAt: "2022-12-16T01:55:13Z" + valuesSchema: + openAPIv3: + title: cartographer.packages.kadras.io.0.6.2 values schema + properties: + ca_cert_data: + type: string + description: 'Optional: PEM Encoded certificate data for image registries with private CA.' + default: "" + excluded_components: + type: array + items: + type: string + default: [] + description: 'Optional: List of components to exclude from installation (e.g. [conventions])' + aws_iam_role_arn: + type: string + description: 'Optional: Arn role that has access to pull images from ECR container registry' + default: "" + cartographer: + type: object + properties: + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maxium amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + conventions: + type: object + properties: + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maxium amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + template: + spec: + fetch: + - imgpkgBundle: + image: index.docker.io/projectcartographer/package-for-cartographer@sha256:b8af2f836e67c21bba28f64f9aa024b7cff1faf65fc89e2fcfc97636484d9f95 + template: + - ytt: + ignoreUnknownComments: true + paths: + - config + - kbld: + paths: + - .imgpkg/images.yml + - '-' + deploy: + - kapp: {} From c8e001e54bc8fb259a0d33ae5bdc177563cabea7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 21 Dec 2022 16:42:52 +0100 Subject: [PATCH 099/601] Support SLSA level 3 --- .github/ISSUE_TEMPLATE/bug-report.md | 28 +++ .github/ISSUE_TEMPLATE/bug_report.md | 38 ---- .github/ISSUE_TEMPLATE/feature-request.md | 17 ++ .github/ISSUE_TEMPLATE/feature_request.md | 20 -- .github/workflows/release.yml | 98 +++++---- README.md | 6 +- .../1.10.0.yml | 36 --- .../1.10.1+kadras.1.yml | 40 ---- .../1.10.1.yml | 40 ---- .../1.23.0+kadras.2.yml | 206 ------------------ .../1.23.0+kadras.3.yml | 206 ------------------ .../contour.packages.kadras.io/1.23.0.yml | 186 ---------------- .../0.31.0.yml | 72 ------ .../0.32.1+kadras.1.yml | 72 ------ .../0.32.1.yml | 72 ------ .../1.8.0.yml | 45 ---- .../1.8.1.yml | 45 ---- .../1.8.0+kadras.1.yml | 122 ----------- .../1.8.0.yml | 122 ----------- .../0.3.0.yml | 34 --- .../kpack.packages.kadras.io/0.6.1.yml | 65 ------ .../kpack.packages.kadras.io/0.7.2.yml | 95 -------- .../kpack.packages.kadras.io/0.8.1.yml | 95 -------- .../0.6.1.yml | 149 ------------- .../0.42.0.yml | 151 ------------- 25 files changed, 107 insertions(+), 1953 deletions(-) create mode 100644 .github/ISSUE_TEMPLATE/bug-report.md delete mode 100644 .github/ISSUE_TEMPLATE/bug_report.md create mode 100644 .github/ISSUE_TEMPLATE/feature-request.md delete mode 100644 .github/ISSUE_TEMPLATE/feature_request.md delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.0.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.1.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.1.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.23.0+kadras.2.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.23.0+kadras.3.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.23.0.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.1.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.0.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.1.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.1.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.0.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.0.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.6.1.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.7.2.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.8.1.yml delete mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.1.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.42.0.yml diff --git a/.github/ISSUE_TEMPLATE/bug-report.md b/.github/ISSUE_TEMPLATE/bug-report.md new file mode 100644 index 0000000..25c4f24 --- /dev/null +++ b/.github/ISSUE_TEMPLATE/bug-report.md @@ -0,0 +1,28 @@ +--- +name: Bug report +about: Tell us about a problem you are experiencing +title: '' +labels: bug +assignees: '' + +--- + +**What steps did you take:** +[A clear and concise description steps that can be used to reproduce the problem.] + +**What happened:** +[A small description of the issue] + +**What did you expect:** +[A description of what was expected] + +**Anything else you would like to add:** +[Additional information that will assist in solving the issue.] + +**Additional context:** +Add any other context about the problem here. + +**Environment:** + +- Kubernetes version (execute `kubectl version`): +- kapp-controller version (execute `kubectl get deployment -n kapp-controller kapp-controller -o yaml` and the annotation is `kbld.k14s.io/images`): diff --git a/.github/ISSUE_TEMPLATE/bug_report.md b/.github/ISSUE_TEMPLATE/bug_report.md deleted file mode 100644 index dd84ea7..0000000 --- a/.github/ISSUE_TEMPLATE/bug_report.md +++ /dev/null @@ -1,38 +0,0 @@ ---- -name: Bug report -about: Create a report to help us improve -title: '' -labels: '' -assignees: '' - ---- - -**Describe the bug** -A clear and concise description of what the bug is. - -**To Reproduce** -Steps to reproduce the behavior: -1. Go to '...' -2. Click on '....' -3. Scroll down to '....' -4. See error - -**Expected behavior** -A clear and concise description of what you expected to happen. - -**Screenshots** -If applicable, add screenshots to help explain your problem. - -**Desktop (please complete the following information):** - - OS: [e.g. iOS] - - Browser [e.g. chrome, safari] - - Version [e.g. 22] - -**Smartphone (please complete the following information):** - - Device: [e.g. iPhone6] - - OS: [e.g. iOS8.1] - - Browser [e.g. stock browser, safari] - - Version [e.g. 22] - -**Additional context** -Add any other context about the problem here. diff --git a/.github/ISSUE_TEMPLATE/feature-request.md b/.github/ISSUE_TEMPLATE/feature-request.md new file mode 100644 index 0000000..87c8ff2 --- /dev/null +++ b/.github/ISSUE_TEMPLATE/feature-request.md @@ -0,0 +1,17 @@ +--- +name: Feature request +about: Suggest an idea for this project +title: '' +labels: enhancement +assignees: '' + +--- + +**Describe the problem/challenge you have:** +[A description of the current challenge that you are experiencing.] + +**Describe the solution you'd like:** +[A clear and concise description of what you want to happen. If applicable a visual representation of the UX.] + +**Anything else you would like to add:** +[Additional information that will assist in solving the issue.] diff --git a/.github/ISSUE_TEMPLATE/feature_request.md b/.github/ISSUE_TEMPLATE/feature_request.md deleted file mode 100644 index bbcbbe7..0000000 --- a/.github/ISSUE_TEMPLATE/feature_request.md +++ /dev/null @@ -1,20 +0,0 @@ ---- -name: Feature request -about: Suggest an idea for this project -title: '' -labels: '' -assignees: '' - ---- - -**Is your feature request related to a problem? Please describe.** -A clear and concise description of what the problem is. Ex. I'm always frustrated when [...] - -**Describe the solution you'd like** -A clear and concise description of what you want to happen. - -**Describe alternatives you've considered** -A clear and concise description of any alternative solutions or features you've considered. - -**Additional context** -Add any other context or screenshots about the feature request here. diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index c5a5110..95111d6 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.5.1 + VERSION: 0.6.0 jobs: build: @@ -16,7 +16,8 @@ jobs: contents: write packages: write outputs: - image-release: ${{ steps.image-info.outputs.release }} + image-name: ${{ steps.image-info.outputs.image_name }} + image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code uses: actions/checkout@v3.1.0 @@ -56,7 +57,9 @@ jobs: package_file=repo/package-repository.yml image_release=$(yq '.spec.fetch.imgpkgBundle.image' ${package_file}) echo "IMAGE_RELEASE=${image_release}" >> $GITHUB_ENV - echo "release=${image_release}" >> $GITHUB_OUTPUT + + echo "image_name=$(echo ${image_release} | cut -d'@' -f1)" >> $GITHUB_OUTPUT + echo "image_digest=$(echo ${image_release} | cut -d'@' -f2)" >> $GITHUB_OUTPUT - name: Add additional tags to OCI image run: | @@ -81,7 +84,8 @@ jobs: packages: write id-token: write env: - IMAGE_RELEASE: ${{ needs.build.outputs.image-release }} + IMAGE_NAME: ${{ needs.build.outputs.image-name }} + IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign uses: sigstore/cosign-installer@v2.8.1 @@ -95,49 +99,63 @@ jobs: - name: Sign image run: | - cosign sign "${IMAGE_RELEASE}" + cosign sign "${IMAGE_NAME}@${IMAGE_DIGEST}" provenance: - name: Provenance - runs-on: ubuntu-22.04 needs: [build,sign] permissions: - packages: write + actions: read id-token: write - env: - IMAGE_RELEASE: ${{ needs.build.outputs.image-release }} - PROVENANCE_FILE: provenance.att - steps: - - name: Install Cosign - uses: sigstore/cosign-installer@v2.8.1 + packages: write + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.4.0 + with: + image: ${{ needs.build.outputs.image-name }} + digest: ${{ needs.build.outputs.image-digest }} + registry-username: ${{ inputs.registry-username }} + secrets: + registry-password: ${{ secrets.GITHUB_TOKEN }} + + # provenance: + # name: Provenance + # runs-on: ubuntu-22.04 + # needs: [build,sign] + # permissions: + # packages: write + # id-token: write + # env: + # IMAGE_RELEASE: ${{ needs.build.outputs.image-release }} + # PROVENANCE_FILE: provenance.att + # steps: + # - name: Install Cosign + # uses: sigstore/cosign-installer@v2.8.1 - - name: Log into container registry - uses: redhat-actions/podman-login@v1.4 - with: - username: ${{ github.actor }} - password: ${{ secrets.GITHUB_TOKEN }} - registry: ${{ env.REGISTRY }} + # - name: Log into container registry + # uses: redhat-actions/podman-login@v1.4 + # with: + # username: ${{ github.actor }} + # password: ${{ secrets.GITHUB_TOKEN }} + # registry: ${{ env.REGISTRY }} - - name: Extract digest - run: | - digest=$(echo ${IMAGE_RELEASE} | cut -d "@" -f2) - echo "IMAGE_DIGEST=${digest}" >> $GITHUB_ENV + # - name: Extract digest + # run: | + # digest=$(echo ${IMAGE_RELEASE} | cut -d "@" -f2) + # echo "IMAGE_DIGEST=${digest}" >> $GITHUB_ENV - - name: Generate provenance - uses: philips-labs/slsa-provenance-action@v0.7.2 - with: - command: generate - subcommand: container - arguments: --repository ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} --tags ${{ env.VERSION }} --digest ${{ env.IMAGE_DIGEST }} --output-path ${{ env.PROVENANCE_FILE }} - env: - COSIGN_EXPERIMENTAL: 0 + # - name: Generate provenance + # uses: philips-labs/slsa-provenance-action@v0.7.2 + # with: + # command: generate + # subcommand: container + # arguments: --repository ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} --tags ${{ env.VERSION }} --digest ${{ env.IMAGE_DIGEST }} --output-path ${{ env.PROVENANCE_FILE }} + # env: + # COSIGN_EXPERIMENTAL: 0 - - name: Attach provenance - run: | - jq '.predicate' "${PROVENANCE_FILE}" > provenance-predicate.att - cosign attest --predicate provenance-predicate.att --type slsaprovenance "${IMAGE_RELEASE}" + # - name: Attach provenance + # run: | + # jq '.predicate' "${PROVENANCE_FILE}" > provenance-predicate.att + # cosign attest --predicate provenance-predicate.att --type slsaprovenance "${IMAGE_RELEASE}" - - uses: actions/upload-artifact@v3.1.1 - with: - name: provenance.att - path: ${{ env.PROVENANCE_FILE }} + # - uses: actions/upload-artifact@v3.1.1 + # with: + # name: provenance.att + # path: ${{ env.PROVENANCE_FILE }} diff --git a/README.md b/README.md index ae66ff6..c06a6af 100644 --- a/README.md +++ b/README.md @@ -1,5 +1,7 @@ # Kadras Packages +The SLSA Level 3 badge + A collection of Kubernetes-native packages built with [Carvel](https://carvel.dev) and part of the Kadras project. ## Package Repository @@ -95,6 +97,6 @@ This package repository is inspired by the work done by the Carvel team and the ## Supply Chain Security -This project is compliant with level 2 of the [SLSA Framework](https://slsa.dev). +This project is compliant with level 3 of the [SLSA Framework](https://slsa.dev). -The SLSA Level 2 badge +The SLSA Level 3 badge diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.0.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.0.yml deleted file mode 100644 index 9dd6191..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.10.0.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.10.0 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2022-10-22T20:56:26Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-cert-manager@sha256:e0f240e13eb7a75567f0d51a64019ece053bc0b5520f0a8bb3390b126534871f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager - type: string - type: object - version: 1.10.0 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.1.yml deleted file mode 100644 index 68a0c09..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.1.yml +++ /dev/null @@ -1,40 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.10.1+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2022-11-27T15:22:22Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-cert-manager@sha256:fc0fe8d308308145f39c5aaa033c0e2f9bc5339a36422f284cf152866f08de52 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager - type: string - type: object - version: 1.10.1+kadras.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.1.yml deleted file mode 100644 index 4058c03..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.10.1.yml +++ /dev/null @@ -1,40 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.10.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2022-11-23T19:46:49Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-cert-manager@sha256:14dd64e02208c5baabd29c3c1e02472e3f91890dc8b3d81384d0bee57db49b53 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager - type: string - type: object - version: 1.10.1 diff --git a/repo/packages/contour.packages.kadras.io/1.23.0+kadras.2.yml b/repo/packages/contour.packages.kadras.io/1.23.0+kadras.2.yml deleted file mode 100644 index a3a1d1e..0000000 --- a/repo/packages/contour.packages.kadras.io/1.23.0+kadras.2.yml +++ /dev/null @@ -1,206 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.23.0+kadras.2 -spec: - capacityRequirementsDescription: Varies significantly based on number of Services, - Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each - Contour and Envoy pod, but this can and should be tuned based on observed usage. - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/projectcontour/contour/releases - releasedAt: "2022-11-13T20:14:23Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-contour@sha256:630042e1bc237671ff2821f1487bbe85a6564602b18481d49561e0c2990a0ca4 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - description: OpenAPIv3 Schema - properties: - certificates: - additionalProperties: false - description: Settings for the TLS certificates for securing communication - between Contour and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If useCertManager is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If useCertManager is false, this field is ignored. - type: string - useCertManager: - default: false - description: Whether to use cert-manager to provision TLS certificates - for securing communication between Contour and Envoy. If false, the - upstream Contour certgen job will be used to provision certificates. - If true, the cert-manager addon must be installed in the cluster. - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - configFileContents: - default: null - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - logLevel: - default: info - description: The Contour log level. Valid options are 'info' and 'debug'. - type: string - replicas: - default: 2 - description: How many Contour pod replicas to have. - type: integer - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enable: - default: false - description: Whether to enable host ports. If false, http & https - are ignored. - type: boolean - http: - default: 80 - description: If enable == true, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enable == true, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - logLevel: - default: info - description: The Envoy log level. - type: string - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If infrastructure - provider is not 'aws', these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: "" - description: The external traffic policy for the Envoy service. - If type is 'ClusterIP', this field is ignored. Otherwise, defaults - to 'Cluster' for vsphere and 'Local' for others. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If type is not 'LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not 'NodePort' or 'LoadBalancer', these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: "" - description: The type of Kubernetes service to provision for Envoy. - If not specified, will default to 'NodePort' for docker and vsphere - and 'LoadBalancer' for others. - type: string - type: object - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - replicas: - default: 2 - description: The number of Envoy replicas to deploy when 'type' - is set to 'Deployment'. If not specified, it will default to '2'. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload Envoy is deployed as. - Options are 'Deployment' or 'DaemonSet'. If not specified, will - default to 'DaemonSet'. - type: string - type: object - type: object - infrastructureProvider: - default: "" - description: The underlying infrastructure provider. Options are aws, azure, - docker and vsphere. This field is not required, but enables better validation - and defaulting if provided. - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.23.0+kadras.2 diff --git a/repo/packages/contour.packages.kadras.io/1.23.0+kadras.3.yml b/repo/packages/contour.packages.kadras.io/1.23.0+kadras.3.yml deleted file mode 100644 index b731b17..0000000 --- a/repo/packages/contour.packages.kadras.io/1.23.0+kadras.3.yml +++ /dev/null @@ -1,206 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.23.0+kadras.3 -spec: - capacityRequirementsDescription: Varies significantly based on number of Services, - Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each - Contour and Envoy pod, but this can and should be tuned based on observed usage. - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/projectcontour/contour/releases - releasedAt: "2022-11-13T21:09:17Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-contour@sha256:11386b167df2e945b07effe506169e073b0678251586f2902420a58ff8ea6eee - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - description: OpenAPIv3 Schema - properties: - certificates: - additionalProperties: false - description: Settings for the TLS certificates for securing communication - between Contour and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If useCertManager is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If useCertManager is false, this field is ignored. - type: string - useCertManager: - default: false - description: Whether to use cert-manager to provision TLS certificates - for securing communication between Contour and Envoy. If false, the - upstream Contour certgen job will be used to provision certificates. - If true, the cert-manager addon must be installed in the cluster. - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - configFileContents: - default: null - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - logLevel: - default: info - description: The Contour log level. Valid options are 'info' and 'debug'. - type: string - replicas: - default: 2 - description: How many Contour pod replicas to have. - type: integer - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enable: - default: false - description: Whether to enable host ports. If false, http & https - are ignored. - type: boolean - http: - default: 80 - description: If enable == true, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enable == true, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - logLevel: - default: info - description: The Envoy log level. - type: string - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If infrastructure - provider is not 'aws', these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: "" - description: The external traffic policy for the Envoy service. - If type is 'ClusterIP', this field is ignored. Otherwise, defaults - to 'Cluster' for vsphere and 'Local' for others. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If type is not 'LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not 'NodePort' or 'LoadBalancer', these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: "" - description: The type of Kubernetes service to provision for Envoy. - If not specified, will default to 'NodePort' for docker and vsphere - and 'LoadBalancer' for others. - type: string - type: object - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - replicas: - default: 2 - description: The number of Envoy replicas to deploy when 'type' - is set to 'Deployment'. If not specified, it will default to '2'. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload Envoy is deployed as. - Options are 'Deployment' or 'DaemonSet'. If not specified, will - default to 'DaemonSet'. - type: string - type: object - type: object - infrastructureProvider: - default: "" - description: The underlying infrastructure provider. Options are aws, azure, - docker and vsphere. This field is not required, but enables better validation - and defaulting if provided. - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.23.0+kadras.3 diff --git a/repo/packages/contour.packages.kadras.io/1.23.0.yml b/repo/packages/contour.packages.kadras.io/1.23.0.yml deleted file mode 100644 index 133c6b5..0000000 --- a/repo/packages/contour.packages.kadras.io/1.23.0.yml +++ /dev/null @@ -1,186 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.23.0 -spec: - capacityRequirementsDescription: Varies significantly based on number of Services, - Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each - Contour and Envoy pod, but this can and should be tuned based on observed usage. - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/projectcontour/contour/releases - releasedAt: "2022-10-22T16:07:26Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-contour@sha256:b2dfa33475159ac2c38965542cc3cce59b30491a08633461e85acb15343f2535 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - description: OpenAPIv3 Schema - properties: - certificates: - additionalProperties: false - description: Settings for the TLS certificates for securing communication - between Contour and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If useCertManager is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If useCertManager is false, this field is ignored. - type: string - useCertManager: - default: false - description: Whether to use cert-manager to provision TLS certificates - for securing communication between Contour and Envoy. If false, the - upstream Contour certgen job will be used to provision certificates. - If true, the cert-manager addon must be installed in the cluster. - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - configFileContents: - default: null - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - logLevel: - default: info - description: The Contour log level. Valid options are 'info' and 'debug'. - type: string - replicas: - default: 2 - description: How many Contour pod replicas to have. - type: integer - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enable: - default: false - description: Whether to enable host ports. If false, http & https - are ignored. - type: boolean - http: - default: 80 - description: If enable == true, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enable == true, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - logLevel: - default: info - description: The Envoy log level. - type: string - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If infrastructure - provider is not 'aws', these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: "" - description: The external traffic policy for the Envoy service. - If type is 'ClusterIP', this field is ignored. Otherwise, defaults - to 'Cluster' for vsphere and 'Local' for others. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If type is not 'LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not 'NodePort' or 'LoadBalancer', these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: "" - description: The type of Kubernetes service to provision for Envoy. - If not specified, will default to 'NodePort' for docker and vsphere - and 'LoadBalancer' for others. - type: string - type: object - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: object - infrastructureProvider: - default: "" - description: The underlying infrastructure provider. Options are aws, azure, - docker and vsphere. This field is not required, but enables better validation - and defaulting if provided. - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.23.0 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0.yml deleted file mode 100644 index f6e7b7a..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0.yml +++ /dev/null @@ -1,72 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.31.0 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/fluxcd/source-controller/releases - releasedAt: "2022-10-25T20:53:27Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:bfa861d1153cc3136fd52c3daec21d7833a80c8beb881ec5cd9030514ddb3159 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy URL - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the source-controller Service - type: integer - type: object - version: 0.31.0 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.1.yml deleted file mode 100644 index b32dcc8..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.1.yml +++ /dev/null @@ -1,72 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.32.1+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/fluxcd/source-controller/releases - releasedAt: "2022-11-27T21:29:11Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:505bca54e3b3c22607c2e3ad22622334828348fb761cdd50adb1bee5f7d9c21b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy URL - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the source-controller Service - type: integer - type: object - version: 0.32.1+kadras.1 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1.yml deleted file mode 100644 index 7942f3d..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1.yml +++ /dev/null @@ -1,72 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.32.1 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/fluxcd/source-controller/releases - releasedAt: "2022-11-23T19:59:00Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:255eedc6c25ad88261df7df289ac6acdba2fab97544265c0b9a93cdf4d9c3c70 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy URL - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the source-controller Service - type: integer - type: object - version: 0.32.1 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.0.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.0.yml deleted file mode 100644 index 8daed67..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.8.0.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.8.0 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/knative/eventing/releases - releasedAt: "2022-10-25T20:47:08Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-eventing@sha256:08a2585fb7c6cc8d862bbaa36050f952bdeb0a5ee0501292cea1dd3148f72f8b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.8.0 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.1.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.1.yml deleted file mode 100644 index b742e4f..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.8.1.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.8.1 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/knative/eventing/releases - releasedAt: "2022-11-24T06:30:01Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-eventing@sha256:7b545966388cf21fc6b028928c54ad0f72f3e178cc585f60a6241a6badfac5a0 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.8.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.1.yml deleted file mode 100644 index b753d1d..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.1.yml +++ /dev/null @@ -1,122 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.8.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/knative/serving/releases - releasedAt: "2022-11-25T23:23:56Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-serving@sha256:a4fb26462934be081544939ecf78716f2048c9ded6b1f660e9183cace87d001f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - domain: - additionalProperties: false - description: DNS configuration - properties: - name: - default: "" - description: Your own domain name if type real or empty if type sslip.io - or nip.io - type: string - type: - default: nip.io - description: Type of DNS configuration - type: string - url_template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The domain template to use when creating new services - type: string - type: object - ingress: - additionalProperties: false - description: Ingress configuration - properties: - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internale Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed - type: string - type: object - type: object - namespace: - default: knative-serving - description: The namespace where to install Knative Serving - type: string - scaling: - additionalProperties: false - description: Configuration for the Knative autoscaler - properties: - allow_zero_initial_scale: - default: "true" - description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' - annotation can be set to 0 - type: string - initial_scale: - default: "1" - description: The initial target scale of a revision after creation - type: string - max_scale: - default: "0" - description: The maximum scale of a revision. If set to 0, the revision - has no maximum scale. - type: string - min_scale: - default: "0" - description: The minimum scale of a revision - type: string - scale_down_delay: - default: 0s - description: The amount of time that must pass at reduced concurrency - before a scale down decision is applied. If 0s, no delay. - type: string - type: object - tls: - additionalProperties: false - description: Configuration for automatic TLS certificates - properties: - certmanager: - additionalProperties: false - description: Configuration for integrating with cert-manager for certificate - issuing - properties: - clusterissuer: - default: "" - description: Provide a cluster issuer if you want to enable auto-TLS - type: string - type: object - type: object - type: object - version: 1.8.0+kadras.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.0.yml deleted file mode 100644 index 4f59793..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.8.0.yml +++ /dev/null @@ -1,122 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.8.0 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/knative/serving/releases - releasedAt: "2022-10-25T20:41:25Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-serving@sha256:58d4eef2ee7a909f277c6f2cb4ea24a63f16d865183b12b9192f19fb3a6c80a5 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - domain: - additionalProperties: false - description: DNS configuration - properties: - name: - default: "" - description: Your own domain name if type real or empty if type sslip.io - or nip.io - type: string - type: - default: nip.io - description: Type of DNS configuration - type: string - url_template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The domain template to use when creating new services - type: string - type: object - ingress: - additionalProperties: false - description: Ingress configuration - properties: - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internale Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed - type: string - type: object - type: object - namespace: - default: knative-serving - description: The namespace where to install Knative Serving - type: string - scaling: - additionalProperties: false - description: Configuration for the Knative autoscaler - properties: - allow_zero_initial_scale: - default: "true" - description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' - annotation can be set to 0 - type: string - initial_scale: - default: "1" - description: The initial target scale of a revision after creation - type: string - max_scale: - default: "0" - description: The maximum scale of a revision. If set to 0, the revision - has no maximum scale. - type: string - min_scale: - default: "0" - description: The minimum scale of a revision - type: string - scale_down_delay: - default: 0s - description: The amount of time that must pass at reduced concurrency - before a scale down decision is applied. If 0s, no delay. - type: string - type: object - tls: - additionalProperties: false - description: Configuration for automatic TLS certificates - properties: - certmanager: - additionalProperties: false - description: Configuration for integrating with cert-manager for certificate - issuing - properties: - clusterissuer: - default: "" - description: Provide a cluster issuer if you want to enable auto-TLS - type: string - type: object - type: object - type: object - version: 1.8.0 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.0.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.0.yml deleted file mode 100644 index 2bea3f7..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.0.yml +++ /dev/null @@ -1,34 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.3.0 -spec: - refName: kpack-dependencies.packages.kadras.io - releasedAt: "2022-11-01T17:15:52Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kpack-dependencies@sha256:fba211984814aabdeee418506a0909abea1d8064f04c5d1b7cc462eb3db4afc6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - default: "" - description: The OCI registry where to publish builder images. The same - as configured in kpack. - type: string - type: object - version: 0.3.0 diff --git a/repo/packages/kpack.packages.kadras.io/0.6.1.yml b/repo/packages/kpack.packages.kadras.io/0.6.1.yml deleted file mode 100644 index a432073..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.6.1.yml +++ /dev/null @@ -1,65 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: kpack.packages.kadras.io.0.6.1 -spec: - refName: kpack.packages.kadras.io - version: 0.6.1 - capacityRequirementsDescription: Registry with > 1GB available space - releaseNotes: https://github.com/pivotal/kpack/releases/tag/v0.6.1 - valuesSchema: - openAPIv3: - title: kpack.packages.kadras.io values schema - properties: - kp_default_repository: - type: string - description: docker repository - examples: - - registry.io/kpack - kp_default_repository_secret: - type: object - description: Secret reference for kp_default_repository credentials. Mutually exclusive with kp_default_repository_username/password. Requires Carvel secretgen-controller. - properties: - name: - description: Secret name for kp_default_repository credentials of type kubernetes.io/dockerconfigjson. - type: string - namespace: - description: Secret namespace for kp_default_repository credentials. - type: string - kp_default_repository_username: - type: string - description: registry username - examples: - - janedoe@vmware.com - kp_default_repository_password: - type: string - description: registry password - examples: - - password - http_proxy: - type: string - description: the HTTP proxy to use for network traffic - https_proxy: - type: string - description: the HTTPS proxy to use for network traffic. - no_proxy: - type: string - description: A comma-separated list of hostnames, IP addresses, or IP ranges in CIDR format that should not use a proxy - ca_cert_data: - type: string - description: CA Certificate to be injected into the kpack controller trust store for communicating with self signed registries. - template: - spec: - fetch: - - imgpkgBundle: - image: projects.registry.vmware.com/kpack/release@sha256:3965faeb09836e625f8d5a857ad6d31585dd331ea0307423b5ac75180bffb0d7 - template: - - ytt: - paths: - - config/ - - kbld: - paths: - - '-' - - .imgpkg/images.yml - deploy: - - kapp: {} diff --git a/repo/packages/kpack.packages.kadras.io/0.7.2.yml b/repo/packages/kpack.packages.kadras.io/0.7.2.yml deleted file mode 100644 index ced0179..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.7.2.yml +++ /dev/null @@ -1,95 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.7.2 -spec: - capacityRequirementsDescription: Registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/pivotal/kpack/releases - releasedAt: "2022-10-30T19:14:37Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-kpack@sha256:e3f5138646859b197af3d92bafce1a590c688ee95c7da3bab56ce61edcadc07a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'CA Certificate to be injected into the kpack controller trust - store for communicating with self signed registries. Note: This will not - be injected into builds, you need to use the cert injection webhook with - the kpack.io/build label value' - type: string - kp_default_repository: - default: "" - description: The default repository to use for builder images and dependencies - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - kp_default_repository_aws_iam_role_arn: - default: "" - description: IAM credentials to access kp_default_repository if the registry - is on AWS - type: string - kp_default_repository_password: - default: "" - description: 'Token to access kp_default_repository. Note: Use contents - of service account key json for GCR' - type: string - kp_default_repository_secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to access - kp_default_repository - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - kp_default_repository - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials to - access kp_default_repository - type: string - type: object - kp_default_repository_username: - default: "" - description: 'Username to access kp_default_repository. Note: Use _json_key - for GCR' - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - type: object - version: 0.7.2 diff --git a/repo/packages/kpack.packages.kadras.io/0.8.1.yml b/repo/packages/kpack.packages.kadras.io/0.8.1.yml deleted file mode 100644 index e8f94fc..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.8.1.yml +++ /dev/null @@ -1,95 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.8.1 -spec: - capacityRequirementsDescription: Registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/pivotal/kpack/releases - releasedAt: "2022-11-22T21:50:17Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-kpack@sha256:a19bd62bfc496920f6578cf77378732db6efacfe143cc2c7b4766cf0d85ba51a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'CA Certificate to be injected into the kpack controller trust - store for communicating with self signed registries. Note: This will not - be injected into builds, you need to use the cert injection webhook with - the kpack.io/build label value' - type: string - kp_default_repository: - default: "" - description: The default repository to use for builder images and dependencies - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - kp_default_repository_aws_iam_role_arn: - default: "" - description: IAM credentials to access kp_default_repository if the registry - is on AWS - type: string - kp_default_repository_password: - default: "" - description: 'Token to access kp_default_repository. Note: Use contents - of service account key json for GCR' - type: string - kp_default_repository_secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to access - kp_default_repository - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - kp_default_repository - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials to - access kp_default_repository - type: string - type: object - kp_default_repository_username: - default: "" - description: 'Username to access kp_default_repository. Note: Use _json_key - for GCR' - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - type: object - version: 0.8.1 diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.1.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.1.yml deleted file mode 100644 index b7ee7a4..0000000 --- a/repo/packages/metrics-server.packages.kadras.io/0.6.1.yml +++ /dev/null @@ -1,149 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: metrics-server.packages.kadras.io.0.6.1 -spec: - licenses: - - Apache 2.0 - refName: metrics-server.packages.kadras.io - releaseNotes: https://github.com/kubernetes-sigs/metrics-server/releases - releasedAt: "2022-10-22T20:07:36Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-metrics-server@sha256:ea17539f905f37760155a9df26c848dcda2273875d4aa06b369e7a6dfd5e2c8a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - description: OpenAPIv3 Schema for metrics-server - properties: - daemonset: - additionalProperties: false - properties: - updateStrategy: - default: null - description: Update strategy of daemonsets - nullable: true - type: string - type: object - deployment: - additionalProperties: false - properties: - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: null - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - nullable: true - type: integer - maxUnavailable: - default: null - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - nullable: true - type: integer - type: object - updateStrategy: - default: null - description: Update strategy of deployments - nullable: true - type: string - type: object - metricsServer: - additionalProperties: false - properties: - config: - additionalProperties: false - properties: - apiServiceInsecureTLS: - default: true - description: Whether to enable insecure TLS for metrics-server api - service - type: boolean - args: - default: [] - description: Arguments passed into metrics-server container - items: - default: "" - type: string - type: array - probe: - additionalProperties: false - properties: - failureThreshold: - default: 3 - description: Probe failureThreshold of metrics-server deployment - type: integer - periodSeconds: - default: 10 - description: Probe period of metrics-server deployment - type: integer - type: object - securePort: - default: 4443 - description: The HTTPS secure port used by metrics-server - type: integer - tolerations: - default: [] - description: Metrics-server deployment tolerations - nullable: true - updateStrategy: - default: RollingUpdate - description: The update strategy of the metrics-server deployment - type: string - type: object - createNamespace: - default: true - description: Whether to create namespace specified for metrics-server - type: boolean - image: - additionalProperties: false - properties: - name: - default: "" - description: The path of image - type: string - pullPolicy: - default: IfNotPresent - description: The pull policy of image - type: string - repository: - default: "" - description: The repository of metrics-server image - type: string - tag: - default: "" - description: The image tag - type: string - type: object - namespace: - default: null - description: The namespace value used by older templates, will be overwriten - if top level namespace is present, kept for backward compatibility - nullable: true - type: string - type: object - namespace: - default: kube-system - description: The namespace in which metrics-server is deployed - type: string - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - type: object - version: 0.6.1 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0.yml deleted file mode 100644 index 4ea24e5..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0.yml +++ /dev/null @@ -1,151 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.42.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/tektoncd/pipeline/releases - releasedAt: "2022-11-29T22:26:40Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:86ebaf0133d4647454c3ddcb3783b344dcb750b37b350612bf534994db349bd9 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - defaults: - additionalProperties: false - description: Default configuration stored in the config-defaults ConfigMap. - properties: - affinity_assistant_pod_template: - default: "" - description: Pod template to use for affinity assistant pods. - type: string - cloud_events_sink: - default: "" - description: CloudEvents sink to be used for TaskRun and PipelineRun. - If no sink is specified, no CloudEvent is generated. - type: string - managed_by_label_value: - default: tekton-pipelines - description: Value given to the 'app.kubernetes.io/managed-by' label - applied to all Pods created for TaskRuns. - type: string - max_matrix_combinations_count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - pod_template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - service_account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - task_run_workspace_binding: - default: "" - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - example: 'emptyDir: {}' - type: string - x-example-description: Use emptyDir volume for workspace - timeout_minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the feature-flags ConfigMap. - properties: - await_sidecar_readiness: - default: "true" - description: Setting this flag to 'false' will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - disable_affinity_assistant: - default: "false" - description: Setting this flag to 'true' will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable_creds_init: - default: "false" - description: Setting this flag to 'true' will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable_api_fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable_custom_tasks: - default: "false" - description: Setting this flag to 'true' enables the use of custom tasks - from within pipelines. This is an experimental feature and thus should - still be considered an alpha feature. - type: string - enable_provenance_in_status: - default: "false" - description: Setting this flag to 'true' enables populating the 'provenance' - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable_tekton_oci_bundles: - default: "false" - description: Setting this flag to 'true' enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - require_git_ssh_secret_known_hosts: - default: "false" - description: Setting this flag to 'true' will require that any Git SSH - Secret offered to Tekton must have known_hosts included. - type: string - resource_verification_mode: - default: skip - description: Setting this flag to 'enforce' will enforce verification - of tasks/pipeline. Failing to verify will fail the taskrun/pipelinerun. - 'warn' will only log the err message and 'skip' will skip the whole - verification. - type: string - running_in_environment_with_injected_sidecars: - default: "true" - description: This option should be set to 'false' when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send_cloudevents_for_runs: - default: "false" - description: Setting this flag to 'true' enables CloudEvents for Runs, - as long as a CloudEvents sink is configured in the config-defaults - config map. - type: string - type: object - type: object - version: 0.42.0 From 62a5d0b4640bbc265c1ae636a5465ded45ec852f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 21 Dec 2022 16:52:23 +0100 Subject: [PATCH 100/601] Update release workflow --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 95111d6..4425adf 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -111,7 +111,7 @@ jobs: with: image: ${{ needs.build.outputs.image-name }} digest: ${{ needs.build.outputs.image-digest }} - registry-username: ${{ inputs.registry-username }} + registry-username: ${{ github.actor }} secrets: registry-password: ${{ secrets.GITHUB_TOKEN }} From ff5f13367bcae3355b5cd5b4b654147a70dfcd59 Mon Sep 17 00:00:00 2001 From: github-actions Date: Wed, 21 Dec 2022 17:55:58 +0000 Subject: [PATCH 101/601] Update Application Platform metadata and add version 0.4.0 --- .../0.4.0.yml | 116 ++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.4.0.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.4.0.yml b/repo/packages/application-platform.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..f471e23 --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.4.0.yml @@ -0,0 +1,116 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.4.0 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releasedAt: "2022-12-21T17:53:47Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:90b70929ec1238ec5b4b907e284ebc1b25355d9940b4b46f56e9b0dd54639771 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + golden_path_web: + default: {} + description: Configuration for the Cartographer Golden Path Web package + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.4.0 From 3009a65a3d3c78e66957e48c9fa3f6d0ad135c44 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 21 Dec 2022 18:57:11 +0100 Subject: [PATCH 102/601] Bump version to 0.6.1 --- .github/workflows/release.yml | 2 +- README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4425adf..1715a59 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.6.0 + VERSION: 0.6.1 jobs: build: diff --git a/README.md b/README.md index c06a6af..aeed175 100644 --- a/README.md +++ b/README.md @@ -47,7 +47,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace kadras-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.5.1 \ + --url ghcr.io/arktonix/kadras-packages:0.6.1 \ -n kadras-packages ``` From 95dcb9457090a33ea1625355e49d527891e2c7ed Mon Sep 17 00:00:00 2001 From: github-actions Date: Sat, 24 Dec 2022 15:16:07 +0000 Subject: [PATCH 103/601] Update Cartographer Blueprints metadata and add version 0.3.0 --- .../0.3.0.yml | 38 +++++++++++++++++++ 1 file changed, 38 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.3.0.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.0.yml new file mode 100644 index 0000000..ea1c6d4 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.0.yml @@ -0,0 +1,38 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.3.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releasedAt: "2022-12-24T15:14:09Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-blueprints@sha256:fa8470ec3789a21a3ed06da7ca2f4e314bff6ff02514e0fc4b52f0b147c974df + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being applied. + items: + default: "" + type: string + type: array + type: object + version: 0.3.0 From 924dd2f2caab4d0f89ccafd680c57dc0a7d5464d Mon Sep 17 00:00:00 2001 From: github-actions Date: Sat, 24 Dec 2022 16:15:11 +0000 Subject: [PATCH 104/601] Update Cartographer Supply Chains metadata and add version 0.3.0 --- .../0.3.0.yml | 135 ++++++++++++++++++ .../metadata.yml | 17 +++ 2 files changed, 152 insertions(+) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.0.yml create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.0.yml new file mode 100644 index 0000000..12917c3 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.0.yml @@ -0,0 +1,135 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.3.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releasedAt: "2022-12-24T16:13:25Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-supply-chains@sha256:75d932ea4d326c7e104ae1403b2999d964f71282c11d521b98e06094dd0317f3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cluster_builder: + default: default + description: The ClusterBuilder used by kpack + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + gitops: + additionalProperties: false + description: Configuration for the GitOps steps in the supply chain + properties: + access_secret: + default: git-secret + description: The Secret containing credentials to access the specified + Git repository + type: string + branch: + default: main + description: The branch to use for GitOps activities + type: string + commit_message: + default: Update from Cartographer + description: The commit message to use when pushing configuration changes + to Git + type: string + commit_strategy: + default: direct + description: Whether to commit configuration changes to Git directly + or via a pull request + type: string + pull_request: + additionalProperties: false + properties: + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated + type: string + pull_request_body: + default: "" + description: The body of the pull request + type: string + pull_request_title: + default: "" + description: The title of the pull request + type: string + server_kind: + default: "" + description: The type of Git server where to open the pull request + example: github + type: string + x-example-description: Open a pull request on GitHub + type: object + repository_name: + default: "" + description: The name of the Git repository to use for GitOps + type: string + repository_owner: + default: "" + description: The owner of the specified Git repository + type: string + server_address: + default: "" + description: The server hosting the specified Git repository + type: string + user_email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository + type: string + user_name: + default: cartographer + description: The name of the user interacting with the Git repository + type: string + type: object + registry: + additionalProperties: false + description: Configuration for the OCI Registry where to store the application + images + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data for the OCI Registry where + the deployment configuration files will be pushed to. + type: string + repository: + default: "" + description: The repository under an OCI Registry where to store the + application images + type: string + server: + default: "" + description: The server of the OCI Registry where to store the application + images + type: string + type: object + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + supply_chain: + default: basic + description: The type of supply chain to use + type: string + type: object + version: 0.3.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..e67b857 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml @@ -0,0 +1,17 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io +spec: + categories: + - ci/cd + - golden paths + - platform engineering + displayName: cartographer-supply-chains + longDescription: Cartographer supply chains used to build golden paths to production + for applications and functions. + maintainers: + - name: Thomas Vitale + providerName: Arktonix + shortDescription: Supply chains for applications and functions. From 492b48fd78cc6e1fbaace85af8ab096e3fe6cc0a Mon Sep 17 00:00:00 2001 From: github-actions Date: Sat, 24 Dec 2022 16:27:06 +0000 Subject: [PATCH 105/601] Update Cartographer Delivery metadata and add version 0.2.0 --- .../0.2.0.yml | 51 +++++++++++++++++++ 1 file changed, 51 insertions(+) create mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.2.0.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..617d4ba --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/0.2.0.yml @@ -0,0 +1,51 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io.0.2.0 +spec: + refName: cartographer-delivery.packages.kadras.io + releasedAt: "2022-12-24T16:25:17Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/cartographer-delivery@sha256:b9e01583113ccd1b0cb21b790093b26c03fa89e966c6c0a7307d014bfba4e1ec + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + delivery_chain: + default: basic + description: The type of delivery chain to use when deploying workloads + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + gitops: + additionalProperties: false + description: Configuration for the GitOps steps in the delivery chain + properties: + access_secret: + default: git-secret + description: The Secret containing credentials to access the specified + Git repository + type: string + type: object + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + type: object + version: 0.2.0 From b1c4545edc8fa2af40632654740613b8af8ed6e1 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Dec 2022 17:30:22 +0100 Subject: [PATCH 106/601] Remove deprecated versions --- .../0.1.3.yml | 36 ----- .../0.2.0.yml | 36 ----- .../0.1.0.yml | 41 ------ .../0.1.1.yml | 41 ------ .../0.1.1.yml | 128 ------------------ .../0.2.0.yml | 128 ------------------ .../metadata.yml | 17 --- 7 files changed, 427 deletions(-) delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.1.3.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.2.0.yml delete mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.1.1.yml delete mode 100644 repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.1.yml delete mode 100644 repo/packages/cartographer-golden-path-web.packages.kadras.io/0.2.0.yml delete mode 100644 repo/packages/cartographer-golden-path-web.packages.kadras.io/metadata.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.3.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.3.yml deleted file mode 100644 index 44ea95e..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.1.3.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.1.3 -spec: - refName: cartographer-blueprints.packages.kadras.io - releasedAt: "2022-10-04T11:45:33Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-blueprints@sha256:4fbc55bca52d533a5f7120b7394b23163d98293e9cfa759182ef2bb961306661 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being applied. - items: - default: "" - type: string - type: array - type: object - version: 0.1.3 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.2.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.2.0.yml deleted file mode 100644 index 3784099..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.2.0 -spec: - refName: cartographer-blueprints.packages.kadras.io - releasedAt: "2022-10-26T19:45:11Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-blueprints@sha256:b03ad09707b3ebb5de2f3657bfc1e43e98da3e114bb7c67133509d2ea133114b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being applied. - items: - default: "" - type: string - type: array - type: object - version: 0.2.0 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.1.0.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.1.0.yml deleted file mode 100644 index 9e7bb2f..0000000 --- a/repo/packages/cartographer-delivery.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,41 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-delivery.packages.kadras.io.0.1.0 -spec: - refName: cartographer-delivery.packages.kadras.io - releasedAt: "2022-10-03T12:40:38Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-golden-paths/delivery@sha256:ae1240360cc97218b667070c2c470e693bc835a890e72e524c4693a7501ccc32 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - delivery_chain: - default: basic - description: The type of delivery chain to use when deploying workloads - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - type: object - version: 0.1.0 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.1.1.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.1.1.yml deleted file mode 100644 index d81a915..0000000 --- a/repo/packages/cartographer-delivery.packages.kadras.io/0.1.1.yml +++ /dev/null @@ -1,41 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-delivery.packages.kadras.io.0.1.1 -spec: - refName: cartographer-delivery.packages.kadras.io - releasedAt: "2022-10-04T12:14:48Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-delivery@sha256:ae1240360cc97218b667070c2c470e693bc835a890e72e524c4693a7501ccc32 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - delivery_chain: - default: basic - description: The type of delivery chain to use when deploying workloads - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - type: object - version: 0.1.1 diff --git a/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.1.yml b/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.1.yml deleted file mode 100644 index ca3c2b9..0000000 --- a/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.1.1.yml +++ /dev/null @@ -1,128 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-golden-path-web.packages.kadras.io.0.1.1 -spec: - refName: cartographer-golden-path-web.packages.kadras.io - releasedAt: "2022-10-04T08:56:25Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-golden-path-web@sha256:21270578f2c96717aed21091372ef3c65966d2bd3798a769222578088b31ad99 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cluster_builder: - default: default - description: The ClusterBuilder used by kpack - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - gitops: - additionalProperties: false - description: Configuration for the GitOps steps in the supply chain - properties: - access_secret: - default: git-secret - description: The Secret containing credentials to access the specified - Git repository - type: string - branch: - default: main - description: The branch to use for GitOps activities - type: string - commit_message: - default: Update from Cartographer - description: The commit message to use when pushing configuration changes - to Git - type: string - commit_strategy: - default: direct - description: Whether to commit configuration changes to Git directly - or via a pull request - type: string - pull_request: - additionalProperties: false - properties: - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated - type: string - pull_request_body: - default: "" - description: The body of the pull request - type: string - pull_request_title: - default: "" - description: The title of the pull request - type: string - server_kind: - default: "" - description: The type of Git server where to open the pull request - example: github - type: string - x-example-description: Open a pull request on GitHub - type: object - repository_name: - default: "" - description: The name of the Git repository to use for GitOps - type: string - repository_owner: - default: "" - description: The owner of the specified Git repository - type: string - server_address: - default: "" - description: The server hosting the specified Git repository - type: string - user_email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository - type: string - user_name: - default: cartographer - description: The name of the user interacting with the Git repository - type: string - type: object - registry: - additionalProperties: false - description: Configuration for the OCI Registry where to store the application - images - properties: - repository: - default: "" - description: The repository under an OCI Registry where to store the - application images - type: string - server: - default: "" - description: The server of the OCI Registry where to store the application - images - type: string - type: object - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - supply_chain: - default: basic - description: The type of supply chain to use for this golden path - type: string - type: object - version: 0.1.1 diff --git a/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.2.0.yml b/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.2.0.yml deleted file mode 100644 index 1658162..0000000 --- a/repo/packages/cartographer-golden-path-web.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,128 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-golden-path-web.packages.kadras.io.0.2.0 -spec: - refName: cartographer-golden-path-web.packages.kadras.io - releasedAt: "2022-10-26T20:12:25Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-golden-path-web@sha256:573fd896083c5e6b618d2b51946c34d2b429a84c60359614d17e8e729e17602d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cluster_builder: - default: default - description: The ClusterBuilder used by kpack - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - gitops: - additionalProperties: false - description: Configuration for the GitOps steps in the supply chain - properties: - access_secret: - default: git-secret - description: The Secret containing credentials to access the specified - Git repository - type: string - branch: - default: main - description: The branch to use for GitOps activities - type: string - commit_message: - default: Update from Cartographer - description: The commit message to use when pushing configuration changes - to Git - type: string - commit_strategy: - default: direct - description: Whether to commit configuration changes to Git directly - or via a pull request - type: string - pull_request: - additionalProperties: false - properties: - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated - type: string - pull_request_body: - default: "" - description: The body of the pull request - type: string - pull_request_title: - default: "" - description: The title of the pull request - type: string - server_kind: - default: "" - description: The type of Git server where to open the pull request - example: github - type: string - x-example-description: Open a pull request on GitHub - type: object - repository_name: - default: "" - description: The name of the Git repository to use for GitOps - type: string - repository_owner: - default: "" - description: The owner of the specified Git repository - type: string - server_address: - default: "" - description: The server hosting the specified Git repository - type: string - user_email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository - type: string - user_name: - default: cartographer - description: The name of the user interacting with the Git repository - type: string - type: object - registry: - additionalProperties: false - description: Configuration for the OCI Registry where to store the application - images - properties: - repository: - default: "" - description: The repository under an OCI Registry where to store the - application images - type: string - server: - default: "" - description: The server of the OCI Registry where to store the application - images - type: string - type: object - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - supply_chain: - default: basic - description: The type of supply chain to use for this golden path - type: string - type: object - version: 0.2.0 diff --git a/repo/packages/cartographer-golden-path-web.packages.kadras.io/metadata.yml b/repo/packages/cartographer-golden-path-web.packages.kadras.io/metadata.yml deleted file mode 100644 index 89d4ca3..0000000 --- a/repo/packages/cartographer-golden-path-web.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,17 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: cartographer-golden-path-web.packages.kadras.io -spec: - categories: - - ci/cd - - golden paths - - platform engineering - displayName: cartographer-golden-path-web - longDescription: Cartographer supply chains used to build a golden path for web - applications and functions. - maintainers: - - name: Thomas Vitale - providerName: Arktonix - shortDescription: Golden path for web applications and functions. From 109ac7467b3ddbeabea1eb16810c65bfa9d82e73 Mon Sep 17 00:00:00 2001 From: github-actions Date: Sat, 24 Dec 2022 16:48:35 +0000 Subject: [PATCH 107/601] Update Namespace Setup metadata and add version 0.2.0 --- .../0.2.0.yml | 83 +++++++++++++++++++ 1 file changed, 83 insertions(+) create mode 100644 repo/packages/namespace-setup.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/namespace-setup.packages.kadras.io/0.2.0.yml b/repo/packages/namespace-setup.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..5e7c05c --- /dev/null +++ b/repo/packages/namespace-setup.packages.kadras.io/0.2.0.yml @@ -0,0 +1,83 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: namespace-setup.packages.kadras.io.0.2.0 +spec: + refName: namespace-setup.packages.kadras.io + releasedAt: "2022-12-24T16:46:28Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/namespace-setup@sha256:78cbf82a77112729790c136804582c06b2445344dec2f70049b4bebf8f138053 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + gitops: + additionalProperties: false + description: Configuration to access the Git repositories used in the GitOps + workflows + properties: + password: + default: "" + description: The password for the Git server used in the GitOps workflows + type: string + server: + default: https://github.com + description: The Git server hosting the Git repositories used in the + GitOps workflows + type: string + username: + default: "" + description: The username for the Git server used in the GitOps workflows + type: string + type: object + namespaces: + default: [] + description: Configuration for developer namespaces + items: + additionalProperties: false + description: Details about the namespace to configure + properties: + exists: + default: false + type: boolean + name: + default: "" + type: string + type: object + type: array + registry: + additionalProperties: false + description: Configuration to access the OCI registry where the Kadras packages + are stored + properties: + password: + default: "" + description: The password for the OCI registry server where the Kadras + packages are stored + type: string + server: + default: "" + description: The OCI registry server where the Kadras packages are stored + type: string + username: + default: "" + description: The username for the OCI registry server where the Kadras + packages are stored + type: string + type: object + type: object + version: 0.2.0 From e617c6c9f044d69907cca2833dd945a9e080b3ef Mon Sep 17 00:00:00 2001 From: github-actions Date: Sat, 24 Dec 2022 16:55:01 +0000 Subject: [PATCH 108/601] Update Application Platform metadata and add version 0.5.0 --- .../0.5.0.yml | 116 ++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.5.0.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.5.0.yml b/repo/packages/application-platform.packages.kadras.io/0.5.0.yml new file mode 100644 index 0000000..face44a --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.5.0.yml @@ -0,0 +1,116 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.5.0 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releasedAt: "2022-12-24T16:52:52Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:2537853152ec776b644efcb7626cffaf4d82d4d6430c1fb125e41f243e778807 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.5.0 From d72ab9137a651c48ae9ac47a37ca1f100ac81f60 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Dec 2022 17:57:47 +0100 Subject: [PATCH 109/601] Bump version to 0.7.0 --- .github/workflows/release.yml | 2 +- README.md | 4 ++-- 2 files changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 1715a59..aa3488a 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.6.1 + VERSION: 0.7.0 jobs: build: diff --git a/README.md b/README.md index aeed175..ad219df 100644 --- a/README.md +++ b/README.md @@ -15,7 +15,7 @@ This repository contains the following Carvel packages part of the [Kadras](http | [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | | [cartographer-blueprints](https://github.com/arktonix/cartographer-blueprints) | A curated set of reusable blueprints for Cartographer, a Kubernetes-native framework to build paved paths to production. | | [cartographer-delivery](https://github.com/arktonix/cartographer-delivery) | A curated set of Cartographer delivery chains to deploy workloads to Kubernetes based on GitOps or RegistryOps. | -| [cartographer-golden-path-web](https://github.com/arktonix/cartographer-golden-path-web) | A curated set of Cartographer supply chains to build golden paths to production for web applications and functions, from source code to delivery in a Kubernetes cluster. | +| [cartographer-supply-chains](https://github.com/arktonix/cartographer-supply-chains) | A curated set of Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | | [cert-manager](https://github.com/arktonix/package-for-cert-manager) | Cloud-native solution to automatically provision and manage TLS certificates in Kubernetes. | | [contour](https://github.com/arktonix/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | | [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) | A source management component from the Flux GitOps Toolkit to provide a common interface for artifacts acquisition. | @@ -47,7 +47,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace kadras-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.6.1 \ + --url ghcr.io/arktonix/kadras-packages:0.7.0 \ -n kadras-packages ``` From 869b6e5d918ead2bf1acf9b773ce5cad19cfa60f Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 10 Jan 2023 18:52:13 +0000 Subject: [PATCH 110/601] Update Tekton Pipelines metadata and add version 0.43.1 --- .../0.43.1.yml | 151 ++++++++++++++++++ 1 file changed, 151 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.43.1.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.43.1.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.43.1.yml new file mode 100644 index 0000000..edd668c --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.43.1.yml @@ -0,0 +1,151 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.43.1 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/tektoncd/pipeline/releases + releasedAt: "2023-01-10T18:50:04Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:ec08f12ee741270f4b0091e4fdfb898789965390a580e6e3bc0340332bc0fcd2 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + defaults: + additionalProperties: false + description: Default configuration stored in the config-defaults ConfigMap. + properties: + affinity_assistant_pod_template: + default: "" + description: Pod template to use for affinity assistant pods. + type: string + cloud_events_sink: + default: "" + description: CloudEvents sink to be used for TaskRun and PipelineRun. + If no sink is specified, no CloudEvent is generated. + type: string + managed_by_label_value: + default: tekton-pipelines + description: Value given to the 'app.kubernetes.io/managed-by' label + applied to all Pods created for TaskRuns. + type: string + max_matrix_combinations_count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + pod_template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + service_account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + task_run_workspace_binding: + default: "" + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + example: 'emptyDir: {}' + type: string + x-example-description: Use emptyDir volume for workspace + timeout_minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the feature-flags ConfigMap. + properties: + await_sidecar_readiness: + default: "true" + description: Setting this flag to 'false' will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + disable_affinity_assistant: + default: "false" + description: Setting this flag to 'true' will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable_creds_init: + default: "false" + description: Setting this flag to 'true' will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable_api_fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable_custom_tasks: + default: "false" + description: Setting this flag to 'true' enables the use of custom tasks + from within pipelines. This is an experimental feature and thus should + still be considered an alpha feature. + type: string + enable_provenance_in_status: + default: "false" + description: Setting this flag to 'true' enables populating the 'provenance' + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable_tekton_oci_bundles: + default: "false" + description: Setting this flag to 'true' enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + require_git_ssh_secret_known_hosts: + default: "false" + description: Setting this flag to 'true' will require that any Git SSH + Secret offered to Tekton must have known_hosts included. + type: string + resource_verification_mode: + default: skip + description: Setting this flag to 'enforce' will enforce verification + of tasks/pipeline. Failing to verify will fail the taskrun/pipelinerun. + 'warn' will only log the err message and 'skip' will skip the whole + verification. + type: string + running_in_environment_with_injected_sidecars: + default: "true" + description: This option should be set to 'false' when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send_cloudevents_for_runs: + default: "false" + description: Setting this flag to 'true' enables CloudEvents for Runs, + as long as a CloudEvents sink is configured in the config-defaults + config map. + type: string + type: object + type: object + version: 0.43.1 From fd8722fcfe1f614a57ca71617da12476fe15c145 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 10 Jan 2023 19:20:40 +0000 Subject: [PATCH 111/601] Update Knative Eventing metadata and add version 1.8.4 --- .../1.8.4.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.4.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.4.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.4.yml new file mode 100644 index 0000000..e6af53b --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.8.4.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.8.4 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/knative/eventing/releases + releasedAt: "2023-01-10T19:18:25Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-knative-eventing@sha256:7758f1009ff9aa4918ca516b8502ebe327e14f3ad5cabc97d1c186f2fbb7e58d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.8.4 From a18f626c8b62a5457c1c9f1cf781a51adf37290e Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 10 Jan 2023 19:32:44 +0000 Subject: [PATCH 112/601] Update FluxCD Source Controller metadata and add version 0.33.0 --- .../0.33.0.yml | 72 +++++++++++++++++++ 1 file changed, 72 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0.yml new file mode 100644 index 0000000..a08d7e0 --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0.yml @@ -0,0 +1,72 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.33.0 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/fluxcd/source-controller/releases + releasedAt: "2023-01-10T19:30:28Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:b7b13bbf52581f722c23819000aa3cfe01f78d59038d7069af25bbfe4a5491be + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy URL + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the source-controller Service + type: integer + type: object + version: 0.33.0 From c201642b74c754774e61850b253541dd650b850c Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 10 Jan 2023 19:52:43 +0000 Subject: [PATCH 113/601] Update Cert Manager metadata and add version 1.10.2 --- .../1.10.2.yml | 40 +++++++++++++++++++ 1 file changed, 40 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.2.yml new file mode 100644 index 0000000..69efbd6 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.10.2.yml @@ -0,0 +1,40 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.10.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2023-01-10T19:50:35Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-cert-manager@sha256:cc905cfd171d29d3cd792d4e265dd78cde09e6f7159f9863acfc93339b1dfb3a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager + type: string + type: object + version: 1.10.2 From 6b6dba29c4d0e9307c13245c35737b6a13b98a56 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 10 Jan 2023 20:01:33 +0000 Subject: [PATCH 114/601] Update Argo CD metadata and add version 2.5.5 --- .../argo-cd.packages.kadras.io/2.5.5.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.5.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.5.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.5.yml new file mode 100644 index 0000000..f9aef50 --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.5.5.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.5.5 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/argoproj/argo-cd/releases + releasedAt: "2023-01-10T19:59:38Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/package-for-argo-cd@sha256:63217266603718b09b23805e6643a2406c9cace46f89558363022c10f595ef0d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.5.5 From cdd710645b3ef2e80195af3f87fcf8ca1b84ad33 Mon Sep 17 00:00:00 2001 From: github-actions Date: Tue, 10 Jan 2023 20:17:54 +0000 Subject: [PATCH 115/601] Update Application Platform metadata and add version 0.5.1 --- .../0.5.1.yml | 116 ++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.5.1.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.5.1.yml b/repo/packages/application-platform.packages.kadras.io/0.5.1.yml new file mode 100644 index 0000000..c535847 --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.5.1.yml @@ -0,0 +1,116 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.5.1 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releasedAt: "2023-01-10T20:15:42Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/arktonix/kadras-application-platform@sha256:155ac758cb694ae2e59fd7e9989c1a1f97681f9b2bf6db93554612f8309b897c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.5.1 From 5c1283d00ba4a3f555d0e060d824673c9b29d791 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 10 Jan 2023 21:20:25 +0100 Subject: [PATCH 116/601] Add Secretgen Controller 0.13.0 --- .../0.13.0.yml | 67 +++++++++++++++++++ 1 file changed, 67 insertions(+) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.13.0.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.13.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.13.0.yml new file mode 100644 index 0000000..70aa344 --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.13.0.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.13.0 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releasedAt: "2022-12-12T22:04:28Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/vmware-tanzu/carvel-secretgen-controller-package-bundle@sha256:e9fc8cf560dde1dd29ee4cb4fc7cc70e81d389ca9c8299e05d75564aff135f1f + template: + - ytt: + paths: + - config/package-bundle/config + - config/release-config.yml + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + create_namespace: + default: true + description: Whether to create namespace specified for secretgen-controller + type: boolean + deployment: + additionalProperties: false + description: Configuration for secretgen-controller deployment + properties: + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: 0 + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + type: integer + maxUnavailable: + default: 1 + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + type: integer + type: object + updateStrategy: + default: "" + description: Update strategy of deployments, empty uses default strategy + type: string + type: object + namespace: + default: secretgen-controller + description: The namespace in which to deploy secretgen-controller + type: string + type: object + version: 0.13.0 From 1e2c59c8758f27db8f98dd0e99683909072bedfe Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 10 Jan 2023 21:22:28 +0100 Subject: [PATCH 117/601] Bump version to 0.7.1 --- .github/workflows/release.yml | 53 +++-------------------------------- README.md | 2 +- 2 files changed, 5 insertions(+), 50 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index aa3488a..6a28c2b 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.7.0 + VERSION: 0.7.1 jobs: build: @@ -20,7 +20,7 @@ jobs: image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code - uses: actions/checkout@v3.1.0 + uses: actions/checkout@v3.3.0 - name: Set up Carvel uses: vmware-tanzu/carvel-setup-action@v1.2.0 @@ -28,7 +28,7 @@ jobs: token: ${{ secrets.GITHUB_TOKEN }} - name: Log into container registry - uses: redhat-actions/podman-login@v1.4 + uses: redhat-actions/podman-login@v1.5 with: username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} @@ -91,7 +91,7 @@ jobs: uses: sigstore/cosign-installer@v2.8.1 - name: Log into container registry - uses: redhat-actions/podman-login@v1.4 + uses: redhat-actions/podman-login@v1.5 with: username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} @@ -114,48 +114,3 @@ jobs: registry-username: ${{ github.actor }} secrets: registry-password: ${{ secrets.GITHUB_TOKEN }} - - # provenance: - # name: Provenance - # runs-on: ubuntu-22.04 - # needs: [build,sign] - # permissions: - # packages: write - # id-token: write - # env: - # IMAGE_RELEASE: ${{ needs.build.outputs.image-release }} - # PROVENANCE_FILE: provenance.att - # steps: - # - name: Install Cosign - # uses: sigstore/cosign-installer@v2.8.1 - - # - name: Log into container registry - # uses: redhat-actions/podman-login@v1.4 - # with: - # username: ${{ github.actor }} - # password: ${{ secrets.GITHUB_TOKEN }} - # registry: ${{ env.REGISTRY }} - - # - name: Extract digest - # run: | - # digest=$(echo ${IMAGE_RELEASE} | cut -d "@" -f2) - # echo "IMAGE_DIGEST=${digest}" >> $GITHUB_ENV - - # - name: Generate provenance - # uses: philips-labs/slsa-provenance-action@v0.7.2 - # with: - # command: generate - # subcommand: container - # arguments: --repository ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }} --tags ${{ env.VERSION }} --digest ${{ env.IMAGE_DIGEST }} --output-path ${{ env.PROVENANCE_FILE }} - # env: - # COSIGN_EXPERIMENTAL: 0 - - # - name: Attach provenance - # run: | - # jq '.predicate' "${PROVENANCE_FILE}" > provenance-predicate.att - # cosign attest --predicate provenance-predicate.att --type slsaprovenance "${IMAGE_RELEASE}" - - # - uses: actions/upload-artifact@v3.1.1 - # with: - # name: provenance.att - # path: ${{ env.PROVENANCE_FILE }} diff --git a/README.md b/README.md index ad219df..0e462a1 100644 --- a/README.md +++ b/README.md @@ -47,7 +47,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace kadras-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.7.0 \ + --url ghcr.io/arktonix/kadras-packages:0.7.1 \ -n kadras-packages ``` From 7a26791e2a41925e372c950d1f873f2343a506b8 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Jan 2023 22:33:05 +0100 Subject: [PATCH 118/601] Update license --- LICENSE | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/LICENSE b/LICENSE index 7ce99a3..261eeb9 100644 --- a/LICENSE +++ b/LICENSE @@ -186,7 +186,7 @@ same "printed page" as the copyright notice for easier identification within third-party archives. - Copyright 2022 Arktonix + Copyright [yyyy] [name of copyright owner] Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. From 677ef6f3310ff466edd856f70ecd6abb988410de Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Jan 2023 22:39:00 +0100 Subject: [PATCH 119/601] Update for Kadras organization --- .github/workflows/release.yml | 2 +- CODE_OF_CONDUCT.md | 2 +- README.md | 42 ++-- .../0.1.2.yml | 115 ---------- .../0.2.2.yml | 116 ---------- .../0.3.0.yml | 116 ---------- .../0.4.0.yml | 116 ---------- .../0.5.0.yml | 116 ---------- .../argo-cd.packages.kadras.io/2.4.12.yml | 45 ---- .../argo-cd.packages.kadras.io/2.5.2.yml | 45 ---- .../argo-cd.packages.kadras.io/2.5.4.yml | 45 ---- .../cartographer.packages.kadras.io/0.5.3.yml | 131 ----------- .../cartographer.packages.kadras.io/0.6.0.yml | 131 ----------- .../1.10.0+kadras.2.yml | 40 ---- .../1.10.1+kadras.2.yml | 40 ---- .../cert-manager.packages.kadras.io/1.9.1.yml | 37 ---- .../contour.packages.kadras.io/1.22.0.yml | 156 ------------- .../1.23.0+kadras.4.yml | 206 ------------------ .../0.29.0.yml | 72 ------ .../0.31.0+kadras.1.yml | 72 ------ .../0.32.1+kadras.2.yml | 72 ------ .../1.7.2.yml | 42 ---- .../1.8.1+kadras.1.yml | 45 ---- .../1.8.3.yml | 45 ---- .../1.7.1.yml | 122 ----------- .../1.8.0+kadras.2.yml | 122 ----------- .../0.1.0.yml | 34 --- .../0.3.1.yml | 34 --- .../kpack.packages.kadras.io/0.8.0.yml | 95 -------- .../0.8.1+kadras.1.yml | 95 -------- .../0.6.1+kadras.1.yml | 148 ------------- .../0.1.0.yml | 83 ------- .../0.1.1.yml | 83 ------- .../0.11.0.yml | 63 ------ .../0.12.0.yml | 66 ------ .../0.40.2.yml | 137 ------------ .../0.41.0.yml | 137 ------------ .../0.42.0+kadras.1.yml | 151 ------------- repo/pkgrepo-build.yml | 4 +- 39 files changed, 25 insertions(+), 3198 deletions(-) delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.1.2.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.2.2.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.3.0.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.4.0.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.5.0.yml delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.4.12.yml delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.2.yml delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.4.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.5.3.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.6.0.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.0+kadras.2.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.2.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.9.1.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.22.0.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.23.0+kadras.4.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.29.0.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0+kadras.1.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.2.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.7.2.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.1+kadras.1.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.3.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.7.1.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.2.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.1.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.8.0.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.8.1+kadras.1.yml delete mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.1+kadras.1.yml delete mode 100644 repo/packages/namespace-setup.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/namespace-setup.packages.kadras.io/0.1.1.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.11.0.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.12.0.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.40.2.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.41.0.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.42.0+kadras.1.yml diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6a28c2b..e00ee1a 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.7.1 + VERSION: 0.7.2 jobs: build: diff --git a/CODE_OF_CONDUCT.md b/CODE_OF_CONDUCT.md index 39afb14..d65f99f 100644 --- a/CODE_OF_CONDUCT.md +++ b/CODE_OF_CONDUCT.md @@ -60,7 +60,7 @@ representative at an online or offline event. Instances of abusive, harassing, or otherwise unacceptable behavior may be reported to the community leaders responsible for enforcement at -community@arktonix.com. +community@kadras.io. All complaints will be reviewed and investigated promptly and fairly. All community leaders are obligated to respect the privacy and security of the diff --git a/README.md b/README.md index 0e462a1..901b1e1 100644 --- a/README.md +++ b/README.md @@ -2,32 +2,32 @@ The SLSA Level 3 badge -A collection of Kubernetes-native packages built with [Carvel](https://carvel.dev) and part of the Kadras project. +A collection of Kubernetes-native packages built with [Carvel](https://carvel.dev) and used in the [Kadras](https://kadras.io) project. ## Package Repository -This repository contains the following Carvel packages part of the [Kadras](https://kadras.io) project. +This repository contains the following Carvel packages. | Package | Description | |---------|-------------| -| [application-platform](https://github.com/arktonix/kadras-application-platform) | A curated collection of packages to build an application platform or internal developer platform (IDP) on Kubernetes. | -| [argo-cd](https://github.com/arktonix/package-for-argo-cd) | A declarative and GitOps continuous delivery tool for Kubernetes. | +| [application-platform](https://github.com/kadras-io/kadras-application-platform) | A curated collection of packages to build an application platform or internal developer platform (IDP) on Kubernetes. | +| [argo-cd](https://github.com/kadras-io/package-for-argo-cd) | A declarative and GitOps continuous delivery tool for Kubernetes. | | [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | -| [cartographer-blueprints](https://github.com/arktonix/cartographer-blueprints) | A curated set of reusable blueprints for Cartographer, a Kubernetes-native framework to build paved paths to production. | -| [cartographer-delivery](https://github.com/arktonix/cartographer-delivery) | A curated set of Cartographer delivery chains to deploy workloads to Kubernetes based on GitOps or RegistryOps. | -| [cartographer-supply-chains](https://github.com/arktonix/cartographer-supply-chains) | A curated set of Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | -| [cert-manager](https://github.com/arktonix/package-for-cert-manager) | Cloud-native solution to automatically provision and manage TLS certificates in Kubernetes. | -| [contour](https://github.com/arktonix/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | -| [fluxcd-source-controller](https://github.com/arktonix/package-for-fluxcd-source-controller) | A source management component from the Flux GitOps Toolkit to provide a common interface for artifacts acquisition. | -| [knative-eventing](https://github.com/arktonix/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | -| [knative-serving](https://github.com/arktonix/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | -| [kpack](https://github.com/arktonix/package-for-kpack) | Kubernetes-native container build service based on Cloud Native Buildpacks. | -| [kpack-dependencies](https://github.com/arktonix/kpack-dependencies) | A set of buildpacks, stacks, and builders to use with kpack. | -| [metrics-server](https://github.com/arktonix/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | -| [namespace-setup](https://github.com/arktonix/namespace-setup) | Sets up up namespaces with the necessary RBAC and Secrets to work with the Kadras platform. | +| [cartographer-blueprints](https://github.com/kadras-io/cartographer-blueprints) | A curated set of reusable blueprints for Cartographer, a Kubernetes-native framework to build paved paths to production. | +| [cartographer-delivery](https://github.com/kadras-io/cartographer-delivery) | A curated set of Cartographer delivery chains to deploy workloads to Kubernetes based on GitOps or RegistryOps. | +| [cartographer-supply-chains](https://github.com/kadras-io/cartographer-supply-chains) | A curated set of Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | +| [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | Cloud-native solution to automatically provision and manage TLS certificates in Kubernetes. | +| [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | +| [fluxcd-source-controller](https://github.com/kadras-io/package-for-fluxcd-source-controller) | A source management component from the Flux GitOps Toolkit to provide a common interface for artifacts acquisition. | +| [knative-eventing](https://github.com/kadras-io/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | +| [knative-serving](https://github.com/kadras-io/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | +| [kpack](https://github.com/kadras-io/package-for-kpack) | Kubernetes-native container build service based on Cloud Native Buildpacks. | +| [kpack-dependencies](https://github.com/kadras-io/kpack-dependencies) | A set of buildpacks, stacks, and builders to use with kpack. | +| [metrics-server](https://github.com/kadras-io/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | +| [namespace-setup](https://github.com/kadras-io/namespace-setup) | Sets up up namespaces with the necessary RBAC and Secrets to work with the Kadras platform. | | [secretgen-controller](https://github.com/vmware-tanzu/carvel-secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | -| [spring-boot-conventions](https://github.com/arktonix/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | -| [tekton-pipelines](https://github.com/arktonix/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | +| [spring-boot-conventions](https://github.com/kadras-io/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | +| [tekton-pipelines](https://github.com/kadras-io/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | ## Prerequisites @@ -47,7 +47,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace kadras-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages:0.7.1 \ + --url ghcr.io/kadras-io/kadras-packages:0.7.2 \ -n kadras-packages ``` @@ -73,7 +73,7 @@ You can upgrade an existing repository to a newer version using `kctrl`. ```shell kctrl package repository update -r kadras-repo \ - --url ghcr.io/arktonix/kadras-packages: \ + --url ghcr.io/kadras-io/kadras-packages: \ -n kadras-packages ``` @@ -84,7 +84,7 @@ Instead of installing the Kadras package repository with `kctrl`, you can apply ```shell kubectl create namespace kadras-packages kapp deploy -a kadras-repo -n kadras-packages -y \ - -f https://github.com/arktonix/kadras-packages/releases/latest/download/package-repository.yml + -f https://github.com/kadras-io/kadras-packages/releases/latest/download/package-repository.yml ``` ## Support and Documentation diff --git a/repo/packages/application-platform.packages.kadras.io/0.1.2.yml b/repo/packages/application-platform.packages.kadras.io/0.1.2.yml deleted file mode 100644 index 5168fcd..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.1.2.yml +++ /dev/null @@ -1,115 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.1.2 -spec: - refName: application-platform.packages.kadras.io - releasedAt: "2022-10-04T13:36:05Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:cbc5eaedbbbb47200e0a12a3229ae21e682215c71f23f8ee61cb37e3a804c2e8 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - golden_path_web: - default: {} - description: Configuration for the Cartographer Golden Path Web package - nullable: true - type: object - cert_manager: - default: - namespace: cert-manager - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.1.2 diff --git a/repo/packages/application-platform.packages.kadras.io/0.2.2.yml b/repo/packages/application-platform.packages.kadras.io/0.2.2.yml deleted file mode 100644 index 2500213..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.2.2.yml +++ /dev/null @@ -1,116 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.2.2 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releasedAt: "2022-11-01T18:06:41Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:5a85a74b97749674333798ff79834e8ba38babb291b3a0d3a0f194724fa9a2ff - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - golden_path_web: - default: {} - description: Configuration for the Cartographer Golden Path Web package - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.2.2 diff --git a/repo/packages/application-platform.packages.kadras.io/0.3.0.yml b/repo/packages/application-platform.packages.kadras.io/0.3.0.yml deleted file mode 100644 index 80876f2..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.3.0.yml +++ /dev/null @@ -1,116 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.3.0 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releasedAt: "2022-11-29T22:53:35Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:e395923a668ccb4a0c0a644cb5d82781a96cb4742d03f8248df85437e07853c3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - golden_path_web: - default: {} - description: Configuration for the Cartographer Golden Path Web package - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.3.0 diff --git a/repo/packages/application-platform.packages.kadras.io/0.4.0.yml b/repo/packages/application-platform.packages.kadras.io/0.4.0.yml deleted file mode 100644 index f471e23..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.4.0.yml +++ /dev/null @@ -1,116 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.4.0 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releasedAt: "2022-12-21T17:53:47Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:90b70929ec1238ec5b4b907e284ebc1b25355d9940b4b46f56e9b0dd54639771 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - golden_path_web: - default: {} - description: Configuration for the Cartographer Golden Path Web package - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.4.0 diff --git a/repo/packages/application-platform.packages.kadras.io/0.5.0.yml b/repo/packages/application-platform.packages.kadras.io/0.5.0.yml deleted file mode 100644 index face44a..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.5.0.yml +++ /dev/null @@ -1,116 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.5.0 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releasedAt: "2022-12-24T16:52:52Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:2537853152ec776b644efcb7626cffaf4d82d4d6430c1fb125e41f243e778807 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.5.0 diff --git a/repo/packages/argo-cd.packages.kadras.io/2.4.12.yml b/repo/packages/argo-cd.packages.kadras.io/2.4.12.yml deleted file mode 100644 index a1085d6..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.4.12.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.4.12 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/argoproj/argo-cd/releases - releasedAt: "2022-09-24T17:52:23Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-argo-cd@sha256:d9aefd2d161c82ac0b6efc0e6bf3abce78c9be31aeca07d12787c5f6b8ded948 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.4.12 diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.2.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.2.yml deleted file mode 100644 index 2cdaa88..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.5.2.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.5.2 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/argoproj/argo-cd/releases - releasedAt: "2022-11-13T11:18:56Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-argo-cd@sha256:215f490bfb3f17f55f995ce8cda135f4be45f6c84e4a17a8fc5369549830403b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.5.2 diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.4.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.4.yml deleted file mode 100644 index 593e85d..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.5.4.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.5.4 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/argoproj/argo-cd/releases - releasedAt: "2022-12-14T20:18:57Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-argo-cd@sha256:7f782298540e7e77e49214bdfaa85c46455d9c84a5019e8f85e46340beaa9d5b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.5.4 diff --git a/repo/packages/cartographer.packages.kadras.io/0.5.3.yml b/repo/packages/cartographer.packages.kadras.io/0.5.3.yml deleted file mode 100644 index 1fdeac4..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.5.3.yml +++ /dev/null @@ -1,131 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: cartographer.packages.kadras.io.0.5.3 -spec: - refName: cartographer.packages.kadras.io - version: 0.5.3 - releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.5.3 - releasedAt: "2022-08-31T18:12:55Z" - valuesSchema: - openAPIv3: - title: cartographer.packages.kadras.io.0.5.3 values schema - properties: - ca_cert_data: - type: string - description: 'Optional: PEM Encoded certificate data for image registries with private CA.' - default: "" - excluded_components: - type: array - items: - type: string - default: [] - description: 'Optional: List of components to exclude from installation (e.g. [conventions])' - aws_iam_role_arn: - type: string - description: 'Optional: Arn role that has access to pull images from ECR container registry' - default: "" - cartographer: - type: object - properties: - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maxium amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - conventions: - type: object - properties: - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maxium amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - template: - spec: - fetch: - - imgpkgBundle: - image: index.docker.io/projectcartographer/package-for-cartographer@sha256:16bde5272cfa248ec5068016fc0a1873e84761e5485b0b23e908b7bbeff8cd0a - template: - - ytt: - ignoreUnknownComments: true - paths: - - config - - kbld: - paths: - - .imgpkg/images.yml - - '-' - deploy: - - kapp: {} diff --git a/repo/packages/cartographer.packages.kadras.io/0.6.0.yml b/repo/packages/cartographer.packages.kadras.io/0.6.0.yml deleted file mode 100644 index 071c528..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.6.0.yml +++ /dev/null @@ -1,131 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: cartographer.packages.kadras.io.0.6.0 -spec: - refName: cartographer.packages.kadras.io - version: 0.6.0 - releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.6.0 - releasedAt: "2022-11-17T17:54:12Z" - valuesSchema: - openAPIv3: - title: cartographer.packages.kadras.io.0.6.0 values schema - properties: - ca_cert_data: - type: string - description: 'Optional: PEM Encoded certificate data for image registries with private CA.' - default: "" - excluded_components: - type: array - items: - type: string - default: [] - description: 'Optional: List of components to exclude from installation (e.g. [conventions])' - aws_iam_role_arn: - type: string - description: 'Optional: Arn role that has access to pull images from ECR container registry' - default: "" - cartographer: - type: object - properties: - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maxium amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - conventions: - type: object - properties: - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maxium amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - template: - spec: - fetch: - - imgpkgBundle: - image: index.docker.io/projectcartographer/package-for-cartographer@sha256:0515493aa89a9f793c93a14012dfa5b6e5a7a6602b2dfae5a6d0fe61c13d2e19 - template: - - ytt: - ignoreUnknownComments: true - paths: - - config - - kbld: - paths: - - .imgpkg/images.yml - - '-' - deploy: - - kapp: {} diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.0+kadras.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.0+kadras.2.yml deleted file mode 100644 index 41f9152..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.10.0+kadras.2.yml +++ /dev/null @@ -1,40 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.10.0+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2022-11-13T19:58:08Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-cert-manager@sha256:074da91e68a85ad579cbd06c279bad63257368301ce3759c650c243c1b5aa85c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager - type: string - type: object - version: 1.10.0+kadras.2 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.2.yml deleted file mode 100644 index ea6aac0..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.10.1+kadras.2.yml +++ /dev/null @@ -1,40 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.10.1+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2022-12-12T22:38:19Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-cert-manager@sha256:fc0fe8d308308145f39c5aaa033c0e2f9bc5339a36422f284cf152866f08de52 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager - type: string - type: object - version: 1.10.1+kadras.2 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.9.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.9.1.yml deleted file mode 100644 index 6714daf..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.9.1.yml +++ /dev/null @@ -1,37 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: cert-manager.packages.kadras.io.1.9.1 -spec: - refName: cert-manager.packages.kadras.io - version: 1.9.1 - releasedAt: 2022-08-16T15:24:00Z - releaseNotes: "cert-manager 1.9.1 https://github.com/jetstack/cert-manager/releases/tag/v1.9.1" - licenses: - - "Apache 2.0" - template: - spec: - fetch: - - imgpkgBundle: - image: projects.registry.vmware.com/tce/cert-manager@sha256:e321a8936343a3eb05676aa2cf5ba7b5a07a8867e94cab75bff68800fa6b0459 - template: - - ytt: - paths: - - config/ - - kbld: - paths: - - "-" - - .imgpkg/images.yml - deploy: - - kapp: {} - capacityRequirementsDescription: "Varies significantly based on number of Certificate objects" - valuesSchema: - openAPIv3: - title: cert-manager.packages.kadras.io.1.9.1 values schema - examples: - - namespace: cert-manager - properties: - namespace: - type: string - description: The namespace in which to deploy cert-manager. - default: cert-manager diff --git a/repo/packages/contour.packages.kadras.io/1.22.0.yml b/repo/packages/contour.packages.kadras.io/1.22.0.yml deleted file mode 100644 index 9b4ed1c..0000000 --- a/repo/packages/contour.packages.kadras.io/1.22.0.yml +++ /dev/null @@ -1,156 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: contour.packages.kadras.io.1.22.0 -spec: - refName: contour.packages.kadras.io - version: 1.22.0 - releaseNotes: contour 1.22.0 https://github.com/projectcontour/contour/releases/tag/v1.22.0 - releasedAt: "2022-07-27T00:00:00Z" - licenses: - - Apache 2.0 - template: - spec: - fetch: - - imgpkgBundle: - image: projects.registry.vmware.com/tce/contour@sha256:b682046e9da9008b2efd729c65265ee960ee7b34a95cf3d079ad5d2efb0ba10c - template: - - ytt: - paths: - - config/ - - kbld: - paths: - - '-' - - .imgpkg/images.yml - deploy: - - kapp: {} - capacityRequirementsDescription: Varies significantly based on number of Services, Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each Contour and Envoy pod, but this can and should be tuned based on observed usage. - valuesSchema: - openAPIv3: - type: object - additionalProperties: false - description: OpenAPIv3 Schema for Contour 1.22.0 - properties: - infrastructureProvider: - type: string - description: The underlying infrastructure provider. Options are aws, azure, docker and vsphere. This field is not required, but enables better validation and defaulting if provided. - default: "" - namespace: - type: string - description: The namespace in which to deploy Contour and Envoy. - default: projectcontour - contour: - type: object - additionalProperties: false - description: Settings for the Contour component. - properties: - configFileContents: - nullable: true - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/v1.22.0/configuration/#configuration-file for more information. - default: null - replicas: - type: integer - description: How many Contour pod replicas to have. - default: 2 - useProxyProtocol: - type: boolean - description: Whether to enable PROXY protocol for all Envoy listeners. - default: false - logLevel: - type: string - description: The Contour log level. Valid options are 'info' and 'debug'. - default: info - envoy: - type: object - additionalProperties: false - description: Settings for the Envoy component. - properties: - service: - type: object - additionalProperties: false - description: Envoy service settings. - properties: - type: - type: string - description: The type of Kubernetes service to provision for Envoy. If not specified, will default to 'NodePort' for docker and vsphere and 'LoadBalancer' for others. - default: "" - loadBalancerIP: - type: string - description: The desired load balancer IP. If type is not 'LoadBalancer', this field is ignored. It is up to the cloud provider whether to honor this request. If not specified, then load balancer IP will be assigned by the cloud provider. - default: "" - externalTrafficPolicy: - type: string - description: The external traffic policy for the Envoy service. If type is 'ClusterIP', this field is ignored. Otherwise, defaults to 'Cluster' for vsphere and 'Local' for others. - default: "" - annotations: - nullable: true - description: Annotations to set on the Envoy service. - default: null - nodePorts: - type: object - additionalProperties: false - description: NodePort settings for the Envoy service. If type is not 'NodePort', these settings are ignored. - properties: - http: - type: integer - description: If type == NodePort, the node port number to expose Envoy's HTTP listener on. If not specified, a node port will be auto-assigned by Kubernetes. - default: 0 - https: - type: integer - description: If type == NodePort, the node port number to expose Envoy's HTTPS listener on. If not specified, a node port will be auto-assigned by Kubernetes. - default: 0 - aws: - type: object - additionalProperties: false - description: AWS-specific settings for the Envoy service. If infrastructure provider is not 'aws', these settings are ignored. - properties: - loadBalancerType: - type: string - description: The type of AWS load balancer to provision. Options are 'classic' and 'nlb'. - default: classic - hostPorts: - type: object - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enable: - type: boolean - description: Whether to enable host ports. If false, http & https are ignored. - default: false - http: - type: integer - description: If enable == true, the host port number to expose Envoy's HTTP listener on. - default: 80 - https: - type: integer - description: If enable == true, the host port number to expose Envoy's HTTPS listener on. - default: 443 - hostNetwork: - type: boolean - description: Whether to enable host networking for the Envoy pods. - default: false - terminationGracePeriodSeconds: - type: integer - description: The termination grace period, in seconds, for the Envoy pods. - default: 300 - logLevel: - type: string - description: The Envoy log level. - default: info - certificates: - type: object - additionalProperties: false - description: Settings for the TLS certificates for securing communication between Contour and Envoy. - properties: - useCertManager: - type: boolean - description: Whether to use cert-manager to provision TLS certificates for securing communication between Contour and Envoy. If false, the upstream Contour certgen job will be used to provision certificates. If true, the cert-manager addon must be installed in the cluster. - default: false - duration: - type: string - description: If using cert-manager, how long the certificates should be valid for. If useCertManager is false, this field is ignored. - default: 8760h - renewBefore: - type: string - description: If using cert-manager, how long before expiration the certificates should be renewed. If useCertManager is false, this field is ignored. - default: 360h diff --git a/repo/packages/contour.packages.kadras.io/1.23.0+kadras.4.yml b/repo/packages/contour.packages.kadras.io/1.23.0+kadras.4.yml deleted file mode 100644 index cf2413b..0000000 --- a/repo/packages/contour.packages.kadras.io/1.23.0+kadras.4.yml +++ /dev/null @@ -1,206 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.23.0+kadras.4 -spec: - capacityRequirementsDescription: Varies significantly based on number of Services, - Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each - Contour and Envoy pod, but this can and should be tuned based on observed usage. - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/projectcontour/contour/releases - releasedAt: "2022-11-27T21:01:18Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-contour@sha256:05c8a8b953faf9f9a46e707cfe2b59eb3a19ea3d7c808074e851c8e1ddd1742a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: Settings for the TLS certificates for securing communication - between Contour and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If useCertManager is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If useCertManager is false, this field is ignored. - type: string - useCertManager: - default: false - description: Whether to use cert-manager to provision TLS certificates - for securing communication between Contour and Envoy. If false, the - upstream Contour certgen job will be used to provision certificates. - If true, the cert-manager addon must be installed in the cluster. - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - configFileContents: - default: null - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - logLevel: - default: info - description: The Contour log level. Valid options are 'info' and 'debug'. - type: string - replicas: - default: 2 - description: How many Contour pod replicas to have. - type: integer - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enable: - default: false - description: Whether to enable host ports. If false, http & https - are ignored. - type: boolean - http: - default: 80 - description: If enable == true, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enable == true, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - logLevel: - default: info - description: The Envoy log level. - type: string - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If infrastructure - provider is not 'aws', these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: "" - description: The external traffic policy for the Envoy service. - If type is 'ClusterIP', this field is ignored. Otherwise, defaults - to 'Cluster' for vsphere and 'Local' for others. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If type is not 'LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not 'NodePort' or 'LoadBalancer', these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: null - description: The type of Kubernetes service to provision for Envoy. - If not specified, will default to 'NodePort' for docker and vsphere - and 'LoadBalancer' for others. - nullable: true - type: string - type: object - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - replicas: - default: 2 - description: The number of Envoy replicas to deploy when 'type' - is set to 'Deployment'. If not specified, it will default to '2'. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload Envoy is deployed as. - Options are 'Deployment' or 'DaemonSet'. If not specified, will - default to 'DaemonSet'. - type: string - type: object - type: object - infrastructureProvider: - default: "" - description: The underlying infrastructure provider. Options are aws, azure, - docker and vsphere. This field is not required, but enables better validation - and defaulting if provided. - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.23.0+kadras.4 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.29.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.29.0.yml deleted file mode 100644 index 423ad41..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.29.0.yml +++ /dev/null @@ -1,72 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.29.0 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/fluxcd/source-controller/releases - releasedAt: "2022-09-25T10:29:36Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:1409bd8e11136785d76ce5b05ad2fc6bae7b00b18e081370f53fa4233b444406 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy URL - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the source-controller Service - type: integer - type: object - version: 0.29.0 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0+kadras.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0+kadras.1.yml deleted file mode 100644 index 78c3284..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.31.0+kadras.1.yml +++ /dev/null @@ -1,72 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.31.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/fluxcd/source-controller/releases - releasedAt: "2022-11-13T21:44:27Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:255eedc6c25ad88261df7df289ac6acdba2fab97544265c0b9a93cdf4d9c3c70 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy URL - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the source-controller Service - type: integer - type: object - version: 0.31.0+kadras.1 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.2.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.2.yml deleted file mode 100644 index a3cc595..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.32.1+kadras.2.yml +++ /dev/null @@ -1,72 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.32.1+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/fluxcd/source-controller/releases - releasedAt: "2022-12-13T21:43:54Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:505bca54e3b3c22607c2e3ad22622334828348fb761cdd50adb1bee5f7d9c21b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy URL - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the source-controller Service - type: integer - type: object - version: 0.32.1+kadras.2 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.7.2.yml b/repo/packages/knative-eventing.packages.kadras.io/1.7.2.yml deleted file mode 100644 index 7c16a0d..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.7.2.yml +++ /dev/null @@ -1,42 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.7.2 -spec: - refName: knative-eventing.packages.kadras.io - releasedAt: "2022-09-24T22:30:10Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-eventing@sha256:f44a70521d587f13bf24292cd869579e2a50609b6c03f87c087f7c43fe2e33f0 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.7.2 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.1+kadras.1.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.1+kadras.1.yml deleted file mode 100644 index 42bbd8c..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.8.1+kadras.1.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.8.1+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/knative/eventing/releases - releasedAt: "2022-11-27T22:36:10Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-eventing@sha256:da0fb08e4091a1b530699eae0cbdce1556c08b7ee9af7f8364c4040cd0583310 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.8.1+kadras.1 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.3.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.3.yml deleted file mode 100644 index aabbe68..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.8.3.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.8.3 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/knative/eventing/releases - releasedAt: "2022-12-14T20:34:49Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-eventing@sha256:48445772ec10ce67585cda0c5ce4beb8b226a5a5ccba2e507acc2330561a38b6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.8.3 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.7.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.7.1.yml deleted file mode 100644 index a779aab..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.7.1.yml +++ /dev/null @@ -1,122 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.7.1 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/knative/serving/releases - releasedAt: "2022-09-25T09:11:21Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-serving@sha256:dd95399d9bd8add0ca45f4e4a54b8174a300c2c19804a9f56fc08233eff67eef - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - domain: - additionalProperties: false - description: DNS configuration - properties: - name: - default: "" - description: Your own domain name if type real or empty if type sslip.io - or nip.io - type: string - type: - default: nip.io - description: Type of DNS configuration - type: string - url_template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The domain template to use when creating new services - type: string - type: object - ingress: - additionalProperties: false - description: Ingress configuration - properties: - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internale Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed - type: string - type: object - type: object - namespace: - default: knative-serving - description: The namespace where to install Knative Serving - type: string - scaling: - additionalProperties: false - description: Configuration for the Knative autoscaler - properties: - allow_zero_initial_scale: - default: "true" - description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' - annotation can be set to 0 - type: string - initial_scale: - default: "1" - description: The initial target scale of a revision after creation - type: string - max_scale: - default: "0" - description: The maximum scale of a revision. If set to 0, the revision - has no maximum scale. - type: string - min_scale: - default: "0" - description: The minimum scale of a revision - type: string - scale_down_delay: - default: 0s - description: The amount of time that must pass at reduced concurrency - before a scale down decision is applied. If 0s, no delay. - type: string - type: object - tls: - additionalProperties: false - description: Configuration for automatic TLS certificates - properties: - certmanager: - additionalProperties: false - description: Configuration for integrating with cert-manager for certificate - issuing - properties: - clusterissuer: - default: "" - description: Provide a cluster issuer if you want to enable auto-TLS - type: string - type: object - type: object - type: object - version: 1.7.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.2.yml deleted file mode 100644 index 29abe86..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.8.0+kadras.2.yml +++ /dev/null @@ -1,122 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.8.0+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/knative/serving/releases - releasedAt: "2022-11-27T23:12:14Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-serving@sha256:a701488c9a44e05dacd7e17650d05fbad1f5f452d20e398c72831e8a8b99d12c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - domain: - additionalProperties: false - description: DNS configuration - properties: - name: - default: "" - description: Your own domain name if type real or empty if type sslip.io - or nip.io - type: string - type: - default: nip.io - description: Type of DNS configuration - type: string - url_template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The domain template to use when creating new services - type: string - type: object - ingress: - additionalProperties: false - description: Ingress configuration - properties: - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internale Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed - type: string - type: object - type: object - namespace: - default: knative-serving - description: The namespace where to install Knative Serving - type: string - scaling: - additionalProperties: false - description: Configuration for the Knative autoscaler - properties: - allow_zero_initial_scale: - default: "true" - description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' - annotation can be set to 0 - type: string - initial_scale: - default: "1" - description: The initial target scale of a revision after creation - type: string - max_scale: - default: "0" - description: The maximum scale of a revision. If set to 0, the revision - has no maximum scale. - type: string - min_scale: - default: "0" - description: The minimum scale of a revision - type: string - scale_down_delay: - default: 0s - description: The amount of time that must pass at reduced concurrency - before a scale down decision is applied. If 0s, no delay. - type: string - type: object - tls: - additionalProperties: false - description: Configuration for automatic TLS certificates - properties: - certmanager: - additionalProperties: false - description: Configuration for integrating with cert-manager for certificate - issuing - properties: - clusterissuer: - default: "" - description: Provide a cluster issuer if you want to enable auto-TLS - type: string - type: object - type: object - type: object - version: 1.8.0+kadras.2 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.1.0.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.1.0.yml deleted file mode 100644 index 8e11fd9..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,34 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.1.0 -spec: - refName: kpack-dependencies.packages.kadras.io - releasedAt: "2022-09-27T19:59:38Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kpack-dependencies@sha256:4f92a8c3cb2a6cc225306492be52ef13db443ac9a0e6ee0fd55382d2efea4174 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - default: "" - description: The OCI registry where to publish builder images. The same - as configured in kpack. - type: string - type: object - version: 0.1.0 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.1.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.1.yml deleted file mode 100644 index 75a9202..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.1.yml +++ /dev/null @@ -1,34 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.3.1 -spec: - refName: kpack-dependencies.packages.kadras.io - releasedAt: "2022-11-25T23:44:12Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kpack-dependencies@sha256:c7bc98f1f63e0879f3896fa008fbbdc24a832de7ebd3b40f8a8b56bafc6d7aba - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - default: "" - description: The OCI registry where to publish builder images. The same - as configured in kpack. - type: string - type: object - version: 0.3.1 diff --git a/repo/packages/kpack.packages.kadras.io/0.8.0.yml b/repo/packages/kpack.packages.kadras.io/0.8.0.yml deleted file mode 100644 index fb6bdb8..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.8.0.yml +++ /dev/null @@ -1,95 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.8.0 -spec: - capacityRequirementsDescription: Registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/pivotal/kpack/releases - releasedAt: "2022-11-21T22:28:35Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-kpack@sha256:9318ca1ffbc7b3cfcbbdaf7f2fd59df8249fba7556e30a710b544b6784eb4884 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'CA Certificate to be injected into the kpack controller trust - store for communicating with self signed registries. Note: This will not - be injected into builds, you need to use the cert injection webhook with - the kpack.io/build label value' - type: string - kp_default_repository: - default: "" - description: The default repository to use for builder images and dependencies - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - kp_default_repository_aws_iam_role_arn: - default: "" - description: IAM credentials to access kp_default_repository if the registry - is on AWS - type: string - kp_default_repository_password: - default: "" - description: 'Token to access kp_default_repository. Note: Use contents - of service account key json for GCR' - type: string - kp_default_repository_secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to access - kp_default_repository - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - kp_default_repository - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials to - access kp_default_repository - type: string - type: object - kp_default_repository_username: - default: "" - description: 'Username to access kp_default_repository. Note: Use _json_key - for GCR' - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - type: object - version: 0.8.0 diff --git a/repo/packages/kpack.packages.kadras.io/0.8.1+kadras.1.yml b/repo/packages/kpack.packages.kadras.io/0.8.1+kadras.1.yml deleted file mode 100644 index 2433bbe..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.8.1+kadras.1.yml +++ /dev/null @@ -1,95 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.8.1+kadras.1 -spec: - capacityRequirementsDescription: Registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/pivotal/kpack/releases - releasedAt: "2022-11-28T19:55:07Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-kpack@sha256:474f7923618c5d9a08aad70ce4121d002072370c86ba7cba69a5b2db2c142710 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'CA Certificate to be injected into the kpack controller trust - store for communicating with self signed registries. Note: This will not - be injected into builds, you need to use the cert injection webhook with - the kpack.io/build label value' - type: string - kp_default_repository: - default: "" - description: The default repository to use for builder images and dependencies - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - kp_default_repository_aws_iam_role_arn: - default: "" - description: IAM credentials to access kp_default_repository if the registry - is on AWS - type: string - kp_default_repository_password: - default: "" - description: 'Token to access kp_default_repository. Note: Use contents - of service account key json for GCR' - type: string - kp_default_repository_secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to access - kp_default_repository - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - kp_default_repository - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials to - access kp_default_repository - type: string - type: object - kp_default_repository_username: - default: "" - description: 'Username to access kp_default_repository. Note: Use _json_key - for GCR' - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - type: object - version: 0.8.1+kadras.1 diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.1+kadras.1.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.1+kadras.1.yml deleted file mode 100644 index a363fd8..0000000 --- a/repo/packages/metrics-server.packages.kadras.io/0.6.1+kadras.1.yml +++ /dev/null @@ -1,148 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: metrics-server.packages.kadras.io.0.6.1+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: metrics-server.packages.kadras.io - releaseNotes: https://github.com/kubernetes-sigs/metrics-server/releases - releasedAt: "2022-11-28T21:17:26Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-metrics-server@sha256:69e5e2583b47f308f8336f4cc5ae3e012e4eae61060232a36afd3031fa368f72 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - daemonset: - additionalProperties: false - properties: - updateStrategy: - default: null - description: Update strategy of daemonsets - nullable: true - type: string - type: object - deployment: - additionalProperties: false - properties: - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: null - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - nullable: true - type: integer - maxUnavailable: - default: null - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - nullable: true - type: integer - type: object - updateStrategy: - default: null - description: Update strategy of deployments - nullable: true - type: string - type: object - metricsServer: - additionalProperties: false - properties: - config: - additionalProperties: false - properties: - apiServiceInsecureTLS: - default: true - description: Whether to enable insecure TLS for metrics-server api - service - type: boolean - args: - default: [] - description: Arguments passed into metrics-server container - items: - default: "" - type: string - type: array - probe: - additionalProperties: false - properties: - failureThreshold: - default: 3 - description: Probe failureThreshold of metrics-server deployment - type: integer - periodSeconds: - default: 10 - description: Probe period of metrics-server deployment - type: integer - type: object - securePort: - default: 4443 - description: The HTTPS secure port used by metrics-server - type: integer - tolerations: - default: [] - description: Metrics-server deployment tolerations - nullable: true - updateStrategy: - default: RollingUpdate - description: The update strategy of the metrics-server deployment - type: string - type: object - createNamespace: - default: true - description: Whether to create namespace specified for metrics-server - type: boolean - image: - additionalProperties: false - properties: - name: - default: "" - description: The path of image - type: string - pullPolicy: - default: IfNotPresent - description: The pull policy of image - type: string - repository: - default: "" - description: The repository of metrics-server image - type: string - tag: - default: "" - description: The image tag - type: string - type: object - namespace: - default: null - description: The namespace value used by older templates, will be overwriten - if top level namespace is present, kept for backward compatibility - nullable: true - type: string - type: object - namespace: - default: kube-system - description: The namespace in which metrics-server is deployed - type: string - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - type: object - version: 0.6.1+kadras.1 diff --git a/repo/packages/namespace-setup.packages.kadras.io/0.1.0.yml b/repo/packages/namespace-setup.packages.kadras.io/0.1.0.yml deleted file mode 100644 index 51ceeca..0000000 --- a/repo/packages/namespace-setup.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,83 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: namespace-setup.packages.kadras.io.0.1.0 -spec: - refName: namespace-setup.packages.kadras.io - releasedAt: "2022-10-04T12:22:40Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/namespace-setup@sha256:2ecd63315d79b822ef0ca074e1b38c876007d9c5cdb88e5e770c01ecf42ab0ea - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - gitops: - additionalProperties: false - description: Configuration to access the Git repositories used in the GitOps - workflows - properties: - password: - default: "" - description: The password for the Git server used in the GitOps workflows - type: string - server: - default: https://github.com - description: The Git server hosting the Git repositories used in the - GitOps workflows - type: string - username: - default: "" - description: The username for the Git server used in the GitOps workflows - type: string - type: object - namespaces: - default: [] - description: Configuration for developer namespaces - items: - additionalProperties: false - description: Details about the namespace to configure - properties: - exists: - default: false - type: boolean - name: - default: "" - type: string - type: object - type: array - registry: - additionalProperties: false - description: Configuration to access the OCI registry where the Kadras packages - are stored - properties: - password: - default: "" - description: The password for the OCI registry server where the Kadras - packages are stored - type: string - server: - default: "" - description: The OCI registry server where the Kadras packages are stored - type: string - username: - default: "" - description: The username for the OCI registry server where the Kadras - packages are stored - type: string - type: object - type: object - version: 0.1.0 diff --git a/repo/packages/namespace-setup.packages.kadras.io/0.1.1.yml b/repo/packages/namespace-setup.packages.kadras.io/0.1.1.yml deleted file mode 100644 index 214ea9f..0000000 --- a/repo/packages/namespace-setup.packages.kadras.io/0.1.1.yml +++ /dev/null @@ -1,83 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: namespace-setup.packages.kadras.io.0.1.1 -spec: - refName: namespace-setup.packages.kadras.io - releasedAt: "2022-11-01T17:53:33Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/namespace-setup@sha256:8a95e7f23fa9698013c1f1a472230787d0ac6d1e9384091dd50a5c0b3760d77f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - gitops: - additionalProperties: false - description: Configuration to access the Git repositories used in the GitOps - workflows - properties: - password: - default: "" - description: The password for the Git server used in the GitOps workflows - type: string - server: - default: https://github.com - description: The Git server hosting the Git repositories used in the - GitOps workflows - type: string - username: - default: "" - description: The username for the Git server used in the GitOps workflows - type: string - type: object - namespaces: - default: [] - description: Configuration for developer namespaces - items: - additionalProperties: false - description: Details about the namespace to configure - properties: - exists: - default: false - type: boolean - name: - default: "" - type: string - type: object - type: array - registry: - additionalProperties: false - description: Configuration to access the OCI registry where the Kadras packages - are stored - properties: - password: - default: "" - description: The password for the OCI registry server where the Kadras - packages are stored - type: string - server: - default: "" - description: The OCI registry server where the Kadras packages are stored - type: string - username: - default: "" - description: The username for the OCI registry server where the Kadras - packages are stored - type: string - type: object - type: object - version: 0.1.1 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.11.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.11.0.yml deleted file mode 100644 index a2a5c08..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.11.0.yml +++ /dev/null @@ -1,63 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: secretgen-controller.packages.kadras.io.0.11.0 -spec: - refName: secretgen-controller.packages.kadras.io - version: 0.11.0 - releaseNotes: https://github.com/vmware-tanzu/carvel-secretgen-controller/releases/tag/v0.11.0 - valuesSchema: - openAPIv3: - type: object - additionalProperties: false - properties: - namespace: - type: string - description: The namespace in which to deploy secretgen-controller - default: secretgen-controller - create_namespace: - type: boolean - description: Whether to create namespace specified for secretgen-controller - default: true - deployment: - type: object - additionalProperties: false - description: Configuration for secretgen-controller deployment - properties: - updateStrategy: - type: string - description: Update strategy of deployments, empty uses default strategy - default: "" - rollingUpdate: - type: object - additionalProperties: false - properties: - maxUnavailable: - type: integer - description: The maxUnavailable of rollingUpdate. Applied only if RollingUpdate is used as updateStrategy - default: 1 - maxSurge: - type: integer - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate is used as updateStrategy - default: 0 - nodeSelector: - nullable: true - description: NodeSelector configuration applied to all the deployments - default: null - licenses: - - Apache 2.0 - template: - spec: - fetch: - - imgpkgBundle: - image: ghcr.io/vmware-tanzu/carvel-secretgen-controller-package-bundle@sha256:0e3eb05734e6876275d4f8120a20fdb505dbc21266032f9fdb46b34aaa570e9e - template: - - ytt: - paths: - - config - - kbld: - paths: - - .imgpkg/images.yml - - '-' - deploy: - - kapp: {} diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.12.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.12.0.yml deleted file mode 100644 index b2e5145..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.12.0.yml +++ /dev/null @@ -1,66 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: secretgen-controller.packages.kadras.io.0.12.0 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releasedAt: "2022-11-22T20:23:09Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/vmware-tanzu/carvel-secretgen-controller-package-bundle@sha256:d509a0b0707d495b655d9a080ae638f7b24bdc16c5b7e6a1bca9a7a938b62120 - template: - - ytt: - paths: - - config/package-bundle/config - - config/release-config.yml - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - create_namespace: - default: true - description: Whether to create namespace specified for secretgen-controller - type: boolean - deployment: - additionalProperties: false - description: Configuration for secretgen-controller deployment - properties: - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: 0 - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - type: integer - maxUnavailable: - default: 1 - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - type: integer - type: object - updateStrategy: - default: "" - description: Update strategy of deployments, empty uses default strategy - type: string - type: object - namespace: - default: secretgen-controller - description: The namespace in which to deploy secretgen-controller - type: string - type: object - version: 0.12.0 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.40.2.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.40.2.yml deleted file mode 100644 index e2a96ef..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.40.2.yml +++ /dev/null @@ -1,137 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.40.2 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/tektoncd/pipeline/releases - releasedAt: "2022-10-25T19:45:30Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:002d09fe984aec80881459b8d24a74ee9f6dc10632cfc6be7828646bea4d7b82 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - defaults: - additionalProperties: false - description: Default configuration stored in the config-defaults ConfigMap. - properties: - affinity_assistant_pod_template: - default: "" - description: Pod template to use for affinity assistant pods. - type: string - cloud_events_sink: - default: "" - description: CloudEvents sink to be used for TaskRun and PipelineRun. - If no sink is specified, no CloudEvent is generated. - type: string - managed_by_label_value: - default: tekton-pipelines - description: Value given to the 'app.kubernetes.io/managed-by' label - applied to all Pods created for TaskRuns. - type: string - max_matrix_combinations_count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - pod_template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - service_account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - task_run_workspace_binding: - default: "" - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - example: 'emptyDir: {}' - type: string - x-example-description: Use emptyDir volume for workspace - timeout_minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the feature-flags ConfigMap. - properties: - await_sidecar_readiness: - default: "true" - description: Setting this flag to 'false' will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - disable_affinity_assistant: - default: "false" - description: Setting this flag to 'true' will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable_creds_init: - default: "false" - description: Setting this flag to 'true' will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable_api_fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable_custom_tasks: - default: "false" - description: Setting this flag to 'true' enables the use of custom tasks - from within pipelines. This is an experimental feature and thus should - still be considered an alpha feature. - type: string - enable_tekton_oci_bundles: - default: "false" - description: Setting this flag to 'true' enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - require_git_ssh_secret_known_hosts: - default: "false" - description: Setting this flag to 'true' will require that any Git SSH - Secret offered to Tekton must have known_hosts included. - type: string - running_in_environment_with_injected_sidecars: - default: "true" - description: This option should be set to 'false' when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send_cloudevents_for_runs: - default: "false" - description: Setting this flag to 'true' enables CloudEvents for Runs, - as long as a CloudEvents sink is configured in the config-defaults - config map. - type: string - type: object - type: object - version: 0.40.2 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.41.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.41.0.yml deleted file mode 100644 index 8647589..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.41.0.yml +++ /dev/null @@ -1,137 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.41.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/tektoncd/pipeline/releases - releasedAt: "2022-11-06T13:29:50Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:c4ae69b7d9cf261d09846d6e39fa53b7ef68890df1333339c921a1f5f10fe321 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - defaults: - additionalProperties: false - description: Default configuration stored in the config-defaults ConfigMap. - properties: - affinity_assistant_pod_template: - default: "" - description: Pod template to use for affinity assistant pods. - type: string - cloud_events_sink: - default: "" - description: CloudEvents sink to be used for TaskRun and PipelineRun. - If no sink is specified, no CloudEvent is generated. - type: string - managed_by_label_value: - default: tekton-pipelines - description: Value given to the 'app.kubernetes.io/managed-by' label - applied to all Pods created for TaskRuns. - type: string - max_matrix_combinations_count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - pod_template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - service_account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - task_run_workspace_binding: - default: "" - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - example: 'emptyDir: {}' - type: string - x-example-description: Use emptyDir volume for workspace - timeout_minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the feature-flags ConfigMap. - properties: - await_sidecar_readiness: - default: "true" - description: Setting this flag to 'false' will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - disable_affinity_assistant: - default: "false" - description: Setting this flag to 'true' will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable_creds_init: - default: "false" - description: Setting this flag to 'true' will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable_api_fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable_custom_tasks: - default: "false" - description: Setting this flag to 'true' enables the use of custom tasks - from within pipelines. This is an experimental feature and thus should - still be considered an alpha feature. - type: string - enable_tekton_oci_bundles: - default: "false" - description: Setting this flag to 'true' enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - require_git_ssh_secret_known_hosts: - default: "false" - description: Setting this flag to 'true' will require that any Git SSH - Secret offered to Tekton must have known_hosts included. - type: string - running_in_environment_with_injected_sidecars: - default: "true" - description: This option should be set to 'false' when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send_cloudevents_for_runs: - default: "false" - description: Setting this flag to 'true' enables CloudEvents for Runs, - as long as a CloudEvents sink is configured in the config-defaults - config map. - type: string - type: object - type: object - version: 0.41.0 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0+kadras.1.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0+kadras.1.yml deleted file mode 100644 index 05df656..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.42.0+kadras.1.yml +++ /dev/null @@ -1,151 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.42.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/tektoncd/pipeline/releases - releasedAt: "2022-12-13T19:34:24Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:6bb807ef2182b2fca97eb57c3837c47b873a15ca02a0745943ea7b8b92ba616f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - defaults: - additionalProperties: false - description: Default configuration stored in the config-defaults ConfigMap. - properties: - affinity_assistant_pod_template: - default: "" - description: Pod template to use for affinity assistant pods. - type: string - cloud_events_sink: - default: "" - description: CloudEvents sink to be used for TaskRun and PipelineRun. - If no sink is specified, no CloudEvent is generated. - type: string - managed_by_label_value: - default: tekton-pipelines - description: Value given to the 'app.kubernetes.io/managed-by' label - applied to all Pods created for TaskRuns. - type: string - max_matrix_combinations_count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - pod_template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - service_account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - task_run_workspace_binding: - default: "" - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - example: 'emptyDir: {}' - type: string - x-example-description: Use emptyDir volume for workspace - timeout_minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the feature-flags ConfigMap. - properties: - await_sidecar_readiness: - default: "true" - description: Setting this flag to 'false' will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - disable_affinity_assistant: - default: "false" - description: Setting this flag to 'true' will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable_creds_init: - default: "false" - description: Setting this flag to 'true' will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable_api_fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable_custom_tasks: - default: "false" - description: Setting this flag to 'true' enables the use of custom tasks - from within pipelines. This is an experimental feature and thus should - still be considered an alpha feature. - type: string - enable_provenance_in_status: - default: "false" - description: Setting this flag to 'true' enables populating the 'provenance' - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable_tekton_oci_bundles: - default: "false" - description: Setting this flag to 'true' enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - require_git_ssh_secret_known_hosts: - default: "false" - description: Setting this flag to 'true' will require that any Git SSH - Secret offered to Tekton must have known_hosts included. - type: string - resource_verification_mode: - default: skip - description: Setting this flag to 'enforce' will enforce verification - of tasks/pipeline. Failing to verify will fail the taskrun/pipelinerun. - 'warn' will only log the err message and 'skip' will skip the whole - verification. - type: string - running_in_environment_with_injected_sidecars: - default: "true" - description: This option should be set to 'false' when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send_cloudevents_for_runs: - default: "false" - description: Setting this flag to 'true' enables CloudEvents for Runs, - as long as a CloudEvents sink is configured in the config-defaults - config map. - type: string - type: object - type: object - version: 0.42.0+kadras.1 diff --git a/repo/pkgrepo-build.yml b/repo/pkgrepo-build.yml index c20d866..140bf1c 100644 --- a/repo/pkgrepo-build.yml +++ b/repo/pkgrepo-build.yml @@ -1,9 +1,9 @@ apiVersion: kctrl.carvel.dev/v1alpha1 kind: PackageRepositoryBuild metadata: - creationTimestamp: "2022-09-24T20:15:30Z" + creationTimestamp: "2023-01-12T21:36:30Z" name: repository.packages.kadras.io spec: export: imgpkgBundle: - image: ghcr.io/arktonix/kadras-packages + image: ghcr.io/kadras-io/kadras-packages From 27cb93a154d67ae10c13fb96847042bac0b22878 Mon Sep 17 00:00:00 2001 From: github-actions Date: Thu, 12 Jan 2023 22:58:29 +0000 Subject: [PATCH 120/601] Update Tekton Pipelines metadata and add version 0.43.2 --- .../0.43.2.yml | 151 ++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 152 insertions(+), 1 deletion(-) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.43.2.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.43.2.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.43.2.yml new file mode 100644 index 0000000..8f8a59a --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.43.2.yml @@ -0,0 +1,151 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.43.2 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/tektoncd/pipeline/releases + releasedAt: "2023-01-12T22:56:16Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:144b5b28ed46733207b8a1490e3d9e93c14b9ffc93e1cf220135593869d27e76 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + defaults: + additionalProperties: false + description: Default configuration stored in the config-defaults ConfigMap. + properties: + affinity_assistant_pod_template: + default: "" + description: Pod template to use for affinity assistant pods. + type: string + cloud_events_sink: + default: "" + description: CloudEvents sink to be used for TaskRun and PipelineRun. + If no sink is specified, no CloudEvent is generated. + type: string + managed_by_label_value: + default: tekton-pipelines + description: Value given to the 'app.kubernetes.io/managed-by' label + applied to all Pods created for TaskRuns. + type: string + max_matrix_combinations_count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + pod_template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + service_account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + task_run_workspace_binding: + default: "" + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + example: 'emptyDir: {}' + type: string + x-example-description: Use emptyDir volume for workspace + timeout_minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the feature-flags ConfigMap. + properties: + await_sidecar_readiness: + default: "true" + description: Setting this flag to 'false' will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + disable_affinity_assistant: + default: "false" + description: Setting this flag to 'true' will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable_creds_init: + default: "false" + description: Setting this flag to 'true' will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable_api_fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable_custom_tasks: + default: "false" + description: Setting this flag to 'true' enables the use of custom tasks + from within pipelines. This is an experimental feature and thus should + still be considered an alpha feature. + type: string + enable_provenance_in_status: + default: "false" + description: Setting this flag to 'true' enables populating the 'provenance' + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable_tekton_oci_bundles: + default: "false" + description: Setting this flag to 'true' enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + require_git_ssh_secret_known_hosts: + default: "false" + description: Setting this flag to 'true' will require that any Git SSH + Secret offered to Tekton must have known_hosts included. + type: string + resource_verification_mode: + default: skip + description: Setting this flag to 'enforce' will enforce verification + of tasks/pipeline. Failing to verify will fail the taskrun/pipelinerun. + 'warn' will only log the err message and 'skip' will skip the whole + verification. + type: string + running_in_environment_with_injected_sidecars: + default: "true" + description: This option should be set to 'false' when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send_cloudevents_for_runs: + default: "false" + description: Setting this flag to 'true' enables CloudEvents for Runs, + as long as a CloudEvents sink is configured in the config-defaults + config map. + type: string + type: object + type: object + version: 0.43.2 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml b/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml index bd27b0d..0907f60 100644 --- a/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml +++ b/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml @@ -10,5 +10,5 @@ spec: longDescription: A cloud native solution for building CI/CD pipelines. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: A cloud native solution for building CI/CD pipelines. From 6279271e09b3a31452905e5530d0dff44075cb31 Mon Sep 17 00:00:00 2001 From: github-actions Date: Thu, 12 Jan 2023 23:02:43 +0000 Subject: [PATCH 121/601] Update Spring Boot Conventions metadata and add version 0.1.3 --- .../0.1.3.yml | 67 +++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 68 insertions(+), 1 deletion(-) create mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.1.3.yml diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.3.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.3.yml new file mode 100644 index 0000000..462b6d7 --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.3.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io.0.1.3 +spec: + licenses: + - Apache 2.0 + refName: spring-boot-conventions.packages.kadras.io + releaseNotes: https://github.com/kadras-io/spring-boot-conventions + releasedAt: "2023-01-12T23:00:24Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:751dd0b3bcc76e2dd3d4b6152b45af790db1959661bf54e1fd36d82d89b0b6be + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: spring-boot-conventions + description: The namespace where to install Spring Boot Conventions + type: string + resources: + additionalProperties: false + description: Resource configuration for the Convention Server + properties: + limits: + additionalProperties: false + description: Resource limits + properties: + cpu: + default: 100m + description: CPU limits + type: string + memory: + default: 256Mi + description: Memory limits + type: string + type: object + requests: + additionalProperties: false + description: Resource requests + properties: + cpu: + default: 100m + description: CPU requests + type: string + memory: + default: 20Mi + description: Memory requests + type: string + type: object + type: object + type: object + version: 0.1.3 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml index 6d6fd27..c8804f4 100644 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml @@ -13,5 +13,5 @@ spec: developer's intent. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: Spring Boot Convention Server for Cartographer. From 384a473f7c9ee6593dacd081d791c28abcbf73ad Mon Sep 17 00:00:00 2001 From: github-actions Date: Thu, 12 Jan 2023 23:14:33 +0000 Subject: [PATCH 122/601] Update Metrics Server metadata and add version 0.6.2+kadras.1 --- .../0.6.2+kadras.1.yml | 148 ++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 149 insertions(+), 1 deletion(-) create mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.1.yml diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.1.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.1.yml new file mode 100644 index 0000000..ca5b7d8 --- /dev/null +++ b/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.1.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: metrics-server.packages.kadras.io.0.6.2+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kubernetes-sigs/metrics-server/releases + releasedAt: "2023-01-12T23:12:22Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-metrics-server@sha256:57a109b45ad86ffd9f47f3626800fed777f94ba4fbb5eb1ca1a9a4286f66c9ed + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + daemonset: + additionalProperties: false + properties: + updateStrategy: + default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + nullable: true + type: integer + maxUnavailable: + default: null + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object + updateStrategy: + default: null + description: Update strategy of deployments + nullable: true + type: string + type: object + metricsServer: + additionalProperties: false + properties: + config: + additionalProperties: false + properties: + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean + args: + default: [] + description: Arguments passed into metrics-server container + items: + default: "" + type: string + type: array + probe: + additionalProperties: false + properties: + failureThreshold: + default: 3 + description: Probe failureThreshold of metrics-server deployment + type: integer + periodSeconds: + default: 10 + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer + tolerations: + default: [] + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string + type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: + additionalProperties: false + properties: + name: + default: "" + description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: + default: "" + description: The repository of metrics-server image + type: string + tag: + default: "" + description: The image tag + type: string + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object + version: 0.6.2+kadras.1 diff --git a/repo/packages/metrics-server.packages.kadras.io/metadata.yml b/repo/packages/metrics-server.packages.kadras.io/metadata.yml index 22e6aa8..2e32734 100644 --- a/repo/packages/metrics-server.packages.kadras.io/metadata.yml +++ b/repo/packages/metrics-server.packages.kadras.io/metadata.yml @@ -13,6 +13,6 @@ spec: resource metrics for Kubernetes built-in autoscaling pipelines. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: Scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. From 936e7e73033b1f34d5f72df6dffc55919d1b8150 Mon Sep 17 00:00:00 2001 From: github-actions Date: Thu, 12 Jan 2023 23:17:41 +0000 Subject: [PATCH 123/601] Update Kpack metadata and add version 0.9.1+kadras.1 --- .../0.9.1+kadras.1.yml | 95 +++++++++++++++++++ .../kpack.packages.kadras.io/metadata.yml | 2 +- 2 files changed, 96 insertions(+), 1 deletion(-) create mode 100644 repo/packages/kpack.packages.kadras.io/0.9.1+kadras.1.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.9.1+kadras.1.yml b/repo/packages/kpack.packages.kadras.io/0.9.1+kadras.1.yml new file mode 100644 index 0000000..7ba3b20 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.9.1+kadras.1.yml @@ -0,0 +1,95 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.9.1+kadras.1 +spec: + capacityRequirementsDescription: Registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/pivotal/kpack/releases + releasedAt: "2023-01-12T23:15:39Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:18b6ce3b289f61a86bde3e42be9919019483f3dceef08ba43cafc83b9fd15b62 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'CA Certificate to be injected into the kpack controller trust + store for communicating with self signed registries. Note: This will not + be injected into builds, you need to use the cert injection webhook with + the kpack.io/build label value' + type: string + kp_default_repository: + default: "" + description: The default repository to use for builder images and dependencies + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + kp_default_repository_aws_iam_role_arn: + default: "" + description: IAM credentials to access kp_default_repository if the registry + is on AWS + type: string + kp_default_repository_password: + default: "" + description: 'Token to access kp_default_repository. Note: Use contents + of service account key json for GCR' + type: string + kp_default_repository_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to access + kp_default_repository + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + kp_default_repository + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials to + access kp_default_repository + type: string + type: object + kp_default_repository_username: + default: "" + description: 'Username to access kp_default_repository. Note: Use _json_key + for GCR' + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.9.1+kadras.1 diff --git a/repo/packages/kpack.packages.kadras.io/metadata.yml b/repo/packages/kpack.packages.kadras.io/metadata.yml index 8e4b16b..da7d5e3 100644 --- a/repo/packages/kpack.packages.kadras.io/metadata.yml +++ b/repo/packages/kpack.packages.kadras.io/metadata.yml @@ -12,6 +12,6 @@ spec: (CNB) maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: kpack builds application source code into OCI compliant images using Cloud Native Buildpacks From e233850248480f624ba4e75d2ac71b9843fcd029 Mon Sep 17 00:00:00 2001 From: github-actions Date: Thu, 12 Jan 2023 23:32:06 +0000 Subject: [PATCH 124/601] Update Knative Eventing metadata and add version 1.8.4+kadras.1 --- .../1.8.4+kadras.1.yml | 45 +++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 46 insertions(+), 1 deletion(-) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.4+kadras.1.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.4+kadras.1.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.4+kadras.1.yml new file mode 100644 index 0000000..70a6beb --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.8.4+kadras.1.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.8.4+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/knative/eventing/releases + releasedAt: "2023-01-12T23:29:53Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:7758f1009ff9aa4918ca516b8502ebe327e14f3ad5cabc97d1c186f2fbb7e58d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.8.4+kadras.1 diff --git a/repo/packages/knative-eventing.packages.kadras.io/metadata.yml b/repo/packages/knative-eventing.packages.kadras.io/metadata.yml index 77a31d5..a0ecc19 100644 --- a/repo/packages/knative-eventing.packages.kadras.io/metadata.yml +++ b/repo/packages/knative-eventing.packages.kadras.io/metadata.yml @@ -12,5 +12,5 @@ spec: to sinks, enabling developers to use an event-driven architecture with their applications. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: Toolkit to build event-driven architectures on Kubernetes. From 4a3c330fbd3e6fc2fa4b8e3e80c54d0eefb7c8ec Mon Sep 17 00:00:00 2001 From: github-actions Date: Thu, 12 Jan 2023 23:34:37 +0000 Subject: [PATCH 125/601] Update Knative Serving metadata and add version 1.8.3+kadras.1 --- .../1.8.3+kadras.1.yml | 117 ++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 118 insertions(+), 1 deletion(-) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.3+kadras.1.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.3+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.3+kadras.1.yml new file mode 100644 index 0000000..89692b0 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.8.3+kadras.1.yml @@ -0,0 +1,117 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.8.3+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/knative/serving/releases + releasedAt: "2023-01-12T23:32:07Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:23498b64d519fdbe964817cb683359010d0bb8f203ab91e46cfdbcec26cf9df6 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + domain: + additionalProperties: false + description: DNS configuration + properties: + name: + default: 127.0.0.1.sslip.io + description: Your own domain name + type: string + url_template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The domain template to use when creating new services + type: string + type: object + ingress: + additionalProperties: false + description: Ingress configuration + properties: + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internale Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed + type: string + type: object + type: object + namespace: + default: knative-serving + description: The namespace where to install Knative Serving + type: string + scaling: + additionalProperties: false + description: Configuration for the Knative autoscaler + properties: + allow_zero_initial_scale: + default: "true" + description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' + annotation can be set to 0 + type: string + initial_scale: + default: "1" + description: The initial target scale of a revision after creation + type: string + max_scale: + default: "0" + description: The maximum scale of a revision. If set to 0, the revision + has no maximum scale. + type: string + min_scale: + default: "0" + description: The minimum scale of a revision + type: string + scale_down_delay: + default: 0s + description: The amount of time that must pass at reduced concurrency + before a scale down decision is applied. If 0s, no delay. + type: string + type: object + tls: + additionalProperties: false + description: Configuration for automatic TLS certificates + properties: + certmanager: + additionalProperties: false + description: Configuration for integrating with cert-manager for certificate + issuing + properties: + clusterissuer: + default: "" + description: Provide a cluster issuer if you want to enable auto-TLS + type: string + type: object + type: object + type: object + version: 1.8.3+kadras.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/metadata.yml b/repo/packages/knative-serving.packages.kadras.io/metadata.yml index 42139d3..f91dbff 100644 --- a/repo/packages/knative-serving.packages.kadras.io/metadata.yml +++ b/repo/packages/knative-serving.packages.kadras.io/metadata.yml @@ -12,5 +12,5 @@ spec: of applications and functions as serverless containers maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: Serverless platform on Kubernetes From 8c93066fa7928284df098b06c572711ff3a58635 Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 16:14:08 +0000 Subject: [PATCH 126/601] Update FluxCD Source Controller metadata and add version 0.33.0+kadras.1 --- .../0.33.0+kadras.1.yml | 72 +++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 73 insertions(+), 1 deletion(-) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0+kadras.1.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0+kadras.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0+kadras.1.yml new file mode 100644 index 0000000..81dd665 --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0+kadras.1.yml @@ -0,0 +1,72 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.33.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/fluxcd/source-controller/releases + releasedAt: "2023-01-13T16:11:45Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:b7b13bbf52581f722c23819000aa3cfe01f78d59038d7069af25bbfe4a5491be + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller + type: string + proxy: + additionalProperties: false + description: Configure proxy support + properties: + http_proxy: + default: "" + description: The HTTP proxy URL + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the source-controller Service + type: integer + type: object + version: 0.33.0+kadras.1 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml index 86e07cd..ff00d7f 100644 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml @@ -13,7 +13,7 @@ spec: of the GitOps toolkit. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: The FluxCD Source Controller is a Kubernetes operator, specialised in artifacts acquisition from external sources such as Git, Helm repositories and S3 buckets. From e1a96ed4811d65595d4496edac5d250fd4dcdbfa Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 16:34:51 +0000 Subject: [PATCH 127/601] Update Contour metadata and add version 1.23.2+kadras.1 --- .../1.23.2+kadras.1.yml | 206 ++++++++++++++++++ .../contour.packages.kadras.io/metadata.yml | 2 +- 2 files changed, 207 insertions(+), 1 deletion(-) create mode 100644 repo/packages/contour.packages.kadras.io/1.23.2+kadras.1.yml diff --git a/repo/packages/contour.packages.kadras.io/1.23.2+kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.23.2+kadras.1.yml new file mode 100644 index 0000000..563e4f1 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.23.2+kadras.1.yml @@ -0,0 +1,206 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.23.2+kadras.1 +spec: + capacityRequirementsDescription: Varies significantly based on number of Services, + Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each + Contour and Envoy pod, but this can and should be tuned based on observed usage. + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/projectcontour/contour/releases + releasedAt: "2023-01-13T16:32:44Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:199401260a26831f6cefb5ace643b55278e77b5cf889b7ccd84f8f660d84679b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: Settings for the TLS certificates for securing communication + between Contour and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If useCertManager is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If useCertManager is false, this field is ignored. + type: string + useCertManager: + default: false + description: Whether to use cert-manager to provision TLS certificates + for securing communication between Contour and Envoy. If false, the + upstream Contour certgen job will be used to provision certificates. + If true, the cert-manager addon must be installed in the cluster. + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + configFileContents: + default: null + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + logLevel: + default: info + description: The Contour log level. Valid options are 'info' and 'debug'. + type: string + replicas: + default: 2 + description: How many Contour pod replicas to have. + type: integer + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enable: + default: false + description: Whether to enable host ports. If false, http & https + are ignored. + type: boolean + http: + default: 80 + description: If enable == true, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enable == true, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + logLevel: + default: info + description: The Envoy log level. + type: string + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If infrastructure + provider is not 'aws', these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: "" + description: The external traffic policy for the Envoy service. + If type is 'ClusterIP', this field is ignored. Otherwise, defaults + to 'Cluster' for vsphere and 'Local' for others. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If type is not 'LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not 'NodePort' or 'LoadBalancer', these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, will default to 'NodePort' for docker and vsphere + and 'LoadBalancer' for others. + nullable: true + type: string + type: object + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + replicas: + default: 2 + description: The number of Envoy replicas to deploy when 'type' + is set to 'Deployment'. If not specified, it will default to '2'. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload Envoy is deployed as. + Options are 'Deployment' or 'DaemonSet'. If not specified, will + default to 'DaemonSet'. + type: string + type: object + type: object + infrastructureProvider: + default: "" + description: The underlying infrastructure provider. Options are aws, azure, + docker and vsphere. This field is not required, but enables better validation + and defaulting if provided. + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.23.2+kadras.1 diff --git a/repo/packages/contour.packages.kadras.io/metadata.yml b/repo/packages/contour.packages.kadras.io/metadata.yml index e8ca714..8174169 100644 --- a/repo/packages/contour.packages.kadras.io/metadata.yml +++ b/repo/packages/contour.packages.kadras.io/metadata.yml @@ -14,5 +14,5 @@ spec: updates and multi-team ingress delegation. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: An Envoy-based ingress controller From 152d484d68fee608cd6fd65eabe8ff5298479558 Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 19:12:27 +0000 Subject: [PATCH 128/601] Update Cert Manager metadata and add version 1.11.0 --- .../1.11.0.yml | 40 +++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 41 insertions(+), 1 deletion(-) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.0.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.0.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.0.yml new file mode 100644 index 0000000..0bd36a0 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.11.0.yml @@ -0,0 +1,40 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.11.0 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2023-01-13T19:10:08Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:76d5d060d8a864933699715d29ef3fdc805378ed47600e029b03aadad020e77e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager + type: string + type: object + version: 1.11.0 diff --git a/repo/packages/cert-manager.packages.kadras.io/metadata.yml b/repo/packages/cert-manager.packages.kadras.io/metadata.yml index 6e31ccc..eca75c7 100644 --- a/repo/packages/cert-manager.packages.kadras.io/metadata.yml +++ b/repo/packages/cert-manager.packages.kadras.io/metadata.yml @@ -13,5 +13,5 @@ spec: longDescription: Automatically provision and manage TLS certificates in Kubernetes maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: Cloud native certificate management From e002e6aa57dec02bc41dab9d1f9147fea63d9b69 Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 19:17:38 +0000 Subject: [PATCH 129/601] Update Argo CD metadata and add version 2.5.6 --- .../argo-cd.packages.kadras.io/2.5.6.yml | 45 +++++++++++++++++++ .../argo-cd.packages.kadras.io/metadata.yml | 2 +- 2 files changed, 46 insertions(+), 1 deletion(-) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.6.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.6.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.6.yml new file mode 100644 index 0000000..ce470c3 --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.5.6.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.5.6 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/argoproj/argo-cd/releases + releasedAt: "2023-01-13T19:15:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-argo-cd@sha256:6d6ff476644c0a40323c1a8b73cbe77a1523d00bfb2eaf02c890bee69de9011f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.5.6 diff --git a/repo/packages/argo-cd.packages.kadras.io/metadata.yml b/repo/packages/argo-cd.packages.kadras.io/metadata.yml index b82afe1..12deb34 100644 --- a/repo/packages/argo-cd.packages.kadras.io/metadata.yml +++ b/repo/packages/argo-cd.packages.kadras.io/metadata.yml @@ -11,6 +11,6 @@ spec: longDescription: Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. From 7d5b98e59dab3959eed63a8a3256704740cb1803 Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 19:36:10 +0000 Subject: [PATCH 130/601] Update Namespace Setup metadata and add version 0.2.1 --- .../0.2.1.yml | 83 +++++++++++++++++++ .../metadata.yml | 5 ++ 2 files changed, 88 insertions(+) create mode 100644 repo/packages/namespace-setup.packages.kadras.io/0.2.1.yml diff --git a/repo/packages/namespace-setup.packages.kadras.io/0.2.1.yml b/repo/packages/namespace-setup.packages.kadras.io/0.2.1.yml new file mode 100644 index 0000000..e6f5ba6 --- /dev/null +++ b/repo/packages/namespace-setup.packages.kadras.io/0.2.1.yml @@ -0,0 +1,83 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: namespace-setup.packages.kadras.io.0.2.1 +spec: + refName: namespace-setup.packages.kadras.io + releasedAt: "2023-01-13T19:34:08Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/namespace-setup@sha256:78cbf82a77112729790c136804582c06b2445344dec2f70049b4bebf8f138053 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + gitops: + additionalProperties: false + description: Configuration to access the Git repositories used in the GitOps + workflows + properties: + password: + default: "" + description: The password for the Git server used in the GitOps workflows + type: string + server: + default: https://github.com + description: The Git server hosting the Git repositories used in the + GitOps workflows + type: string + username: + default: "" + description: The username for the Git server used in the GitOps workflows + type: string + type: object + namespaces: + default: [] + description: Configuration for developer namespaces + items: + additionalProperties: false + description: Details about the namespace to configure + properties: + exists: + default: false + type: boolean + name: + default: "" + type: string + type: object + type: array + registry: + additionalProperties: false + description: Configuration to access the OCI registry where the Kadras packages + are stored + properties: + password: + default: "" + description: The password for the OCI registry server where the Kadras + packages are stored + type: string + server: + default: "" + description: The OCI registry server where the Kadras packages are stored + type: string + username: + default: "" + description: The username for the OCI registry server where the Kadras + packages are stored + type: string + type: object + type: object + version: 0.2.1 diff --git a/repo/packages/namespace-setup.packages.kadras.io/metadata.yml b/repo/packages/namespace-setup.packages.kadras.io/metadata.yml index 70000e2..ebbe76a 100644 --- a/repo/packages/namespace-setup.packages.kadras.io/metadata.yml +++ b/repo/packages/namespace-setup.packages.kadras.io/metadata.yml @@ -4,6 +4,11 @@ metadata: creationTimestamp: null name: namespace-setup.packages.kadras.io spec: + categories: + - environment provisioning displayName: namespace-setup longDescription: namespace-setup.packages.kadras.io + maintainers: + - name: Thomas Vitale + providerName: Kadras shortDescription: namespace-setup.packages.kadras.io From 488c6bf1ff3ed1aa0d415e111db4d93414e37010 Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 19:45:29 +0000 Subject: [PATCH 131/601] Update Kpack Dependencies metadata and add version 0.3.3 --- .../0.3.3.yml | 34 +++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 35 insertions(+), 1 deletion(-) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.3.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.3.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.3.yml new file mode 100644 index 0000000..ee3b6d1 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.3.yml @@ -0,0 +1,34 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.3.3 +spec: + refName: kpack-dependencies.packages.kadras.io + releasedAt: "2023-01-13T19:43:23Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:24a7b479c1b9d84f0e1da9708b85bc7d095997b582c8ad269765c0815a480bc3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + default: "" + description: The OCI registry where to publish builder images. The same + as configured in kpack. + type: string + type: object + version: 0.3.3 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml b/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml index ddeed20..ea58417 100644 --- a/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml +++ b/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml @@ -12,5 +12,5 @@ spec: languages and frameworks. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: A set of buildpacks, stacks, and builders to use with kpack. From 714036dca10c965906be905ad5bb85723bf6b622 Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 20:00:23 +0000 Subject: [PATCH 132/601] Update Cartographer Supply Chains metadata and add version 0.3.1 --- .../0.3.1.yml | 135 ++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 136 insertions(+), 1 deletion(-) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.1.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.1.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.1.yml new file mode 100644 index 0000000..b6c22f0 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.1.yml @@ -0,0 +1,135 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.3.1 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releasedAt: "2023-01-13T19:53:59Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:75d932ea4d326c7e104ae1403b2999d964f71282c11d521b98e06094dd0317f3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cluster_builder: + default: default + description: The ClusterBuilder used by kpack + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + gitops: + additionalProperties: false + description: Configuration for the GitOps steps in the supply chain + properties: + access_secret: + default: git-secret + description: The Secret containing credentials to access the specified + Git repository + type: string + branch: + default: main + description: The branch to use for GitOps activities + type: string + commit_message: + default: Update from Cartographer + description: The commit message to use when pushing configuration changes + to Git + type: string + commit_strategy: + default: direct + description: Whether to commit configuration changes to Git directly + or via a pull request + type: string + pull_request: + additionalProperties: false + properties: + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated + type: string + pull_request_body: + default: "" + description: The body of the pull request + type: string + pull_request_title: + default: "" + description: The title of the pull request + type: string + server_kind: + default: "" + description: The type of Git server where to open the pull request + example: github + type: string + x-example-description: Open a pull request on GitHub + type: object + repository_name: + default: "" + description: The name of the Git repository to use for GitOps + type: string + repository_owner: + default: "" + description: The owner of the specified Git repository + type: string + server_address: + default: "" + description: The server hosting the specified Git repository + type: string + user_email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository + type: string + user_name: + default: cartographer + description: The name of the user interacting with the Git repository + type: string + type: object + registry: + additionalProperties: false + description: Configuration for the OCI Registry where to store the application + images + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data for the OCI Registry where + the deployment configuration files will be pushed to. + type: string + repository: + default: "" + description: The repository under an OCI Registry where to store the + application images + type: string + server: + default: "" + description: The server of the OCI Registry where to store the application + images + type: string + type: object + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + supply_chain: + default: basic + description: The type of supply chain to use + type: string + type: object + version: 0.3.1 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml index e67b857..7177747 100644 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml @@ -13,5 +13,5 @@ spec: for applications and functions. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: Supply chains for applications and functions. From 1ecf7a40045f2b365bef5011ae7a8baebcec22a0 Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 20:09:44 +0000 Subject: [PATCH 133/601] Update Cartographer Delivery metadata and add version 0.2.1 --- .../0.2.1.yml | 51 +++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 52 insertions(+), 1 deletion(-) create mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.2.1.yml diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.2.1.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.2.1.yml new file mode 100644 index 0000000..f9605de --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/0.2.1.yml @@ -0,0 +1,51 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io.0.2.1 +spec: + refName: cartographer-delivery.packages.kadras.io + releasedAt: "2023-01-13T20:07:43Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-delivery@sha256:b9e01583113ccd1b0cb21b790093b26c03fa89e966c6c0a7307d014bfba4e1ec + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + delivery_chain: + default: basic + description: The type of delivery chain to use when deploying workloads + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + gitops: + additionalProperties: false + description: Configuration for the GitOps steps in the delivery chain + properties: + access_secret: + default: git-secret + description: The Secret containing credentials to access the specified + Git repository + type: string + type: object + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + type: object + version: 0.2.1 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml b/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml index 0f39740..564c7f1 100644 --- a/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml @@ -13,5 +13,5 @@ spec: using a GitOps or RegistryOps approach. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: Deployment with GitOps/RegistryOps. From f2009ff06f99164d9947c17bc8f7fb0cdfba2bbd Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 20:20:55 +0000 Subject: [PATCH 134/601] Update Cartographer Blueprints metadata and add version 0.3.1 --- .../0.3.1.yml | 38 +++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 39 insertions(+), 1 deletion(-) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.3.1.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.1.yml new file mode 100644 index 0000000..89cf3d6 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.1.yml @@ -0,0 +1,38 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.3.1 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releasedAt: "2023-01-13T20:18:42Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:fd564aca03a00504038d3771b6d72ebd804eccd31d6b379e6c0a439ae1fa3c67 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being applied. + items: + default: "" + type: string + type: array + type: object + version: 0.3.1 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml index c12b08a..5de6e3b 100644 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml @@ -13,5 +13,5 @@ spec: framework to build paved paths to production. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: A set of reusable blueprints for Cartographer. From af1ee2affda2132c1f63f6dab936b21457f32b61 Mon Sep 17 00:00:00 2001 From: github-actions Date: Fri, 13 Jan 2023 20:31:44 +0000 Subject: [PATCH 135/601] Update Application Platform metadata and add version 0.5.2 --- .../0.5.2.yml | 116 ++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 117 insertions(+), 1 deletion(-) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.5.2.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.5.2.yml b/repo/packages/application-platform.packages.kadras.io/0.5.2.yml new file mode 100644 index 0000000..a474512 --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.5.2.yml @@ -0,0 +1,116 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.5.2 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releasedAt: "2023-01-13T20:29:26Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-application-platform@sha256:cb4a942f6f4d7c11875e9aed30b1200f7d95784fc53fa6f7a9492b4c7f7bba21 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.5.2 diff --git a/repo/packages/application-platform.packages.kadras.io/metadata.yml b/repo/packages/application-platform.packages.kadras.io/metadata.yml index fcc08cf..763e8b3 100644 --- a/repo/packages/application-platform.packages.kadras.io/metadata.yml +++ b/repo/packages/application-platform.packages.kadras.io/metadata.yml @@ -12,5 +12,5 @@ spec: or internal developer platform (IDP) on Kubernetes. maintainers: - name: Thomas Vitale - providerName: Arktonix + providerName: Kadras shortDescription: Application platform on Kubernetes. From e6f90f96f90306e4ba1fa0a904a62207a3057fb3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 13 Jan 2023 21:34:10 +0100 Subject: [PATCH 136/601] Bump version to 0.7.3 --- .github/workflows/release.yml | 2 +- README.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index e00ee1a..6a47d5d 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.7.2 + VERSION: 0.7.3 jobs: build: diff --git a/README.md b/README.md index 901b1e1..f45624d 100644 --- a/README.md +++ b/README.md @@ -47,7 +47,7 @@ You can install the Kadras package repository in a dedicated namespace using `kc ```shell kubectl create namespace kadras-packages kctrl package repository add -r kadras-repo \ - --url ghcr.io/kadras-io/kadras-packages:0.7.2 \ + --url ghcr.io/kadras-io/kadras-packages:0.7.3 \ -n kadras-packages ``` From b8f43aa564602576b2e37c033b5ed7af8cb1436c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 8 Feb 2023 00:09:49 +0100 Subject: [PATCH 137/601] Update Tekton Pipelines metadata and add version 0.44.0 (#119) Co-authored-by: github-actions --- .../0.44.0.yml | 521 ++++++++++++++++++ .../metadata.yml | 7 +- 2 files changed, 527 insertions(+), 1 deletion(-) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.44.0.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.44.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.44.0.yml new file mode 100644 index 0000000..06aa098 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.44.0.yml @@ -0,0 +1,521 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.44.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-02-07T23:06:02Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:11437acd8c3b5ed4a0c296657e0412297bb384c2d7bfbb15ed41deee1275d339 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: Self-signed certificate for the private container registry + storing the images used in Tekton Tasks (PEM-encoded format). + type: string + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + affinity_assistant_pod_template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + cloud_events_sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, + and Run lifeycle events. If no sink is specified, no CloudEvent is + generated. + type: string + forbidden_env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + managed_by_label_value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + max_matrix_combinations_count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + pod_template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + service_account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + task_run_workspace_binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + timeout_minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await_sidecar_readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + custom_task_version: + default: v1beta1 + description: Setting this flag will determine the version for custom + tasks created by PipelineRuns. + type: string + disable_affinity_assistant: + default: "false" + description: Setting this flag to `true` will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable_creds_init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + embedded_status: + default: minimal + description: Setting this flag to `full` to enable full embedding of + `TaskRun` and `Run` statuses in the `PipelineRun` status. Set it to + `minimal` to populate the `ChildReferences` field in the `PipelineRun` + status with name, kind, and API version information for each `TaskRun` + and `Run` in the `PipelineRun` instead. Set it to `both` to do both. + type: string + enable_api_fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable_provenance_in_status: + default: "false" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable_tekton_oci_bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + require_git_ssh_secret_known_hosts: + default: "false" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + resource_verification_mode: + default: skip + description: Setting this flag to `enforce` will enforce verification + of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. + `warn` will only log the err message and `skip` will skip the whole + verification. + type: string + running_in_environment_with_injected_sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send_cloudevents_for_runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + type: object + leader_election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease_duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew_deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry_period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel: + additionalProperties: false + description: Configuration of the log level for each Deployment. + properties: + controller: + default: info + description: Log level for the `tekton-pipelines-controller` and + `tekton-pipelines-resolvers` Deployments. + type: string + webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + type: object + zap_logger_config: + default: "" + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics: + additionalProperties: false + description: Configuration for the metrics produced by the Tekton components. + properties: + allow_stackdriver_custom_metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver + using 'global' resource type and custom metric type. Ignore if + `backend_destination` is not `stackdriver`. + type: string + backend_destination: + default: prometheus + description: The system metrics destination. + type: string + pipelinerun: + additionalProperties: false + description: Configuration for the PipelineRun metrics. + properties: + duration_type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram + value isn’t available when the `pipelinerun` level is selected. + type: string + level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling + which labels are included: (pipelinerun, pipeline, namespace), + (pipeline, namespace), (namespace).' + type: string + type: object + stackdriver_project_id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the + cluster's project if this field is not provided. + type: string + taskrun: + additionalProperties: false + description: Configuration for the TaskRun metrics. + properties: + duration_type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram + value isn’t available when the `taskrun` level is selected. + type: string + level: + default: task + description: 'Level for the TaskRun metrics controlling which + labels are included: (taskrun, task, namespace), (task, namespace), + (namespace).' + type: string + type: object + type: object + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + enable: + default: false + description: Setting this flag to `true` enables the trace exporter. + type: boolean + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + endpoint: + default: "" + description: The endpoint where the distributed tracing backend + accepts OpenTelemetry traces using the Jaeger protocol. + type: string + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundle: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default_kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default_service_account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed_namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked_namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default_kind: + default: task + description: The default resource kind to fetch. + type: string + default_namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable_bundles_resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable_cluster_resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable_git_resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable_hub_resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + git: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api_token_secret_key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api_token_secret_name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api_token_secret_namespace: + default: default + description: The namespace containing the API token secret. + type: string + default_org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default_revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default_url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch_timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm_type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server_url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hub: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default_artifact_hub_pipeline_catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default_artifact_hub_task_catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default_kind: + default: task + description: The default resource kind to fetch. + type: string + default_tekton_hub_catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default_type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + pdb: + additionalProperties: false + description: PodDisruptionBudget configuration for the `tekton-pipelines-webhook` + Deployment. + properties: + enable: + default: false + description: Setting this flag to `true` enables a PodDisruptionBudget + for the `tekton-pipelines-webhook` Deployment and ensures high + availability. + type: boolean + type: object + type: object + type: object + version: 0.44.0 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml b/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml index 0907f60..f549795 100644 --- a/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml +++ b/repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml @@ -7,8 +7,13 @@ spec: categories: - ci/cd displayName: tekton-pipelines - longDescription: A cloud native solution for building CI/CD pipelines. + iconSVGBase64: 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 + longDescription: Tekton Pipelines is a Kubernetes extension that installs and runs + on your Kubernetes cluster. It defines a set of Kubernetes Custom Resources that + act as building blocks from which you can assemble CI/CD pipelines. maintainers: - name: Thomas Vitale providerName: Kadras shortDescription: A cloud native solution for building CI/CD pipelines. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-tekton-pipelines + for community support. From 8576427ac2ef7da792275413a6092c1bebdea73e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Feb 2023 20:35:52 +0100 Subject: [PATCH 138/601] Update Cert Manager metadata and add version 1.11.0+kadras.1 (#120) Co-authored-by: github-actions --- .../1.11.0+kadras.1.yml | 128 ++++++++++++++++++ .../metadata.yml | 11 +- 2 files changed, 136 insertions(+), 3 deletions(-) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.1.yml new file mode 100644 index 0000000..6d434c0 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.1.yml @@ -0,0 +1,128 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.11.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2023-02-11T19:30:40Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:3cc778ffeb099e827e357518ea32e4e4b5688ea1ef947270139732bb8719c355 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_ca: + additionalProperties: false + description: Settings for configuring a private CA out-of-the-box. + properties: + enable: + default: true + description: Whether to bootstrap a private CA. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy URL. + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL. + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.11.0+kadras.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/metadata.yml b/repo/packages/cert-manager.packages.kadras.io/metadata.yml index eca75c7..a1569c7 100644 --- a/repo/packages/cert-manager.packages.kadras.io/metadata.yml +++ b/repo/packages/cert-manager.packages.kadras.io/metadata.yml @@ -5,13 +5,18 @@ metadata: name: cert-manager.packages.kadras.io spec: categories: - - certificate + - certificate-management - security - tls displayName: cert-manager iconSVGBase64: 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 - longDescription: Automatically provision and manage TLS certificates in Kubernetes + longDescription: Extensible X.509 certificate controller for Kubernetes. It will + obtain certificates from a variety of Issuers, both popular public Issuers as + well as private Issuers, and ensure the certificates are valid and up-to-date, + and will attempt to renew certificates at a configured time before expiry. maintainers: - name: Thomas Vitale providerName: Kadras - shortDescription: Cloud native certificate management + shortDescription: X.509 certificate management for Kubernetes and OpenShift. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-cert-manager + for community support. From 1692fd60c94ce377fdf7f096bd252bfe84bf5502 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Feb 2023 20:42:24 +0100 Subject: [PATCH 139/601] Add Secretgen Controller 0.13.1 (#121) Update Secretgen Controller metadata and add version 0.13.1 --- .../0.13.1.yml | 67 +++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 68 insertions(+), 1 deletion(-) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.13.1.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.13.1.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.13.1.yml new file mode 100644 index 0000000..00ad7c9 --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.13.1.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.13.1 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releasedAt: "2023-01-27T07:13:38Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:3aa5d6224150062d99f0fcf5d3f5c54d9f9f21f1e6ba9c17a8a30534716dffd5 + template: + - ytt: + paths: + - config/package-bundle/config + - config/release-config.yml + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + create_namespace: + default: true + description: Whether to create namespace specified for secretgen-controller + type: boolean + deployment: + additionalProperties: false + description: Configuration for secretgen-controller deployment + properties: + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: 0 + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + type: integer + maxUnavailable: + default: 1 + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + type: integer + type: object + updateStrategy: + default: "" + description: Update strategy of deployments, empty uses default strategy + type: string + type: object + namespace: + default: secretgen-controller + description: The namespace in which to deploy secretgen-controller + type: string + type: object + version: 0.13.1 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml b/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml index 4300b28..1e2e3bd 100644 --- a/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml +++ b/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml @@ -4,7 +4,7 @@ metadata: name: secretgen-controller.packages.kadras.io spec: categories: - - package management + - secret management displayName: secretgen-controller longDescription: Provide CRDs to specify what secrets need to be on cluster (generated or not). From f747552c89f990a0f49a72f167d1b57ac65158d3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Feb 2023 21:03:51 +0100 Subject: [PATCH 140/601] Improve docs (#122) --- .github/CODEOWNERS.md | 1 + .github/ISSUE_TEMPLATE/bug-report.md | 10 ++- .github/ISSUE_TEMPLATE/feature-request.md | 2 +- .github/ISSUE_TEMPLATE/other-request.md | 8 +++ .github/workflows/release.yml | 4 +- MAINTAINERS.md | 3 + README.md | 83 +++++++++++------------ SECURITY.md | 5 ++ 8 files changed, 63 insertions(+), 53 deletions(-) create mode 100644 .github/CODEOWNERS.md create mode 100644 .github/ISSUE_TEMPLATE/other-request.md create mode 100644 MAINTAINERS.md create mode 100644 SECURITY.md diff --git a/.github/CODEOWNERS.md b/.github/CODEOWNERS.md new file mode 100644 index 0000000..cdf81a7 --- /dev/null +++ b/.github/CODEOWNERS.md @@ -0,0 +1 @@ +* @ThomasVitale \ No newline at end of file diff --git a/.github/ISSUE_TEMPLATE/bug-report.md b/.github/ISSUE_TEMPLATE/bug-report.md index 25c4f24..596f0bf 100644 --- a/.github/ISSUE_TEMPLATE/bug-report.md +++ b/.github/ISSUE_TEMPLATE/bug-report.md @@ -2,7 +2,7 @@ name: Bug report about: Tell us about a problem you are experiencing title: '' -labels: bug +labels: bug, triage assignees: '' --- @@ -19,10 +19,8 @@ assignees: '' **Anything else you would like to add:** [Additional information that will assist in solving the issue.] -**Additional context:** -Add any other context about the problem here. - **Environment:** -- Kubernetes version (execute `kubectl version`): -- kapp-controller version (execute `kubectl get deployment -n kapp-controller kapp-controller -o yaml` and the annotation is `kbld.k14s.io/images`): +* Kubernetes version (execute `kubectl version`): +* kctrl version (execute `kctrl version`): +* kapp-controller version (execute `kubectl get deployment -n kapp-controller kapp-controller -o yaml` and the annotation is `kbld.k14s.io/images`): diff --git a/.github/ISSUE_TEMPLATE/feature-request.md b/.github/ISSUE_TEMPLATE/feature-request.md index 87c8ff2..270da4e 100644 --- a/.github/ISSUE_TEMPLATE/feature-request.md +++ b/.github/ISSUE_TEMPLATE/feature-request.md @@ -2,7 +2,7 @@ name: Feature request about: Suggest an idea for this project title: '' -labels: enhancement +labels: enhancement, triage assignees: '' --- diff --git a/.github/ISSUE_TEMPLATE/other-request.md b/.github/ISSUE_TEMPLATE/other-request.md new file mode 100644 index 0000000..b5722c0 --- /dev/null +++ b/.github/ISSUE_TEMPLATE/other-request.md @@ -0,0 +1,8 @@ +--- +name: Other issue or question +about: Free form issue or question +title: '' +labels: triage +assignees: '' + +--- diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6a47d5d..8e81bb9 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.7.3 + VERSION: 0.7.4 jobs: build: @@ -23,7 +23,7 @@ jobs: uses: actions/checkout@v3.3.0 - name: Set up Carvel - uses: vmware-tanzu/carvel-setup-action@v1.2.0 + uses: carvel-dev/setup-action@v1.3.0 with: token: ${{ secrets.GITHUB_TOKEN }} diff --git a/MAINTAINERS.md b/MAINTAINERS.md new file mode 100644 index 0000000..2249643 --- /dev/null +++ b/MAINTAINERS.md @@ -0,0 +1,3 @@ +# Maintainers + +* Thomas Vitale | [ThomasVitale](https://github.com/ThomasVitale) \ No newline at end of file diff --git a/README.md b/README.md index f45624d..0598623 100644 --- a/README.md +++ b/README.md @@ -1,10 +1,13 @@ # Kadras Packages -The SLSA Level 3 badge +![Release Workflow](https://github.com/kadras-io/kadras-packages/actions/workflows/release.yml/badge.svg) +[![The SLSA Level 3 badge](https://slsa.dev/images/gh-badge-level3.svg)](https://slsa.dev/spec/v0.1/levels) +[![The Apache 2.0 license badge](https://img.shields.io/badge/License-Apache_2.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) +[![Follow us on Twitter](https://img.shields.io/static/v1?label=Twitter&message=Follow&color=1DA1F2)](https://twitter.com/kadrasIO) -A collection of Kubernetes-native packages built with [Carvel](https://carvel.dev) and used in the [Kadras](https://kadras.io) project. +The [Kadras](https://kadras.io) collection of Kubernetes-native packages built with [Carvel](https://carvel.dev). -## Package Repository +## 📦  Package Repository This repository contains the following Carvel packages. @@ -16,7 +19,7 @@ This repository contains the following Carvel packages. | [cartographer-blueprints](https://github.com/kadras-io/cartographer-blueprints) | A curated set of reusable blueprints for Cartographer, a Kubernetes-native framework to build paved paths to production. | | [cartographer-delivery](https://github.com/kadras-io/cartographer-delivery) | A curated set of Cartographer delivery chains to deploy workloads to Kubernetes based on GitOps or RegistryOps. | | [cartographer-supply-chains](https://github.com/kadras-io/cartographer-supply-chains) | A curated set of Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | -| [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | Cloud-native solution to automatically provision and manage TLS certificates in Kubernetes. | +| [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates in Kubernetes. | | [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | | [fluxcd-source-controller](https://github.com/kadras-io/package-for-fluxcd-source-controller) | A source management component from the Flux GitOps Toolkit to provide a common interface for artifacts acquisition. | | [knative-eventing](https://github.com/kadras-io/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | @@ -29,7 +32,9 @@ This repository contains the following Carvel packages. | [spring-boot-conventions](https://github.com/kadras-io/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | | [tekton-pipelines](https://github.com/kadras-io/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | -## Prerequisites +## 🚀  Getting Started + +### Prerequisites * Kubernetes 1.24+ * Carvel [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI. @@ -37,66 +42,56 @@ This repository contains the following Carvel packages. ```shell kapp deploy -a kapp-controller -y \ - -f https://github.com/vmware-tanzu/carvel-kapp-controller/releases/latest/download/release.yml + -f https://github.com/carvel-dev/kapp-controller/releases/latest/download/release.yml ``` -## Installation - -You can install the Kadras package repository in a dedicated namespace using `kctrl`: - - ```shell - kubectl create namespace kadras-packages - kctrl package repository add -r kadras-repo \ - --url ghcr.io/kadras-io/kadras-packages:0.7.3 \ - -n kadras-packages - ``` +### Installation -### Verification - -You can verify the list of available Carvel package repositories and their status. +Install the Kadras package repository in a dedicated namespace using `kctrl`: ```shell - kctrl package repository list -n kadras-packages + kubectl create namespace kadras-packages + kctrl package repository add -r kadras-repo \ + --url ghcr.io/kadras-io/kadras-packages \ + -n kadras-packages ``` -### Packages - -The Kadras package repository provides a collection of Carvel packages that you can list. +
Installation via CRDs +The recommended way of installing the Cert Manager package is via the Kadras package repository. Instead of installing the , you can add the package definition directly using kapp or kubectl. - ```shell - kctrl package available list -p kpack.packages.kadras.io -n kadras-packages - ``` +Instead of installing the Kadras package repository with `kctrl`, you can apply the necessary Carvel CRDs directly using [`kapp`](https://carvel.dev/kapp/docs/latest/install), `kubectl` or a GitOps operator. -## Upgrading + ```shell + kubectl create namespace kadras-packages + kapp deploy -a kadras-repo -n kadras-packages -y \ + -f https://github.com/kadras-io/kadras-packages/releases/latest/download/package-repository.yml + ``` +
-You can upgrade an existing repository to a newer version using `kctrl`. +Verify the list of available Carvel package repositories and their status. ```shell - kctrl package repository update -r kadras-repo \ - --url ghcr.io/kadras-io/kadras-packages: \ - -n kadras-packages + kctrl package repository list -n kadras-packages ``` -## Other - -Instead of installing the Kadras package repository with `kctrl`, you can apply the necessary Carvel `PackageMetadata` and `Package` resources directly using [`kapp`](https://carvel.dev/kapp/docs/latest/install) or `kubectl`. +List all the Carvel packages available in the Kadras package repository. ```shell - kubectl create namespace kadras-packages - kapp deploy -a kadras-repo -n kadras-packages -y \ - -f https://github.com/kadras-io/kadras-packages/releases/latest/download/package-repository.yml + kctrl package available list -n kadras-packages ``` -## Support and Documentation +## 📙  Documentation + +For documentation specific to Carvel package management, check out [carvel.dev](https://carvel.dev/kapp-controller/docs/latest/packaging). -For support and documentation about Carvel package management, check out [carvel.dev](https://carvel.dev/kapp-controller/docs/latest/packaging). +## 🛡️  Security -## References +The security process for reporting vulnerabilities is described in [SECURITY.md](SECURITY.md). -This package repository is inspired by the work done by the Carvel team and the [Tanzu Community Edition](https://github.com/vmware-tanzu/community-edition) project (now retired). Learn more about [Kubernetes-native package management with Carvel](https://carvel.dev/kapp-controller/docs/latest/packaging). +## 🖊️  License -## Supply Chain Security +This project is licensed under the **Apache License 2.0**. See [LICENSE](LICENSE) for more information. -This project is compliant with level 3 of the [SLSA Framework](https://slsa.dev). +## 🙏  Acknowledgments -The SLSA Level 3 badge +This package repository is inspired by the one used in the [Tanzu Community Edition](https://github.com/vmware-tanzu/community-edition) project before its retirement. diff --git a/SECURITY.md b/SECURITY.md new file mode 100644 index 0000000..3ef9d1a --- /dev/null +++ b/SECURITY.md @@ -0,0 +1,5 @@ +# Security Policy + +## Reporting a Vulnerability + +If you know of a vulnerability in this project, please reach out to security@kadras.io and we will get back to you as soon as possible. From 13424cc7f81fb73aab89b239742ef27d82768919 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 27 Feb 2023 21:41:19 +0100 Subject: [PATCH 141/601] Update Tekton Pipelines metadata and add version 0.45.0 (#123) Co-authored-by: github-actions --- .../0.45.0.yml | 514 ++++++++++++++++++ 1 file changed, 514 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.45.0.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0.yml new file mode 100644 index 0000000..6355439 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0.yml @@ -0,0 +1,514 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.45.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-02-27T20:36:57Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:3cc9b172733498ace572bdc7d728b0f13d8657f0dd6516a0525b0163d429fb1a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: Self-signed certificate for the private container registry + storing the images used in Tekton Tasks (PEM-encoded format). + type: string + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + affinity_assistant_pod_template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + cloud_events_sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, + and Run lifeycle events. If no sink is specified, no CloudEvent is + generated. + type: string + forbidden_env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + managed_by_label_value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + max_matrix_combinations_count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + pod_template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + service_account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + task_run_workspace_binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + timeout_minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await_sidecar_readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + custom_task_version: + default: v1beta1 + description: Setting this flag will determine the version for custom + tasks created by PipelineRuns. + type: string + disable_affinity_assistant: + default: "false" + description: Setting this flag to `true` will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable_creds_init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable_api_fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable_provenance_in_status: + default: "false" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable_tekton_oci_bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce_nonfalsifiablity: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + require_git_ssh_secret_known_hosts: + default: "false" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + resource_verification_mode: + default: skip + description: Setting this flag to `enforce` will enforce verification + of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. + `warn` will only log the err message and `skip` will skip the whole + verification. + type: string + running_in_environment_with_injected_sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send_cloudevents_for_runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + type: object + leader_election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease_duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew_deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry_period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel: + additionalProperties: false + description: Configuration of the log level for each Deployment. + properties: + controller: + default: info + description: Log level for the `tekton-pipelines-controller` and + `tekton-pipelines-resolvers` Deployments. + type: string + webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + type: object + zap_logger_config: + default: "" + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics: + additionalProperties: false + description: Configuration for the metrics produced by the Tekton components. + properties: + allow_stackdriver_custom_metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver + using 'global' resource type and custom metric type. Ignore if + `backend_destination` is not `stackdriver`. + type: string + backend_destination: + default: prometheus + description: The system metrics destination. + type: string + pipelinerun: + additionalProperties: false + description: Configuration for the PipelineRun metrics. + properties: + duration_type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram + value isn’t available when the `pipelinerun` level is selected. + type: string + level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling + which labels are included: (pipelinerun, pipeline, namespace), + (pipeline, namespace), (namespace).' + type: string + type: object + stackdriver_project_id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the + cluster's project if this field is not provided. + type: string + taskrun: + additionalProperties: false + description: Configuration for the TaskRun metrics. + properties: + duration_type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram + value isn’t available when the `taskrun` level is selected. + type: string + level: + default: task + description: 'Level for the TaskRun metrics controlling which + labels are included: (taskrun, task, namespace), (task, namespace), + (namespace).' + type: string + type: object + type: object + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + enable: + default: false + description: Setting this flag to `true` enables the trace exporter. + type: boolean + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + endpoint: + default: "" + description: The endpoint where the distributed tracing backend + accepts OpenTelemetry traces using the Jaeger protocol. + type: string + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundle: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default_kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default_service_account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed_namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked_namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default_kind: + default: task + description: The default resource kind to fetch. + type: string + default_namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + feature_flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable_bundles_resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable_cluster_resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable_git_resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable_hub_resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + git: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api_token_secret_key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api_token_secret_name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api_token_secret_namespace: + default: default + description: The namespace containing the API token secret. + type: string + default_org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default_revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default_url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch_timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm_type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server_url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hub: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default_artifact_hub_pipeline_catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default_artifact_hub_task_catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default_kind: + default: task + description: The default resource kind to fetch. + type: string + default_tekton_hub_catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default_type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.45.0 From 68d7fa08ef2cc44badd1b049962aecc1e1151f53 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 6 Mar 2023 21:21:35 +0100 Subject: [PATCH 142/601] Update Cartographer Delivery metadata and add version 0.2.2 (#124) Co-authored-by: github-actions --- .../0.2.2.yml | 51 +++++++++++++++++++ 1 file changed, 51 insertions(+) create mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.2.2.yml diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.2.2.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.2.2.yml new file mode 100644 index 0000000..95953b0 --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/0.2.2.yml @@ -0,0 +1,51 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io.0.2.2 +spec: + refName: cartographer-delivery.packages.kadras.io + releasedAt: "2023-03-06T19:44:02Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-delivery@sha256:a76648eda1c2e807cf4a5d8b171343187a77034a678c338873a84300151bd697 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + delivery_chain: + default: basic + description: The type of delivery chain to use when deploying workloads + type: string + git_implementation: + default: go-git + description: The Git implementation used by Flux + type: string + gitops: + additionalProperties: false + description: Configuration for the GitOps steps in the delivery chain + properties: + access_secret: + default: git-secret + description: The Secret containing credentials to access the specified + Git repository + type: string + type: object + service_account: + default: default + description: The ServiceAccount used by the supply chain + type: string + type: object + version: 0.2.2 From 569c9e9302eaa80ca41f3db59309835c6b98e6dc Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 6 Mar 2023 21:21:52 +0100 Subject: [PATCH 143/601] Update Application Platform metadata and add version 0.5.3 (#125) Co-authored-by: github-actions --- .../0.5.3.yml | 116 ++++++++++++++++++ 1 file changed, 116 insertions(+) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.5.3.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.5.3.yml b/repo/packages/application-platform.packages.kadras.io/0.5.3.yml new file mode 100644 index 0000000..2937e40 --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.5.3.yml @@ -0,0 +1,116 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.5.3 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releasedAt: "2023-03-06T20:17:26Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-application-platform@sha256:be16d0c9bf7238e991fd7082e4e22707d8969b7904266c2d4476d45fc043555a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package + nullable: true + contour: + default: {} + description: Configuration for the Contour package + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages + properties: + serving: + default: {} + description: Configuration for the Knative Serving package + nullable: true + type: object + kpack: + default: + kp_default_repository: "" + description: Configuration for the Kpack package + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package + nullable: true + type: object + type: object + version: 0.5.3 From 2c0f3dfeb46017efb8d2a51f7acc8f7f2068ad81 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 6 Mar 2023 21:42:35 +0100 Subject: [PATCH 144/601] Update application platform --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 8e81bb9..5ad14f1 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -6,7 +6,7 @@ env: COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.7.4 + VERSION: 0.7.5 jobs: build: From cef752baebaf6ae3f07ebf724719889a0306dd19 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 10 Mar 2023 00:00:56 +0100 Subject: [PATCH 145/601] Update Contour metadata and add version 1.24.1+kadras.1 (#127) Co-authored-by: github-actions --- .../1.24.1+kadras.1.yml | 222 ++++++++++++++++++ .../contour.packages.kadras.io/metadata.yml | 9 +- 2 files changed, 228 insertions(+), 3 deletions(-) create mode 100644 repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml diff --git a/repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml new file mode 100644 index 0000000..52a59cf --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml @@ -0,0 +1,222 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.24.1+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/projectcontour/contour/releases + releasedAt: "2023-03-09T22:49:42Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:1e72127ae7a1d81b4d0fb38f6fae22c76c6b5616bd090f0caa8bb1912864cdcc + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If `infrastructureProvider` + is not `aws`, these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: null + description: The external traffic policy for the Envoy service. + If type is `ClusterIP`, this field is ignored. Otherwise, it defaults + to `Cluster` for vsphere and `Local` for others. + nullable: true + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, it will default to `NodePort` for local and + vsphere and `LoadBalancer` for others. + nullable: true + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: false + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructureProvider: + default: null + description: The underlying infrastructure provider. Options are `aws`, + `azure`, `local` and `vsphere`. This field is not required, but it enables + better validation and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.24.1+kadras.1 diff --git a/repo/packages/contour.packages.kadras.io/metadata.yml b/repo/packages/contour.packages.kadras.io/metadata.yml index 8174169..34fcf44 100644 --- a/repo/packages/contour.packages.kadras.io/metadata.yml +++ b/repo/packages/contour.packages.kadras.io/metadata.yml @@ -10,9 +10,12 @@ spec: - gateway displayName: contour iconSVGBase64: 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 - longDescription: An Envoy-based ingress controller that supports dynamic configuration - updates and multi-team ingress delegation. + longDescription: Kubernetes ingress controller providing the control plane for the + Envoy edge and service proxy. Contour supports dynamic configuration updates and + multi-team ingress delegation out of the box while maintaining a lightweight profile. maintainers: - name: Thomas Vitale providerName: Kadras - shortDescription: An Envoy-based ingress controller + shortDescription: High performance ingress controller using Envoy. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-contour + for community support. From 896c888a08453ef1b600dea5b649a1a3e8e0597b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 10 Mar 2023 00:01:14 +0100 Subject: [PATCH 146/601] Update Kpack Dependencies metadata and add version 0.3.4 (#126) Co-authored-by: github-actions --- .../0.3.4.yml | 34 +++++++++++++++++++ 1 file changed, 34 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml new file mode 100644 index 0000000..7864bd9 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml @@ -0,0 +1,34 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.3.4 +spec: + refName: kpack-dependencies.packages.kadras.io + releasedAt: "2023-03-06T21:31:58Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:e1e4147f4cd9b020dc0e785e9e516435e295ed78a0a190425840ec488b3b1f77 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + default: "" + description: The OCI registry where to publish builder images. The same + as configured in kpack. + type: string + type: object + version: 0.3.4 From 4d5d045c9e5b659b6c0d6747cec92169f0532d39 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 14 Mar 2023 22:52:36 +0100 Subject: [PATCH 147/601] Update Knative Serving metadata and add version 1.9.2 (#128) Co-authored-by: github-actions --- .../1.9.2.yml | 234 ++++++++++++++++++ .../metadata.yml | 8 +- 2 files changed, 239 insertions(+), 3 deletions(-) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.2.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.2.yml new file mode 100644 index 0000000..39ef3db --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.9.2.yml @@ -0,0 +1,234 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.9.2 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-03-14T21:35:13Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:c0a353ed0fe63e09627cc59b2fbbc91b77efd978d5a081dba991ba3dde2957ec + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + domain: + additionalProperties: false + description: Domain configuration stored in the `config-domain` ConfigMap. + properties: + name: + default: 127.0.0.1.sslip.io + description: Domain name for Knative Services. It must be a valid + DNS name. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Enabled + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy URL. + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL. + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used. + type: string + type: object + tls: + additionalProperties: false + description: Settings for TLS certificates. + properties: + certmanager: + additionalProperties: false + description: Cert Manager configuration stored in the `config-certmanager` + ConfigMap. + properties: + clusterissuer: + default: "" + description: A reference to the ClusterIssuer to use if you want + to enable autoTLS. + type: string + type: object + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.9.2 diff --git a/repo/packages/knative-serving.packages.kadras.io/metadata.yml b/repo/packages/knative-serving.packages.kadras.io/metadata.yml index f91dbff..09d0f87 100644 --- a/repo/packages/knative-serving.packages.kadras.io/metadata.yml +++ b/repo/packages/knative-serving.packages.kadras.io/metadata.yml @@ -8,9 +8,11 @@ spec: - serverless - deployment displayName: knative-serving - longDescription: Knative Serving builds on Kubernetes to support deploying and serving - of applications and functions as serverless containers + longDescription: Knative Serving builds on Kubernetes to define and control the + deployment of applications and functions as serverless containers. maintainers: - name: Thomas Vitale providerName: Kadras - shortDescription: Serverless platform on Kubernetes + shortDescription: Solution for running serverless deployments on Kubernetes. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-knative-serving + for community support. From 25ddb6eb20890fee40446525ec54cb8369139243 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 15 Mar 2023 18:08:38 +0100 Subject: [PATCH 148/601] Update Cert Manager metadata and add version 1.11.0+kadras.2 (#129) Co-authored-by: github-actions --- .../1.11.0+kadras.2.yml | 128 ++++++++++++++++++ 1 file changed, 128 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml new file mode 100644 index 0000000..22c4d97 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml @@ -0,0 +1,128 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.11.0+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/jetstack/cert-manager/releases + releasedAt: "2023-03-15T17:05:22Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:c11543ec814053b5c3ca124a6378800c8d37e4c9da560aba7defffee21bc322f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_ca: + additionalProperties: false + description: Settings for configuring a private CA out-of-the-box. + properties: + enable: + default: true + description: Whether to bootstrap a private CA. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy URL. + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL. + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.11.0+kadras.2 From 5b354125a77e5799df6981bb47eec5cd8037131f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 15 Mar 2023 18:47:40 +0100 Subject: [PATCH 149/601] Update Tekton Pipelines metadata and add version 0.45.0+kadras.1 (#130) Co-authored-by: github-actions --- .../0.45.0+kadras.1.yml | 518 ++++++++++++++++++ 1 file changed, 518 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml new file mode 100644 index 0000000..371f900 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml @@ -0,0 +1,518 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.45.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-03-15T17:44:31Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:7a4cfa6bc0bedd1d73eeb3db3a637716ffa839fd35adc44769bd14dd6b67a2bc + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-cloud-events-sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, + and Run lifeycle events. If no sink is specified, no CloudEvent is + generated. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-leader-election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + custom-task-version: + default: v1beta1 + description: Setting this flag will determine the version for custom + tasks created by PipelineRuns. + type: string + disable-affinity-assistant: + default: "false" + description: Setting this flag to `true` will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-provenance-in-status: + default: "false" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiablity: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + require-git-ssh-secret-known-hosts: + default: "false" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + resource-verification-mode: + default: skip + description: Setting this flag to `enforce` will enforce verification + of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. + `warn` will only log the err message and `skip` will skip the whole + verification. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + enable: + default: false + description: Setting this flag to `true` enables the trace exporter. + type: boolean + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + endpoint: + default: "" + description: The endpoint where the distributed tracing backend + accepts OpenTelemetry traces using the Jaeger protocol. + type: string + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.45.0+kadras.1 From 544c1613367d9c097d00ba66f6b7cb6eac0274ce Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 15 Mar 2023 21:13:55 +0100 Subject: [PATCH 150/601] Update Knative Serving metadata and add version 1.9.2+kadras.1 (#131) Co-authored-by: github-actions --- .../1.9.2+kadras.1.yml | 234 ++++++++++++++++++ 1 file changed, 234 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml new file mode 100644 index 0000000..d60c29c --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml @@ -0,0 +1,234 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.9.2+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-03-15T20:10:57Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:862e3592fef2047812978c348a20ad1d019061f11e949a6af6c30513f3408b7b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + domain: + additionalProperties: false + description: Domain configuration stored in the `config-domain` ConfigMap. + properties: + name: + default: 127.0.0.1.sslip.io + description: Domain name for Knative Services. It must be a valid + DNS name. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Enabled + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy URL. + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL. + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used. + type: string + type: object + tls: + additionalProperties: false + description: Settings for TLS certificates. + properties: + certmanager: + additionalProperties: false + description: Cert Manager configuration stored in the `config-certmanager` + ConfigMap. + properties: + clusterissuer: + default: "" + description: A reference to the ClusterIssuer to use if you want + to enable autoTLS. + type: string + type: object + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.9.2+kadras.1 From c56ba877ea83ef5d278ef1e9d31bee200ae755e1 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 15 Mar 2023 21:47:27 +0100 Subject: [PATCH 151/601] Update Contour metadata and add version 1.24.2 (#132) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.24.2.yml | 222 ++++++++++++++++++ 1 file changed, 222 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.24.2.yml diff --git a/repo/packages/contour.packages.kadras.io/1.24.2.yml b/repo/packages/contour.packages.kadras.io/1.24.2.yml new file mode 100644 index 0000000..bc98f44 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.24.2.yml @@ -0,0 +1,222 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.24.2 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-03-15T20:44:23Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:063d1da1a72087be3e8519e4063f4d5c1308e201963238072d8619bfe8926e3a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If `infrastructureProvider` + is not `aws`, these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: null + description: The external traffic policy for the Envoy service. + If type is `ClusterIP`, this field is ignored. Otherwise, it defaults + to `Cluster` for vsphere and `Local` for others. + nullable: true + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, it will default to `NodePort` for local and + vsphere and `LoadBalancer` for others. + nullable: true + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: false + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructureProvider: + default: null + description: The underlying infrastructure provider. Options are `aws`, + `azure`, `local` and `vsphere`. This field is not required, but it enables + better validation and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.24.2 From 3e0e49c4a055eb1b233460720a811600ed16d403 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 18 Mar 2023 18:16:24 +0100 Subject: [PATCH 152/601] Update Kpack metadata and add version 0.10.1 (#133) Co-authored-by: github-actions --- .../kpack.packages.kadras.io/0.10.1.yml | 148 ++++++++++++++++++ .../kpack.packages.kadras.io/metadata.yml | 8 +- 2 files changed, 153 insertions(+), 3 deletions(-) create mode 100644 repo/packages/kpack.packages.kadras.io/0.10.1.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.10.1.yml b/repo/packages/kpack.packages.kadras.io/0.10.1.yml new file mode 100644 index 0000000..7f3b6b7 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.10.1.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.10.1 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2023-03-18T17:13:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:ad95f95ced2a4311c32bed590eb6207baf8cf240137ae292dc0ef0baa214b68b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.10.1 diff --git a/repo/packages/kpack.packages.kadras.io/metadata.yml b/repo/packages/kpack.packages.kadras.io/metadata.yml index da7d5e3..a7bc199 100644 --- a/repo/packages/kpack.packages.kadras.io/metadata.yml +++ b/repo/packages/kpack.packages.kadras.io/metadata.yml @@ -7,11 +7,13 @@ spec: categories: - build displayName: kpack - longDescription: kpack extends Kubernetes and utilizes unprivileged Kubernetes primitives + longDescription: kpack extends Kubernetes and utilizes unprivileged kubernetes primitives to provide builds of OCI images as a platform implementation of Cloud Native Buildpacks - (CNB) + (CNB). maintainers: - name: Thomas Vitale providerName: Kadras shortDescription: kpack builds application source code into OCI compliant images - using Cloud Native Buildpacks + using Cloud Native Buildpacks. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-kpack + for community support. From 22f0d6c1164f88385c96fb659b578ff0996f830c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 18 Mar 2023 20:35:58 +0100 Subject: [PATCH 153/601] Update Kpack Dependencies metadata and add version 0.4.0 (#134) Co-authored-by: github-actions --- .../0.4.0.yml | 46 +++++++++++++++++++ .../metadata.yml | 2 + 2 files changed, 48 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..588a876 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.4.0 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack-dependencies.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases + releasedAt: "2023-03-18T19:33:08Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:fe733f97826ae37d6540546e2110f1c5bd3a5151093b1a6023cb637be94e636b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.4.0 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml b/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml index ea58417..0a1b400 100644 --- a/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml +++ b/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml @@ -14,3 +14,5 @@ spec: - name: Thomas Vitale providerName: Kadras shortDescription: A set of buildpacks, stacks, and builders to use with kpack. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/kpack-dependencies + for community support. From d73899b04d0a7bfcfa3a47aa39e32d797b502a56 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 00:09:46 +0100 Subject: [PATCH 154/601] Update FluxCD Source Controller metadata and add version 0.36.0 (#135) Co-authored-by: github-actions --- .../0.36.0.yml | 77 +++++++++++++++++++ .../metadata.yml | 7 +- 2 files changed, 82 insertions(+), 2 deletions(-) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml new file mode 100644 index 0000000..353f91a --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml @@ -0,0 +1,77 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.36.0 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases + releasedAt: "2023-03-18T23:06:51Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:24aa6509b06f16bb1ad67e62013af2e781c1ee57e5342c4537ba32493bc1ec7e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller. + type: string + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + description: CPU limits configuration for the `source-controller` + Deployment. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the `source-controller` + Deployment. + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the `source-controller` Service. + type: integer + type: object + version: 0.36.0 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml index ff00d7f..825628f 100644 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml @@ -7,13 +7,16 @@ spec: categories: - gitops displayName: fluxcd-source-controller - longDescription: The FluxCD Source Controller is a Kubernetes operator, specialised + iconSVGBase64: PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHJvbGU9ImltZyIgdmlld0JveD0iNDguMDAgLTIuMjUgMjYyLjUwIDM2NC4wMCI+PGRlZnM+PHN0eWxlPi5jbHMtMXtmaWxsOiMzMjZjZTV9LmNscy0ze2ZpbGw6bm9uZX08L3N0eWxlPjwvZGVmcz48cGF0aCBkPSJNNTkuNzIzOTMgOTcuNzc4NDdhMTAuMTgyNTEgMTAuMTgyNTEgMCAwIDEgMC0xNy4wNzM5M2wxMTQuMDcwMy03NC4xNjAyM2ExMC4xODI1OCAxMC4xODI1OCAwIDAgMSAxMS4xMDAyNCAwbDExNC4wNzAyOSA3NC4xNjAyM2ExMC4xODI1IDEwLjE4MjUgMCAwIDEgMCAxNy4wNzM5NGwtMTE0LjA3MDI5IDc0LjE2MDIxYTEwLjE4MjU0IDEwLjE4MjU0IDAgMCAxLTExLjEwMDI0IDB6IiBjbGFzcz0iY2xzLTEiLz48cGF0aCBmaWxsPSIjYzFkMmY3IiBkPSJNMTk3LjM1NTY1IDExMC44NjZoNy45MTI3N2E2LjAwMzI2IDYuMDAzMjYgMCAwIDAgNS4xOTkwOC05LjAwNWwtMjUuOTIzODEtNDQuOTAyYTYuMDAzNTUgNi4wMDM1NSAwIDAgMC0xMC4zOTgzOCAwbC0yNS45MjQgNDQuOTAyYTYuMDAzMjYgNi4wMDMyNiAwIDAgMCA1LjE5OTA1IDkuMDA1aDcuOTEzYTYuMDAzNCA2LjAwMzQgMCAwIDEgNi4wMDM0MSA2LjAwMzR2NTEuMjU2M2w1LjMxMDM3IDMuNDUyNTJhMTIuMjg3NDMgMTIuMjg3NDMgMCAwIDAgMTMuMzk0NDUgMGw1LjMxMDYyLTMuNDUyNTJ2LTUxLjI1NjI4YTYuMDAzNCA2LjAwMzQgMCAwIDEgNi4wMDM0LTYuMDAzNDF6Ii8+PHBhdGggZD0iTTE3My43OTM0OCAzNTMuMjcxMDhhMTAuMTI4MjggMTAuMTI4MjggMCAwIDAgMy40NTY0MyAxLjQwMmMtMi4xNzU0OS0xLjIzMTItNC4zODcyNy0yLjM3NDI5LTYuNjIyNjktMy40NjAzNnptLTYuNDU2NjctMTYxLjE5NTQ2bC0xMS4zMTU3IDcuMzU2NjFhMTEwLjk5MyAxMTAuOTkzIDAgMCAwIDExLjMxNTcxIDYuNTk5N3ptMjQuMDE1MzcgMjMuNzE2MDdjOS43Mzg1OCAzLjExNTA1IDE5LjgxMzE3IDUuNjQ4NTEgMzAuMTA5NzMgOC4xODY1NSAxMC45MjAzMiAyLjY5MTgyIDIxLjk3MzU1IDUuNDI3MTcgMzIuODE3OTIgOS4wMDgzOWwtMzUuNDE2MDYtMjMuMDI0ODJhMjE1Ljg4MTMzIDIxNS44ODEzMyAwIDAgMS0yNy41MTE2MS05LjQxMDA3em0wIDYyLjE5MTU5di41ODU3N2MwIDIuNTY5MjktMi42ODc4NyA0LjY1MTk1LTYuMDAzMzggNC42NTE5NWgtMTIuMDA4NTVjLTMuMzE1NDkgMC02LjAwMzM4LTIuMDgyNjYtNi4wMDMzOC00LjY1MTk1di02LjYwNDczYy0yNC45MDUzOC02LjQwMjA5LTQ5Ljg3Mjk0LTE0LjQ4NTA2LTcwLjg1OTQ1LTMzLjgyMTFMODEuOTQ4MTkgMjQ3LjU4OWMyMi40Njc2MSAyMi4wNTA5IDUwLjI3ODkzIDI4LjkzMjkxIDc5LjcxNDQxIDM2LjE4ODYgMjcuMTc4NTIgNi42OTg1NiA1NS4xODA1MSAxMy42NTE0NCA3OC42ODU1NyAzMy40NDIyMmwxNC42NzkwNy05LjU0MzM0Yy0xOC41MzE0Mi0xNi41MDQzMS00MC40MDk2Mi0yMy42ODc3OC02My42NzUwNi0yOS42OTMyem0tOTguMDM3NTYgMjIuOTY2MzlsMzguOTA4MjkgMjUuMjk1MjVjMjAuMDY0MzggNS4xMTMzNiA0MC4yMDAyOSAxMS4yNDc3MyA1OC4zMTEgMjMuMzYwNDRsMTQuOTAwMjMtOS42ODdjLTE5Ljc1MTgtMTMuNjcyNC00Mi41NTA1LTE5LjMxMzQtNjYuNDE4ODktMjUuMTk3LTE1LjI4NzA0LTMuNzY3NzktMzAuODM0NzktNy42MTY2LTQ1LjcwMDYzLTEzLjc3MTY5em03NC4wMjIxOS04Mi4yNTQxM2ExMjQuMzE5OSAxMjQuMzE5OSAwIDAgMS0yMS41MzM5Mi0xMi42MjAwNmwtMTQuODA1MzEgOS42MjUyMWExMjQuNTQwNTcgMTI0LjU0MDU3IDAgMCAwIDM2LjMzOTIzIDE4LjcwOHptNTEuNDEwMDYgMTYuMjk0MTJjLTkuMTA2Mi0yLjI0NDc0LTE4LjMwMzYyLTQuNTIzODgtMjcuMzk0NjktNy4yOTg1M3YxMy42ODIwOXE1LjA1MSAxLjI4NTMgMTAuMTc2NzIgMi41MzgxN2MyOS45MzQzOCA3LjM3ODE4IDYwLjg4NzkgMTUuMDA4ODUgODUuNzA3NjcgMzkuODI4NjEuNjA5NzkuNjA5NzkgMS4xNjI2MSAxLjIzOTg5IDEuNzUyIDEuODU3MTVsOS45NzQyNy02LjQ4NDQ1YTEwLjEwNDI1IDEwLjEwNDI1IDAgMCAwIDMuNDc1MjktMy43OTkyOGMtMS4wNjY0NC0xLjE3MjUyLTIuMTQ0LTIuMzQxMzItMy4yODg3NS0zLjQ4NjEyLTIyLjU4NTEzLTIyLjU4NTMtNTAuNjY5MzgtMjkuNTA4NTYtODAuNDAyNTEtMzYuODM3NjR6bS0xOS45MzI5NSAxOS45MzI5OHEtMy43MjIxNy0uOTE3NDctNy40NjE2OC0xLjg1NDg0djEzLjIwOTc0YzI1LjgxNjc2IDYuNTYxODEgNTEuODAyNjMgMTQuNjg4NDMgNzMuNDU1MSAzNS4wNDA2OWwxNC41MjExNC05LjQ0MDU1Yy0uMDM4NTQtLjAzODc1LS4wNzI1Ni0uMDc5MTYtLjExMTMxLS4xMTc5Mi0yMi41ODU0Ni0yMi41ODUyNC01MC42Njk3NS0yOS41MDg0OC04MC40MDMyNS0zNi44MzcxMnptLTMxLjQ3NzExLTguNTg2ODFjLTE2LjI4LTUuMjc4MTMtMzIuMTE3NzctMTIuMzk2ODItNDYuMzQ0LTI0LjEzMDgxbC0xNC42ODE3NiA5LjU0NTFjMTcuODcwMjMgMTUuNTU3MjcgMzguNzg0NCAyMi42NzI2NiA2MS4wMjU3MiAyOC41MDA2OHoiIGNsYXNzPSJjbHMtMyIvPjxwYXRoIGQ9Ik03My4yNDA0OSAyNTQuOTU5NzJjLS4zNDgtLjM0OC0uNjU4NS0uNzA5NDktLjk5OTY3LTEuMDU5NzZsLTEyLjUxNDk1IDguMTM2NDhhMTAuMTY1NDggMTAuMTY1NDggMCAwIDAtMS42NDQyOCAxLjM5NjhjMS4wNTMzNiAxLjE1Njc3IDIuMTE1NjEgMi4zMTAyNCAzLjI0NTQ0IDMuNDQgMjIuNTg1MiAyMi41ODUxOSA1MC42Njk2OCAyOS41MDgzOCA4MC40MDMyMiAzNi44MzY4OCAyNS4zNDI1IDYuMjQ2OTEgNTEuNDAxMTMgMTIuNzE2NjEgNzMuODY0NTQgMjkuNjAyNTNsMTQuODA1NzQtOS42MjU2MmMtMjAuODY0MjQtMTYuNDE5OTMtNDUuNTMwMjEtMjIuNTA4OTEtNzEuNDUyODctMjguODk4LTI5LjkzMzg1LTcuMzc4ODgtNjAuODg3MzgtMTUuMDA5NDQtODUuNzA3MTctMzkuODI5MzF6IiBjbGFzcz0iY2xzLTMiLz48cGF0aCBkPSJNMjE4Ljg2Mzc3IDIwOS45NjE4bC0yNy41MTE1OS0xNy44ODZ2OC40NzU5YTIxNS44OCAyMTUuODggMCAwIDAgMjcuNTExNTkgOS40MTAxem0tMjcuNTExNTkgNS44Mjk4OXYxMS44OTkzOGM5LjA5MTA4IDIuNzc0NzEgMTguMjg4NDkgNS4wNTM4OCAyNy4zOTQ2OSA3LjI5ODUzIDI5LjczMzExIDcuMzI5MDkgNTcuODE3MzggMTQuMjUyMzIgODAuNDAyNjEgMzYuODM3NzMgMS4xNDQ3NCAxLjE0NDc0IDIuMjIyMzIgMi4zMTM1NCAzLjI4ODc1IDMuNDg2MTFhMTAuMTkzMjcgMTAuMTkzMjcgMCAwIDAtMy40NzUzLTEzLjI3NzExbC00NC42ODMxLTI5LjA0OTc2Yy0xMC44NDQzNy0zLjU4MTIxLTIxLjg5NzY4LTYuMzE2NTYtMzIuODE3OTQtOS4wMDgzOC0xMC4yOTY1Ni0yLjUzNzk5LTIwLjM3MTEzLTUuMDcxNDUtMzAuMTA5NzEtOC4xODY1em0tMjQuMDE1MzctOS43NTk2OWExMTAuOTkyOTIgMTEwLjk5MjkyIDAgMCAxLTExLjMxNTcxLTYuNTk5NjlsLTEwLjIxODIxIDYuNjQzMmExMjQuMzE5MzIgMTI0LjMxOTMyIDAgMCAwIDIxLjUzMzkyIDEyLjYyMDA3em0zNC4xOTIxMiAzNy44Nzk0MXEtNS4xMjUyOC0xLjI2MzUyLTEwLjE3NjczLTIuNTM4MTZ2MTEuNjk0NnEzLjczNjg2LjkzOCA3LjQ2MTY4IDEuODU0ODVjMjkuNzMzNTIgNy4zMjg2MyA1Ny44MTc4IDE0LjI1MTg3IDgwLjQwMzE4IDM2LjgzNzA5LjAzODc2LjAzODc2LjA3Mjc3LjA3OTE2LjExMTMyLjExNzkybDkuNjYwMjMtNi4yODA1MWMtLjU4OTQ1LS42MTcyNi0xLjE0MjI1LTEuMjQ3MzMtMS43NTItMS44NTcxNS0yNC44MTk3OC0yNC44MTk3OS01NS43NzMzLTMyLjQ1MDQ4LTg1LjcwNzY4LTM5LjgyODY0em0tMzQuMTkyMTItOS41MDI3MmExMjQuNTQwNTcgMTI0LjU0MDU3IDAgMCAxLTM2LjMzOTIzLTE4LjcwOGwtMTAuMDA0NzMgNi41MDQzNmMxNC4yMjYxMiAxMS43MzQgMzAuMDYzOTMgMTguODUyNjggNDYuMzQ0IDI0LjEzMDh6bTAgMjUuODQyMDNjLTIyLjI0MTMyLTUuODI4LTQzLjE1NTUtMTIuOTQzNDEtNjEuMDI1NzItMjguNTAwNmwtOS44MzM4IDYuMzkzMTVjMjAuOTg2NTIgMTkuMzM2IDQ1Ljk1NDA3IDI3LjQxODkzIDcwLjg1OTQ3IDMzLjgyMTF6bTI0LjAxNTM3IDE3LjczMjU2YzIzLjI2NTQ2IDYuMDA1MzkgNDUuMTQzNjcgMTMuMTg4ODYgNjMuNjc1MDYgMjkuNjkzMTJsOS43OC02LjM1ODIzYy0yMS42NTI0OS0yMC4zNTIyNS00Ny42MzgzNS0yOC40Nzg5My03My40NTUwOS0zNS4wNDA2OHpNODEuOTQ4MTMgMjQ3LjU4OWwtOS43MDcyOSA2LjMxMWMuMzQxMTcuMzUwMzIuNjUxNjYuNzExNzguOTk5NjcgMS4wNTk3NiAyNC44MTk3NyAyNC44MTk3OSA1NS43NzMyOSAzMi40NTA0MyA4NS43MDcwNiAzOS44MjkyNSAyNS45MjI2NiA2LjM4OTA5IDUwLjU4ODYzIDEyLjQ3ODA3IDcxLjQ1Mjg4IDI4Ljg5OGw5Ljk0NzcyLTYuNDY3MjRjLTIzLjUwNTA2LTE5Ljc5MDc4LTUxLjUwNy0yNi43NDM2NS03OC42ODU1Ny0zMy40NDIyMi0yOS40MzU0OC03LjI1NTY5LTU3LjI0NjgtMTQuMTM3Ny03OS43MTQ0Ny0zNi4xODg1NXpNNjEuMzI3IDI2Ni44NzMyMWMtMS4xMjk4My0xLjEyOTgzLTIuMTkyMDktMi4yODMyOC0zLjI0NTQ1LTMuNDRhMTAuMTU0NCAxMC4xNTQ0IDAgMCAwIDEuNjQ0MjggMTUuNjc5NTdsMzMuNTg4NyAyMS44MzY5NGMxNC44NjU4MyA2LjE1NTA5IDMwLjQxMzU5IDEwLjAwMzkgNDUuNzAwNTggMTMuNzcxNjYgMjMuODY4NCA1Ljg4MzU3IDQ2LjY2NzA4IDExLjUyNDY0IDY2LjQxODkgMjUuMTk3bDEwLjE2MDYtNi42MDU3Yy0yMi40NjMzMi0xNi44ODU4Ny00OC41MjItMjMuMzU1NjItNzMuODY0NDctMjkuNjAyNTMtMjkuNzMzNDMtNy4zMjg1MS01Ny44MTc5MS0xNC4yNTE3NS04MC40MDMxNC0zNi44MzY5NHptMTA5LjMwMDI0IDg0LjMzOTQ4YzIuMjM1NCAxLjA4NjEgNC40NDcxOCAyLjIyOTE5IDYuNjIyNjkgMy40NjAzNmExMC4xNjAxMiAxMC4xNjAxMiAwIDAgMCA3LjY0NTQzLTEuNDAybDUuNjM4NTgtMy42NjU3N2MtMTguMTEwNjUtMTIuMTEyNjYtMzguMjQ2NTMtMTguMjQ3LTU4LjMxMDk1LTIzLjM2MDQ0eiIgY2xhc3M9ImNscy0xIi8+PC9zdmc+ + longDescription: The FluxCD Source Controller is a Kubernetes operator specialised in artifacts acquisition from external sources such as Git, Helm repositories and S3 buckets. It implements the source.toolkit.fluxcd.io API and is a core component of the GitOps toolkit. maintainers: - name: Thomas Vitale providerName: Kadras - shortDescription: The FluxCD Source Controller is a Kubernetes operator, specialised + shortDescription: The FluxCD Source Controller is a Kubernetes operator specialised in artifacts acquisition from external sources such as Git, Helm repositories and S3 buckets. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-fluxcd-source-controller + for community support. From b375c2360d66e48ae094ae43d1346c55cd67f41e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 00:17:16 +0100 Subject: [PATCH 155/601] Update external packages --- README.md | 2 - .../cartographer.packages.kadras.io/0.7.1.yml | 146 ++++++++++++++++++ .../0.14.2.yml | 66 ++++++++ 3 files changed, 212 insertions(+), 2 deletions(-) create mode 100644 repo/packages/cartographer.packages.kadras.io/0.7.1.yml create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml diff --git a/README.md b/README.md index 0598623..4ad6a7f 100644 --- a/README.md +++ b/README.md @@ -57,8 +57,6 @@ Install the Kadras package repository in a dedicated namespace using `kctrl`: ```
Installation via CRDs -The recommended way of installing the Cert Manager package is via the Kadras package repository. Instead of installing the , you can add the package definition directly using kapp or kubectl. - Instead of installing the Kadras package repository with `kctrl`, you can apply the necessary Carvel CRDs directly using [`kapp`](https://carvel.dev/kapp/docs/latest/install), `kubectl` or a GitOps operator. ```shell diff --git a/repo/packages/cartographer.packages.kadras.io/0.7.1.yml b/repo/packages/cartographer.packages.kadras.io/0.7.1.yml new file mode 100644 index 0000000..356e378 --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.7.1.yml @@ -0,0 +1,146 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + name: cartographer.packages.kadras.io.0.7.1 +spec: + refName: cartographer.packages.kadras.io + version: 0.7.1 + releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.7.1 + releasedAt: "2023-03-10T18:38:54Z" + valuesSchema: + openAPIv3: + title: cartographer.packages.kadras.io.0.7.1 values schema + properties: + ca_cert_data: + type: string + description: 'Optional: PEM Encoded certificate data for image registries with private CA.' + default: "" + excluded_components: + type: array + items: + type: string + default: [] + description: 'Optional: List of components to exclude from installation (e.g. [conventions])' + aws_iam_role_arn: + type: string + description: 'Optional: Arn role that has access to pull images from ECR container registry' + default: "" + cartographer: + type: object + properties: + concurrency: + type: object + properties: + max_workloads: + type: integer + description: 'Optional: maximum number of Workloads to process concurrently.' + default: 2 + max_deliveries: + type: integer + description: 'Optional: maximum number of Deliverables to process concurrently.' + default: 2 + max_runnables: + type: integer + description: 'Optional: maximum number of Runnables to process concurrently.' + default: 2 + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + conventions: + type: object + properties: + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + template: + spec: + fetch: + - imgpkgBundle: + image: index.docker.io/projectcartographer/package-for-cartographer@sha256:e39f96dc9b778f81a83e55dd5f30eb38d3f92469787b9152fc1190e1e5de9050 + template: + - ytt: + ignoreUnknownComments: true + paths: + - config + - kbld: + paths: + - .imgpkg/images.yml + - '-' + deploy: + - kapp: {} diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml new file mode 100644 index 0000000..9373bd5 --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml @@ -0,0 +1,66 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.14.2 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releasedAt: "2023-03-09T08:21:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:2ad6dca5a96ac317c01b05d2e62c3c45370888a75f9ba2b7ab946bc53bb38634 + template: + - ytt: + paths: + - config/package-bundle/config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + create_namespace: + default: true + description: Whether to create namespace specified for secretgen-controller + type: boolean + deployment: + additionalProperties: false + description: Configuration for secretgen-controller deployment + properties: + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: 0 + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + type: integer + maxUnavailable: + default: 1 + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + type: integer + type: object + updateStrategy: + default: "" + description: Update strategy of deployments, empty uses default strategy + type: string + type: object + namespace: + default: secretgen-controller + description: The namespace in which to deploy secretgen-controller + type: string + type: object + version: 0.14.2 From ff9d419bc9634a56d224c90ddfec510ea154cbc6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 09:56:17 +0100 Subject: [PATCH 156/601] Update Metrics Server metadata and add version 0.6.2+kadras.2 (#136) Co-authored-by: github-actions --- .../0.6.2+kadras.2.yml | 148 ++++++++++++++++++ .../metadata.yml | 2 + 2 files changed, 150 insertions(+) create mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml new file mode 100644 index 0000000..e01a950 --- /dev/null +++ b/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: metrics-server.packages.kadras.io.0.6.2+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases + releasedAt: "2023-03-19T08:53:06Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-metrics-server@sha256:c401d928cf929e8d3307c82103b0fddbd9dca2126e988a49acab719be5c7ae2f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + daemonset: + additionalProperties: false + properties: + updateStrategy: + default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + nullable: true + type: integer + maxUnavailable: + default: null + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object + updateStrategy: + default: null + description: Update strategy of deployments + nullable: true + type: string + type: object + metricsServer: + additionalProperties: false + properties: + config: + additionalProperties: false + properties: + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean + args: + default: [] + description: Arguments passed into metrics-server container + items: + default: "" + type: string + type: array + probe: + additionalProperties: false + properties: + failureThreshold: + default: 3 + description: Probe failureThreshold of metrics-server deployment + type: integer + periodSeconds: + default: 10 + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer + tolerations: + default: [] + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string + type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: + additionalProperties: false + properties: + name: + default: "" + description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: + default: "" + description: The repository of metrics-server image + type: string + tag: + default: "" + description: The image tag + type: string + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object + version: 0.6.2+kadras.2 diff --git a/repo/packages/metrics-server.packages.kadras.io/metadata.yml b/repo/packages/metrics-server.packages.kadras.io/metadata.yml index 2e32734..4a43b39 100644 --- a/repo/packages/metrics-server.packages.kadras.io/metadata.yml +++ b/repo/packages/metrics-server.packages.kadras.io/metadata.yml @@ -16,3 +16,5 @@ spec: providerName: Kadras shortDescription: Scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-metrics-server + for community support. From 61155a8517df7f592d1f78eee93fdf65843cab1d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 22:09:39 +0100 Subject: [PATCH 157/601] Update Kpack Dependencies metadata and add version 0.4.1 (#137) Co-authored-by: github-actions --- .../0.4.1.yml | 46 +++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml new file mode 100644 index 0000000..6eb52b0 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.4.1 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack-dependencies.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases + releasedAt: "2023-03-19T10:28:35Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:4dfee58e34f34404b233abb5e2f60243cc4da61d84e63e7ed7ab0fd33b2c8264 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.4.1 From 57b6052e9a43493768fdd359ad56d71b50bdc3f0 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 22:09:53 +0100 Subject: [PATCH 158/601] Update Spring Boot Conventions metadata and add version 0.2.0 (#138) Co-authored-by: github-actions --- .../0.2.0.yml | 67 +++++++++++++++++++ .../metadata.yml | 2 + 2 files changed, 69 insertions(+) create mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..785e00b --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io.0.2.0 +spec: + licenses: + - Apache 2.0 + refName: spring-boot-conventions.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases + releasedAt: "2023-03-19T10:32:02Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:bc1375f0429edb32a79f0687c87734153220ceea66f937ec1c4fc47e494022ac + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: spring-boot-conventions + description: The namespace where to install Spring Boot Conventions + type: string + resources: + additionalProperties: false + description: Resource configuration for the Convention Server + properties: + limits: + additionalProperties: false + description: Resource limits + properties: + cpu: + default: 100m + description: CPU limits + type: string + memory: + default: 256Mi + description: Memory limits + type: string + type: object + requests: + additionalProperties: false + description: Resource requests + properties: + cpu: + default: 100m + description: CPU requests + type: string + memory: + default: 20Mi + description: Memory requests + type: string + type: object + type: object + type: object + version: 0.2.0 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml index c8804f4..d4b5549 100644 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/metadata.yml @@ -15,3 +15,5 @@ spec: - name: Thomas Vitale providerName: Kadras shortDescription: Spring Boot Convention Server for Cartographer. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-spring-boot-conventions + for community support. From f3b98ec0bd0290d95edca58a9d7f876b59f56372 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 22:10:09 +0100 Subject: [PATCH 159/601] Update Kpack Dependencies metadata and add version 0.4.2 (#139) Co-authored-by: github-actions --- .../0.4.2.yml | 46 +++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml new file mode 100644 index 0000000..5eb88f2 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.4.2 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack-dependencies.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases + releasedAt: "2023-03-19T10:39:03Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:fe733f97826ae37d6540546e2110f1c5bd3a5151093b1a6023cb637be94e636b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.4.2 From 3985467b51647ca163b8dcc5ba904ea727848684 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 22:10:27 +0100 Subject: [PATCH 160/601] Update Cartographer Blueprints metadata and add version 0.4.0 (#140) Co-authored-by: github-actions --- .../0.4.0.yml | 40 +++++++++++++++++++ .../metadata.yml | 10 +++-- 2 files changed, 46 insertions(+), 4 deletions(-) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..8c5e3af --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml @@ -0,0 +1,40 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.4.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-03-19T19:35:54Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:de2b5c420187564a7bf85dfed086bd6d90830c2d3e7807422864956ffd57079c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being created + in the cluster. + items: + default: "" + type: string + type: array + type: object + version: 0.4.0 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml index 5de6e3b..709582d 100644 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml @@ -5,13 +5,15 @@ metadata: name: cartographer-blueprints.packages.kadras.io spec: categories: - - developer experience - ci/cd - - platform engineering + - golden paths + - developer experience displayName: cartographer-blueprints - longDescription: A set of reusable blueprints for Cartographer, a Kubernetes-native - framework to build paved paths to production. + longDescription: A set of reusable blueprints to build paved paths to production + on Kubernetes using Cartographer. maintainers: - name: Thomas Vitale providerName: Kadras shortDescription: A set of reusable blueprints for Cartographer. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/cartographer-blueprints + for community support. From ded1ad5ca21ee6d500eb4b1e3eac8eefa8f359f6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 22:10:43 +0100 Subject: [PATCH 161/601] Update Cartographer Supply Chains metadata and add version 0.4.0 (#141) Co-authored-by: github-actions --- .../0.4.0.yml | 145 ++++++++++++++++++ .../metadata.yml | 9 +- 2 files changed, 151 insertions(+), 3 deletions(-) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..52b24a9 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.4.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-03-19T20:31:32Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:86ae09290c73e960df769e3c004b78c7b59c96d74fc5f5d25b6067c90227d713 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + git_access_secret: + default: git-secret + description: The Secret containing authentication credentials for the Git + repository. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chain. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data for the OCI Registry where + the supply chain will publish and consume OCI images. + type: string + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + service_account: + default: default + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' + type: string + type: object + version: 0.4.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml index 7177747..538cf6f 100644 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml @@ -7,11 +7,14 @@ spec: categories: - ci/cd - golden paths - - platform engineering + - developer experience displayName: cartographer-supply-chains - longDescription: Cartographer supply chains used to build golden paths to production - for applications and functions. + longDescription: Cartographer supply chains to build golden paths to production + for applications and functions, from source code to deployment in a Kubernetes + cluster. maintainers: - name: Thomas Vitale providerName: Kadras shortDescription: Supply chains for applications and functions. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/cartographer-supply-chains + for community support. From b272f2be0b25fe0cbdf6808d368fce11fb44ed8d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 22:10:58 +0100 Subject: [PATCH 162/601] Update Kpack Dependencies metadata and add version 0.4.3 (#142) Co-authored-by: github-actions --- .../0.4.3.yml | 46 +++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml new file mode 100644 index 0000000..d2d01b6 --- /dev/null +++ b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack-dependencies.packages.kadras.io.0.4.3 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack-dependencies.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases + releasedAt: "2023-03-19T21:05:21Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kpack-dependencies@sha256:07e61701ab12e33d84658dd531ba0fc27ecd1a948d2d827ac904f0ddaa846cec + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.4.3 From b40b413186496b9d9bf57d6e9d4e156bf27115f9 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 22:16:25 +0100 Subject: [PATCH 163/601] Update Cartographer Delivery metadata and add version 0.4.0 (#143) Co-authored-by: github-actions --- .../0.4.0.yml | 43 +++++++++++++++++++ 1 file changed, 43 insertions(+) create mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..b22b6cb --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml @@ -0,0 +1,43 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io.0.4.0 +spec: + refName: cartographer-delivery.packages.kadras.io + releasedAt: "2023-03-19T21:13:33Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-delivery@sha256:53e3f7c26b0b391bb87568025c4d803fff97331b47e3d94626214afa16e9a6fb + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + delivery_chain: + default: basic + description: 'The type of delivery chain to use when deploying workloads. + Options: `basic`.' + type: string + git_access_secret: + default: git-secret + description: The Secret containing authentication credentials for the Git + repository. + type: string + service_account: + default: default + description: The default `ServiceAccount` used by the delivery chain. + type: string + type: object + version: 0.4.0 From 5ef5c2f51a0b2da19fd9718b7028d153cd16a6c8 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 19 Mar 2023 22:40:52 +0100 Subject: [PATCH 164/601] Prepare release candidate 0.8.0 --- .github/workflows/release.yml | 13 ++++++------- README.md | 2 +- 2 files changed, 7 insertions(+), 8 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 5ad14f1..8b8da34 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -3,10 +3,9 @@ on: - workflow_dispatch env: - COSIGN_EXPERIMENTAL: 1 REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.7.5 + VERSION: 0.8.0-RC1 jobs: build: @@ -28,7 +27,7 @@ jobs: token: ${{ secrets.GITHUB_TOKEN }} - name: Log into container registry - uses: redhat-actions/podman-login@v1.5 + uses: redhat-actions/podman-login@v1.6 with: username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} @@ -88,10 +87,10 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v2.8.1 + uses: sigstore/cosign-installer@v3.0.1 - name: Log into container registry - uses: redhat-actions/podman-login@v1.5 + uses: redhat-actions/podman-login@v1.6 with: username: ${{ github.actor }} password: ${{ secrets.GITHUB_TOKEN }} @@ -99,7 +98,7 @@ jobs: - name: Sign image run: | - cosign sign "${IMAGE_NAME}@${IMAGE_DIGEST}" + cosign sign --yes "${IMAGE_NAME}@${IMAGE_DIGEST}" provenance: needs: [build,sign] @@ -107,7 +106,7 @@ jobs: actions: read id-token: write packages: write - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.4.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.5.0 with: image: ${{ needs.build.outputs.image-name }} digest: ${{ needs.build.outputs.image-digest }} diff --git a/README.md b/README.md index 4ad6a7f..b8ed066 100644 --- a/README.md +++ b/README.md @@ -13,7 +13,7 @@ This repository contains the following Carvel packages. | Package | Description | |---------|-------------| -| [application-platform](https://github.com/kadras-io/kadras-application-platform) | A curated collection of packages to build an application platform or internal developer platform (IDP) on Kubernetes. | +| [application-platform](https://github.com/kadras-io/kadras-application-platform) | A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes. | | [argo-cd](https://github.com/kadras-io/package-for-argo-cd) | A declarative and GitOps continuous delivery tool for Kubernetes. | | [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | | [cartographer-blueprints](https://github.com/kadras-io/cartographer-blueprints) | A curated set of reusable blueprints for Cartographer, a Kubernetes-native framework to build paved paths to production. | From 584996b011be1095bafbe9cf7f173fc7be321a37 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 20 Mar 2023 00:03:25 +0100 Subject: [PATCH 165/601] Remove deprecated dependencies --- .../argo-cd.packages.kadras.io/2.5.5.yml | 45 -- .../1.11.0+kadras.1.yml | 128 ----- .../1.24.1+kadras.1.yml | 222 -------- .../1.8.4.yml | 45 -- .../1.9.2.yml | 234 -------- .../0.3.4.yml | 34 -- .../0.4.0.yml | 46 -- .../0.4.1.yml | 46 -- .../0.4.2.yml | 46 -- .../0.13.1.yml | 67 --- .../0.44.0.yml | 521 ------------------ .../0.45.0.yml | 514 ----------------- 12 files changed, 1948 deletions(-) delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.5.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.1.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.4.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.2.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.13.1.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.44.0.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.45.0.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.5.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.5.yml deleted file mode 100644 index f9aef50..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.5.5.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.5.5 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/argoproj/argo-cd/releases - releasedAt: "2023-01-10T19:59:38Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-argo-cd@sha256:63217266603718b09b23805e6643a2406c9cace46f89558363022c10f595ef0d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.5.5 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.1.yml deleted file mode 100644 index 6d434c0..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.1.yml +++ /dev/null @@ -1,128 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.11.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2023-02-11T19:30:40Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:3cc778ffeb099e827e357518ea32e4e4b5688ea1ef947270139732bb8719c355 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_ca: - additionalProperties: false - description: Settings for configuring a private CA out-of-the-box. - properties: - enable: - default: true - description: Whether to bootstrap a private CA. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy URL. - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL. - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.11.0+kadras.1 diff --git a/repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml deleted file mode 100644 index 52a59cf..0000000 --- a/repo/packages/contour.packages.kadras.io/1.24.1+kadras.1.yml +++ /dev/null @@ -1,222 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.24.1+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/projectcontour/contour/releases - releasedAt: "2023-03-09T22:49:42Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:1e72127ae7a1d81b4d0fb38f6fae22c76c6b5616bd090f0caa8bb1912864cdcc - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If `infrastructureProvider` - is not `aws`, these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: null - description: The external traffic policy for the Envoy service. - If type is `ClusterIP`, this field is ignored. Otherwise, it defaults - to `Cluster` for vsphere and `Local` for others. - nullable: true - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: null - description: The type of Kubernetes service to provision for Envoy. - If not specified, it will default to `NodePort` for local and - vsphere and `LoadBalancer` for others. - nullable: true - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: false - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructureProvider: - default: null - description: The underlying infrastructure provider. Options are `aws`, - `azure`, `local` and `vsphere`. This field is not required, but it enables - better validation and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.24.1+kadras.1 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.4.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.4.yml deleted file mode 100644 index e6af53b..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.8.4.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.8.4 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/knative/eventing/releases - releasedAt: "2023-01-10T19:18:25Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-eventing@sha256:7758f1009ff9aa4918ca516b8502ebe327e14f3ad5cabc97d1c186f2fbb7e58d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.8.4 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.2.yml deleted file mode 100644 index 39ef3db..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.9.2.yml +++ /dev/null @@ -1,234 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.9.2 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-03-14T21:35:13Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:c0a353ed0fe63e09627cc59b2fbbc91b77efd978d5a081dba991ba3dde2957ec - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - domain: - additionalProperties: false - description: Domain configuration stored in the `config-domain` ConfigMap. - properties: - name: - default: 127.0.0.1.sslip.io - description: Domain name for Knative Services. It must be a valid - DNS name. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Enabled - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy URL. - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL. - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used. - type: string - type: object - tls: - additionalProperties: false - description: Settings for TLS certificates. - properties: - certmanager: - additionalProperties: false - description: Cert Manager configuration stored in the `config-certmanager` - ConfigMap. - properties: - clusterissuer: - default: "" - description: A reference to the ClusterIssuer to use if you want - to enable autoTLS. - type: string - type: object - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.9.2 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml deleted file mode 100644 index 7864bd9..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.4.yml +++ /dev/null @@ -1,34 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.3.4 -spec: - refName: kpack-dependencies.packages.kadras.io - releasedAt: "2023-03-06T21:31:58Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kpack-dependencies@sha256:e1e4147f4cd9b020dc0e785e9e516435e295ed78a0a190425840ec488b3b1f77 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - default: "" - description: The OCI registry where to publish builder images. The same - as configured in kpack. - type: string - type: object - version: 0.3.4 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml deleted file mode 100644 index 588a876..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.0.yml +++ /dev/null @@ -1,46 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.4.0 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack-dependencies.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases - releasedAt: "2023-03-18T19:33:08Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kpack-dependencies@sha256:fe733f97826ae37d6540546e2110f1c5bd3a5151093b1a6023cb637be94e636b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.4.0 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml deleted file mode 100644 index 6eb52b0..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.1.yml +++ /dev/null @@ -1,46 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.4.1 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack-dependencies.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases - releasedAt: "2023-03-19T10:28:35Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kpack-dependencies@sha256:4dfee58e34f34404b233abb5e2f60243cc4da61d84e63e7ed7ab0fd33b2c8264 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.4.1 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml deleted file mode 100644 index 5eb88f2..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.2.yml +++ /dev/null @@ -1,46 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.4.2 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack-dependencies.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases - releasedAt: "2023-03-19T10:39:03Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kpack-dependencies@sha256:fe733f97826ae37d6540546e2110f1c5bd3a5151093b1a6023cb637be94e636b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.4.2 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.13.1.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.13.1.yml deleted file mode 100644 index 00ad7c9..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.13.1.yml +++ /dev/null @@ -1,67 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.13.1 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releasedAt: "2023-01-27T07:13:38Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:3aa5d6224150062d99f0fcf5d3f5c54d9f9f21f1e6ba9c17a8a30534716dffd5 - template: - - ytt: - paths: - - config/package-bundle/config - - config/release-config.yml - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - create_namespace: - default: true - description: Whether to create namespace specified for secretgen-controller - type: boolean - deployment: - additionalProperties: false - description: Configuration for secretgen-controller deployment - properties: - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: 0 - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - type: integer - maxUnavailable: - default: 1 - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - type: integer - type: object - updateStrategy: - default: "" - description: Update strategy of deployments, empty uses default strategy - type: string - type: object - namespace: - default: secretgen-controller - description: The namespace in which to deploy secretgen-controller - type: string - type: object - version: 0.13.1 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.44.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.44.0.yml deleted file mode 100644 index 06aa098..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.44.0.yml +++ /dev/null @@ -1,521 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.44.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-02-07T23:06:02Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:11437acd8c3b5ed4a0c296657e0412297bb384c2d7bfbb15ed41deee1275d339 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: Self-signed certificate for the private container registry - storing the images used in Tekton Tasks (PEM-encoded format). - type: string - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - type: object - type: object - defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - affinity_assistant_pod_template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - cloud_events_sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, - and Run lifeycle events. If no sink is specified, no CloudEvent is - generated. - type: string - forbidden_env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - managed_by_label_value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - max_matrix_combinations_count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - pod_template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - service_account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - task_run_workspace_binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - timeout_minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await_sidecar_readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - custom_task_version: - default: v1beta1 - description: Setting this flag will determine the version for custom - tasks created by PipelineRuns. - type: string - disable_affinity_assistant: - default: "false" - description: Setting this flag to `true` will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable_creds_init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - embedded_status: - default: minimal - description: Setting this flag to `full` to enable full embedding of - `TaskRun` and `Run` statuses in the `PipelineRun` status. Set it to - `minimal` to populate the `ChildReferences` field in the `PipelineRun` - status with name, kind, and API version information for each `TaskRun` - and `Run` in the `PipelineRun` instead. Set it to `both` to do both. - type: string - enable_api_fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable_provenance_in_status: - default: "false" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable_tekton_oci_bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - require_git_ssh_secret_known_hosts: - default: "false" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - resource_verification_mode: - default: skip - description: Setting this flag to `enforce` will enforce verification - of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. - `warn` will only log the err message and `skip` will skip the whole - verification. - type: string - running_in_environment_with_injected_sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send_cloudevents_for_runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - type: object - leader_election: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease_duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew_deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry_period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel: - additionalProperties: false - description: Configuration of the log level for each Deployment. - properties: - controller: - default: info - description: Log level for the `tekton-pipelines-controller` and - `tekton-pipelines-resolvers` Deployments. - type: string - webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - type: object - zap_logger_config: - default: "" - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics: - additionalProperties: false - description: Configuration for the metrics produced by the Tekton components. - properties: - allow_stackdriver_custom_metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver - using 'global' resource type and custom metric type. Ignore if - `backend_destination` is not `stackdriver`. - type: string - backend_destination: - default: prometheus - description: The system metrics destination. - type: string - pipelinerun: - additionalProperties: false - description: Configuration for the PipelineRun metrics. - properties: - duration_type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram - value isn’t available when the `pipelinerun` level is selected. - type: string - level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling - which labels are included: (pipelinerun, pipeline, namespace), - (pipeline, namespace), (namespace).' - type: string - type: object - stackdriver_project_id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the - cluster's project if this field is not provided. - type: string - taskrun: - additionalProperties: false - description: Configuration for the TaskRun metrics. - properties: - duration_type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram - value isn’t available when the `taskrun` level is selected. - type: string - level: - default: task - description: 'Level for the TaskRun metrics controlling which - labels are included: (taskrun, task, namespace), (task, namespace), - (namespace).' - type: string - type: object - type: object - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - enable: - default: false - description: Setting this flag to `true` enables the trace exporter. - type: boolean - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - endpoint: - default: "" - description: The endpoint where the distributed tracing backend - accepts OpenTelemetry traces using the Jaeger protocol. - type: string - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundle: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default_kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default_service_account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed_namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked_namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default_kind: - default: task - description: The default resource kind to fetch. - type: string - default_namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable_bundles_resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable_cluster_resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable_git_resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable_hub_resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - git: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api_token_secret_key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api_token_secret_name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api_token_secret_namespace: - default: default - description: The namespace containing the API token secret. - type: string - default_org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default_revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default_url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch_timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm_type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server_url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hub: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default_artifact_hub_pipeline_catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default_artifact_hub_task_catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default_kind: - default: task - description: The default resource kind to fetch. - type: string - default_tekton_hub_catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default_type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - pdb: - additionalProperties: false - description: PodDisruptionBudget configuration for the `tekton-pipelines-webhook` - Deployment. - properties: - enable: - default: false - description: Setting this flag to `true` enables a PodDisruptionBudget - for the `tekton-pipelines-webhook` Deployment and ensures high - availability. - type: boolean - type: object - type: object - type: object - version: 0.44.0 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0.yml deleted file mode 100644 index 6355439..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0.yml +++ /dev/null @@ -1,514 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.45.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-02-27T20:36:57Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:3cc9b172733498ace572bdc7d728b0f13d8657f0dd6516a0525b0163d429fb1a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: Self-signed certificate for the private container registry - storing the images used in Tekton Tasks (PEM-encoded format). - type: string - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - type: object - type: object - defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - affinity_assistant_pod_template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - cloud_events_sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, - and Run lifeycle events. If no sink is specified, no CloudEvent is - generated. - type: string - forbidden_env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - managed_by_label_value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - max_matrix_combinations_count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - pod_template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - service_account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - task_run_workspace_binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - timeout_minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await_sidecar_readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - custom_task_version: - default: v1beta1 - description: Setting this flag will determine the version for custom - tasks created by PipelineRuns. - type: string - disable_affinity_assistant: - default: "false" - description: Setting this flag to `true` will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable_creds_init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable_api_fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable_provenance_in_status: - default: "false" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable_tekton_oci_bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce_nonfalsifiablity: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - require_git_ssh_secret_known_hosts: - default: "false" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - resource_verification_mode: - default: skip - description: Setting this flag to `enforce` will enforce verification - of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. - `warn` will only log the err message and `skip` will skip the whole - verification. - type: string - running_in_environment_with_injected_sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send_cloudevents_for_runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - type: object - leader_election: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease_duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew_deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry_period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel: - additionalProperties: false - description: Configuration of the log level for each Deployment. - properties: - controller: - default: info - description: Log level for the `tekton-pipelines-controller` and - `tekton-pipelines-resolvers` Deployments. - type: string - webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - type: object - zap_logger_config: - default: "" - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics: - additionalProperties: false - description: Configuration for the metrics produced by the Tekton components. - properties: - allow_stackdriver_custom_metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver - using 'global' resource type and custom metric type. Ignore if - `backend_destination` is not `stackdriver`. - type: string - backend_destination: - default: prometheus - description: The system metrics destination. - type: string - pipelinerun: - additionalProperties: false - description: Configuration for the PipelineRun metrics. - properties: - duration_type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram - value isn’t available when the `pipelinerun` level is selected. - type: string - level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling - which labels are included: (pipelinerun, pipeline, namespace), - (pipeline, namespace), (namespace).' - type: string - type: object - stackdriver_project_id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the - cluster's project if this field is not provided. - type: string - taskrun: - additionalProperties: false - description: Configuration for the TaskRun metrics. - properties: - duration_type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram - value isn’t available when the `taskrun` level is selected. - type: string - level: - default: task - description: 'Level for the TaskRun metrics controlling which - labels are included: (taskrun, task, namespace), (task, namespace), - (namespace).' - type: string - type: object - type: object - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - enable: - default: false - description: Setting this flag to `true` enables the trace exporter. - type: boolean - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - endpoint: - default: "" - description: The endpoint where the distributed tracing backend - accepts OpenTelemetry traces using the Jaeger protocol. - type: string - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundle: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default_kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default_service_account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed_namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked_namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default_kind: - default: task - description: The default resource kind to fetch. - type: string - default_namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable_bundles_resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable_cluster_resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable_git_resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable_hub_resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - git: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api_token_secret_key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api_token_secret_name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api_token_secret_namespace: - default: default - description: The namespace containing the API token secret. - type: string - default_org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default_revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default_url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch_timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm_type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server_url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hub: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default_artifact_hub_pipeline_catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default_artifact_hub_task_catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default_kind: - default: task - description: The default resource kind to fetch. - type: string - default_tekton_hub_catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default_type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.45.0 From 1cb45f3923acb09745ea174d5beebae91bc0ec13 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 20 Mar 2023 00:04:30 +0100 Subject: [PATCH 166/601] Update Application Platform metadata and add version 0.6.0 (#144) Co-authored-by: github-actions --- .../0.6.0.yml | 120 ++++++++++++++++++ .../metadata.yml | 8 +- 2 files changed, 125 insertions(+), 3 deletions(-) create mode 100644 repo/packages/application-platform.packages.kadras.io/0.6.0.yml diff --git a/repo/packages/application-platform.packages.kadras.io/0.6.0.yml b/repo/packages/application-platform.packages.kadras.io/0.6.0.yml new file mode 100644 index 0000000..76fab08 --- /dev/null +++ b/repo/packages/application-platform.packages.kadras.io/0.6.0.yml @@ -0,0 +1,120 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: application-platform.packages.kadras.io.0.6.0 +spec: + licenses: + - Apache 2.0 + refName: application-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-application-platform/releases + releasedAt: "2023-03-19T22:55:59Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-application-platform@sha256:18f96ebe31eb3c3d81c1c793605aecdf85c3cf4b58129d3f8b5e90bdd9cffd37 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + kpack_dependencies: + default: {} + description: Configuration for the Kpack Dependencies package. + nullable: true + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package. + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages. + properties: + exclusions: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform. + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + type: object + version: 0.6.0 diff --git a/repo/packages/application-platform.packages.kadras.io/metadata.yml b/repo/packages/application-platform.packages.kadras.io/metadata.yml index 763e8b3..07ae7d9 100644 --- a/repo/packages/application-platform.packages.kadras.io/metadata.yml +++ b/repo/packages/application-platform.packages.kadras.io/metadata.yml @@ -8,9 +8,11 @@ spec: - internal developer platform - application platform displayName: application-platform - longDescription: A curated set of Carvel packages to build an application platform - or internal developer platform (IDP) on Kubernetes. + longDescription: A curated set of Carvel packages to build an engineering platform + supporting application developers with paved paths to production on Kubernetes. maintainers: - name: Thomas Vitale providerName: Kadras - shortDescription: Application platform on Kubernetes. + shortDescription: Cloud native application platform on Kubernetes. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/kadras-application-platform + for community support. From e024397d2c63ae9e91a6d7bb93c26c94bcf043d9 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 20 Mar 2023 00:05:09 +0100 Subject: [PATCH 167/601] Configure release 0.8.0 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 8b8da34..a083067 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.8.0-RC1 + VERSION: 0.8.0 jobs: build: From 8df94c4d4ba55bb7c82f2bc85606590b9c99f64e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 20 Mar 2023 17:53:49 +0100 Subject: [PATCH 168/601] Update Buildpacks Catalog metadata and add version 0.5.0 (#145) Co-authored-by: github-actions --- .../0.5.0.yml | 46 +++++++++++++++++++ .../metadata.yml | 18 ++++++++ 2 files changed, 64 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.5.0.yml create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.0.yml new file mode 100644 index 0000000..df0b14d --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.0.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.5.0 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-03-20T16:49:46Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:f6dc63199b4f3b98ee155f2380268cb8819529aab3b777672279f3d414fbf51a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack-build + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.5.0 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..06c07d1 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml @@ -0,0 +1,18 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io +spec: + categories: + - build + displayName: buildpacks-catalog + longDescription: A set of buildpacks, stacks, and builders to use with kpack, a + Kubernetes-native implementation of Cloud Native Buildpacks. It supports multiple + languages and frameworks. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: A set of buildpacks, stacks, and builders to use with kpack. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/buildpacks-catalog + for community support. From e58c9b4abb74bb6feffaa3ae9fb9cb45d252c67a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 20 Mar 2023 18:24:02 +0100 Subject: [PATCH 169/601] Update Engineering Platform metadata and add version 0.7.0 (#146) Co-authored-by: github-actions --- .../0.7.0.yml | 134 ++++++++++++++++++ .../metadata.yml | 18 +++ 2 files changed, 152 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.7.0.yml create mode 100644 repo/packages/engineering-platform.packages.kadras.io/metadata.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.7.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.7.0.yml new file mode 100644 index 0000000..b9e46fa --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.7.0.yml @@ -0,0 +1,134 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.7.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-03-20T17:20:50Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:771170c2473d7d586674a37df6ce03051548e3c3ca9fba0eb83ac0902f1108ba + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package. + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages. + properties: + excluded: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform. + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + type: object + version: 0.7.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/metadata.yml b/repo/packages/engineering-platform.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..baf4bd5 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/metadata.yml @@ -0,0 +1,18 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io +spec: + categories: + - internal developer platform + - application platform + displayName: engineering-platform + longDescription: A curated set of Carvel packages to build an engineering platform + supporting application developers with paved paths to production on Kubernetes. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: Cloud native engineering platform on Kubernetes. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/engineering-platform + for community support. From c6c9ae9efdc1290bc1bea2535603ef66bc8a529e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 20 Mar 2023 18:38:09 +0100 Subject: [PATCH 170/601] Configure packages for new platform generation (#147) --- .github/workflows/release.yml | 2 +- README.md | 16 +- .../0.5.1.yml | 116 ---------- .../0.5.2.yml | 116 ---------- .../0.5.3.yml | 116 ---------- .../0.6.0.yml | 120 ---------- .../metadata.yml | 18 -- .../0.3.0.yml | 38 ---- .../0.3.1.yml | 38 ---- .../0.2.0.yml | 51 ----- .../0.2.1.yml | 51 ----- .../0.2.2.yml | 51 ----- .../0.3.0.yml | 135 ------------ .../0.3.1.yml | 135 ------------ .../cartographer.packages.kadras.io/0.6.2.yml | 131 ----------- .../1.10.2.yml | 40 ---- .../1.11.0.yml | 40 ---- .../1.23.2+kadras.1.yml | 206 ------------------ .../contour.packages.kadras.io/1.23.2.yml | 206 ------------------ .../0.33.0+kadras.1.yml | 72 ------ .../0.33.0.yml | 72 ------ .../1.8.3+kadras.1.yml | 117 ---------- .../1.8.3.yml | 117 ---------- .../0.3.2.yml | 34 --- .../0.3.3.yml | 34 --- .../0.4.3.yml | 46 ---- .../metadata.yml | 18 -- .../0.9.1+kadras.1.yml | 95 -------- .../kpack.packages.kadras.io/0.9.1.yml | 95 -------- .../0.6.2+kadras.1.yml | 148 ------------- .../0.6.2.yml | 148 ------------- .../0.2.0.yml | 83 ------- .../0.13.0.yml | 67 ------ .../0.1.0.yml | 64 ------ .../0.1.3.yml | 67 ------ .../0.43.1.yml | 151 ------------- .../0.43.2.yml | 151 ------------- 37 files changed, 9 insertions(+), 3196 deletions(-) delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.5.1.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.5.2.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.5.3.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/0.6.0.yml delete mode 100644 repo/packages/application-platform.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.3.0.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.3.1.yml delete mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.2.0.yml delete mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.2.1.yml delete mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.2.2.yml delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.0.yml delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.1.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.6.2.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.10.2.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.0.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.23.2+kadras.1.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.23.2.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0+kadras.1.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.3+kadras.1.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.8.3.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.2.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.3.3.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml delete mode 100644 repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.9.1+kadras.1.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.9.1.yml delete mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.1.yml delete mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.2.yml delete mode 100644 repo/packages/namespace-setup.packages.kadras.io/0.2.0.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.13.0.yml delete mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.1.3.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.43.1.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.43.2.yml diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index a083067..6c1f0ca 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.8.0 + VERSION: 0.9.0 jobs: build: diff --git a/README.md b/README.md index b8ed066..5b97d75 100644 --- a/README.md +++ b/README.md @@ -13,22 +13,22 @@ This repository contains the following Carvel packages. | Package | Description | |---------|-------------| -| [application-platform](https://github.com/kadras-io/kadras-application-platform) | A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes. | | [argo-cd](https://github.com/kadras-io/package-for-argo-cd) | A declarative and GitOps continuous delivery tool for Kubernetes. | +| [buildpacks-catalog](https://github.com/kadras-io/buildpacks-catalog) | A curated set of buildpacks, stacks, and builders to use with kpack, a Kubernetes-native implementation of Cloud Native Buildpacks. | | [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | -| [cartographer-blueprints](https://github.com/kadras-io/cartographer-blueprints) | A curated set of reusable blueprints for Cartographer, a Kubernetes-native framework to build paved paths to production. | -| [cartographer-delivery](https://github.com/kadras-io/cartographer-delivery) | A curated set of Cartographer delivery chains to deploy workloads to Kubernetes based on GitOps or RegistryOps. | -| [cartographer-supply-chains](https://github.com/kadras-io/cartographer-supply-chains) | A curated set of Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | -| [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates in Kubernetes. | +| [cartographer-blueprints](https://github.com/kadras-io/cartographer-blueprints) | Cartographer reusable blueprints to build Kubernetes-native paved paths to production. | +| [cartographer-delivery](https://github.com/kadras-io/cartographer-delivery) | Cartographer delivery chains to deploy workloads to a Kubernetes cluster based on GitOps or RegistryOps. | +| [cartographer-supply-chains](https://github.com/kadras-io/cartographer-supply-chains) | Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | +| [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates. | | [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | +| [engineering-platform](https://github.com/kadras-io/engineering-platform) | A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes. | | [fluxcd-source-controller](https://github.com/kadras-io/package-for-fluxcd-source-controller) | A source management component from the Flux GitOps Toolkit to provide a common interface for artifacts acquisition. | | [knative-eventing](https://github.com/kadras-io/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | | [knative-serving](https://github.com/kadras-io/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | -| [kpack](https://github.com/kadras-io/package-for-kpack) | Kubernetes-native container build service based on Cloud Native Buildpacks. | -| [kpack-dependencies](https://github.com/kadras-io/kpack-dependencies) | A set of buildpacks, stacks, and builders to use with kpack. | +| [kpack](https://github.com/kadras-io/package-for-kpack) | A Kubernetes-native implementation of Cloud Native Buildpacks to build source code into OCI images from within your cluster. | | [metrics-server](https://github.com/kadras-io/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | | [namespace-setup](https://github.com/kadras-io/namespace-setup) | Sets up up namespaces with the necessary RBAC and Secrets to work with the Kadras platform. | -| [secretgen-controller](https://github.com/vmware-tanzu/carvel-secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | +| [secretgen-controller](https://github.com/carvel-dev/secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. Maintained by [Carvel](https://github.com/carvel-dev). | | [spring-boot-conventions](https://github.com/kadras-io/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | | [tekton-pipelines](https://github.com/kadras-io/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | diff --git a/repo/packages/application-platform.packages.kadras.io/0.5.1.yml b/repo/packages/application-platform.packages.kadras.io/0.5.1.yml deleted file mode 100644 index c535847..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.5.1.yml +++ /dev/null @@ -1,116 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.5.1 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releasedAt: "2023-01-10T20:15:42Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kadras-application-platform@sha256:155ac758cb694ae2e59fd7e9989c1a1f97681f9b2bf6db93554612f8309b897c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.5.1 diff --git a/repo/packages/application-platform.packages.kadras.io/0.5.2.yml b/repo/packages/application-platform.packages.kadras.io/0.5.2.yml deleted file mode 100644 index a474512..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.5.2.yml +++ /dev/null @@ -1,116 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.5.2 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releasedAt: "2023-01-13T20:29:26Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-application-platform@sha256:cb4a942f6f4d7c11875e9aed30b1200f7d95784fc53fa6f7a9492b4c7f7bba21 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.5.2 diff --git a/repo/packages/application-platform.packages.kadras.io/0.5.3.yml b/repo/packages/application-platform.packages.kadras.io/0.5.3.yml deleted file mode 100644 index 2937e40..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.5.3.yml +++ /dev/null @@ -1,116 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.5.3 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releasedAt: "2023-03-06T20:17:26Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-application-platform@sha256:be16d0c9bf7238e991fd7082e4e22707d8969b7904266c2d4476d45fc043555a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package - nullable: true - contour: - default: {} - description: Configuration for the Contour package - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages - properties: - serving: - default: {} - description: Configuration for the Knative Serving package - nullable: true - type: object - kpack: - default: - kp_default_repository: "" - description: Configuration for the Kpack package - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package - nullable: true - type: object - type: object - version: 0.5.3 diff --git a/repo/packages/application-platform.packages.kadras.io/0.6.0.yml b/repo/packages/application-platform.packages.kadras.io/0.6.0.yml deleted file mode 100644 index 76fab08..0000000 --- a/repo/packages/application-platform.packages.kadras.io/0.6.0.yml +++ /dev/null @@ -1,120 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io.0.6.0 -spec: - licenses: - - Apache 2.0 - refName: application-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-application-platform/releases - releasedAt: "2023-03-19T22:55:59Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-application-platform@sha256:18f96ebe31eb3c3d81c1c793605aecdf85c3cf4b58129d3f8b5e90bdd9cffd37 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - kpack_dependencies: - default: {} - description: Configuration for the Kpack Dependencies package. - nullable: true - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package. - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages. - properties: - exclusions: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform. - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - type: object - version: 0.6.0 diff --git a/repo/packages/application-platform.packages.kadras.io/metadata.yml b/repo/packages/application-platform.packages.kadras.io/metadata.yml deleted file mode 100644 index 07ae7d9..0000000 --- a/repo/packages/application-platform.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,18 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: application-platform.packages.kadras.io -spec: - categories: - - internal developer platform - - application platform - displayName: application-platform - longDescription: A curated set of Carvel packages to build an engineering platform - supporting application developers with paved paths to production on Kubernetes. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: Cloud native application platform on Kubernetes. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/kadras-application-platform - for community support. diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.0.yml deleted file mode 100644 index ea1c6d4..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.0.yml +++ /dev/null @@ -1,38 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.3.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releasedAt: "2022-12-24T15:14:09Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-blueprints@sha256:fa8470ec3789a21a3ed06da7ca2f4e314bff6ff02514e0fc4b52f0b147c974df - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being applied. - items: - default: "" - type: string - type: array - type: object - version: 0.3.0 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.1.yml deleted file mode 100644 index 89cf3d6..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.3.1.yml +++ /dev/null @@ -1,38 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.3.1 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releasedAt: "2023-01-13T20:18:42Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:fd564aca03a00504038d3771b6d72ebd804eccd31d6b379e6c0a439ae1fa3c67 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being applied. - items: - default: "" - type: string - type: array - type: object - version: 0.3.1 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.2.0.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.2.0.yml deleted file mode 100644 index 617d4ba..0000000 --- a/repo/packages/cartographer-delivery.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,51 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-delivery.packages.kadras.io.0.2.0 -spec: - refName: cartographer-delivery.packages.kadras.io - releasedAt: "2022-12-24T16:25:17Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-delivery@sha256:b9e01583113ccd1b0cb21b790093b26c03fa89e966c6c0a7307d014bfba4e1ec - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - delivery_chain: - default: basic - description: The type of delivery chain to use when deploying workloads - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - gitops: - additionalProperties: false - description: Configuration for the GitOps steps in the delivery chain - properties: - access_secret: - default: git-secret - description: The Secret containing credentials to access the specified - Git repository - type: string - type: object - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - type: object - version: 0.2.0 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.2.1.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.2.1.yml deleted file mode 100644 index f9605de..0000000 --- a/repo/packages/cartographer-delivery.packages.kadras.io/0.2.1.yml +++ /dev/null @@ -1,51 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-delivery.packages.kadras.io.0.2.1 -spec: - refName: cartographer-delivery.packages.kadras.io - releasedAt: "2023-01-13T20:07:43Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-delivery@sha256:b9e01583113ccd1b0cb21b790093b26c03fa89e966c6c0a7307d014bfba4e1ec - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - delivery_chain: - default: basic - description: The type of delivery chain to use when deploying workloads - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - gitops: - additionalProperties: false - description: Configuration for the GitOps steps in the delivery chain - properties: - access_secret: - default: git-secret - description: The Secret containing credentials to access the specified - Git repository - type: string - type: object - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - type: object - version: 0.2.1 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.2.2.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.2.2.yml deleted file mode 100644 index 95953b0..0000000 --- a/repo/packages/cartographer-delivery.packages.kadras.io/0.2.2.yml +++ /dev/null @@ -1,51 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-delivery.packages.kadras.io.0.2.2 -spec: - refName: cartographer-delivery.packages.kadras.io - releasedAt: "2023-03-06T19:44:02Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-delivery@sha256:a76648eda1c2e807cf4a5d8b171343187a77034a678c338873a84300151bd697 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - delivery_chain: - default: basic - description: The type of delivery chain to use when deploying workloads - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - gitops: - additionalProperties: false - description: Configuration for the GitOps steps in the delivery chain - properties: - access_secret: - default: git-secret - description: The Secret containing credentials to access the specified - Git repository - type: string - type: object - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - type: object - version: 0.2.2 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.0.yml deleted file mode 100644 index 12917c3..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.0.yml +++ /dev/null @@ -1,135 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.3.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releasedAt: "2022-12-24T16:13:25Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/cartographer-supply-chains@sha256:75d932ea4d326c7e104ae1403b2999d964f71282c11d521b98e06094dd0317f3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cluster_builder: - default: default - description: The ClusterBuilder used by kpack - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - gitops: - additionalProperties: false - description: Configuration for the GitOps steps in the supply chain - properties: - access_secret: - default: git-secret - description: The Secret containing credentials to access the specified - Git repository - type: string - branch: - default: main - description: The branch to use for GitOps activities - type: string - commit_message: - default: Update from Cartographer - description: The commit message to use when pushing configuration changes - to Git - type: string - commit_strategy: - default: direct - description: Whether to commit configuration changes to Git directly - or via a pull request - type: string - pull_request: - additionalProperties: false - properties: - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated - type: string - pull_request_body: - default: "" - description: The body of the pull request - type: string - pull_request_title: - default: "" - description: The title of the pull request - type: string - server_kind: - default: "" - description: The type of Git server where to open the pull request - example: github - type: string - x-example-description: Open a pull request on GitHub - type: object - repository_name: - default: "" - description: The name of the Git repository to use for GitOps - type: string - repository_owner: - default: "" - description: The owner of the specified Git repository - type: string - server_address: - default: "" - description: The server hosting the specified Git repository - type: string - user_email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository - type: string - user_name: - default: cartographer - description: The name of the user interacting with the Git repository - type: string - type: object - registry: - additionalProperties: false - description: Configuration for the OCI Registry where to store the application - images - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data for the OCI Registry where - the deployment configuration files will be pushed to. - type: string - repository: - default: "" - description: The repository under an OCI Registry where to store the - application images - type: string - server: - default: "" - description: The server of the OCI Registry where to store the application - images - type: string - type: object - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - supply_chain: - default: basic - description: The type of supply chain to use - type: string - type: object - version: 0.3.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.1.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.1.yml deleted file mode 100644 index b6c22f0..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.3.1.yml +++ /dev/null @@ -1,135 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.3.1 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releasedAt: "2023-01-13T19:53:59Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:75d932ea4d326c7e104ae1403b2999d964f71282c11d521b98e06094dd0317f3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cluster_builder: - default: default - description: The ClusterBuilder used by kpack - type: string - git_implementation: - default: go-git - description: The Git implementation used by Flux - type: string - gitops: - additionalProperties: false - description: Configuration for the GitOps steps in the supply chain - properties: - access_secret: - default: git-secret - description: The Secret containing credentials to access the specified - Git repository - type: string - branch: - default: main - description: The branch to use for GitOps activities - type: string - commit_message: - default: Update from Cartographer - description: The commit message to use when pushing configuration changes - to Git - type: string - commit_strategy: - default: direct - description: Whether to commit configuration changes to Git directly - or via a pull request - type: string - pull_request: - additionalProperties: false - properties: - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated - type: string - pull_request_body: - default: "" - description: The body of the pull request - type: string - pull_request_title: - default: "" - description: The title of the pull request - type: string - server_kind: - default: "" - description: The type of Git server where to open the pull request - example: github - type: string - x-example-description: Open a pull request on GitHub - type: object - repository_name: - default: "" - description: The name of the Git repository to use for GitOps - type: string - repository_owner: - default: "" - description: The owner of the specified Git repository - type: string - server_address: - default: "" - description: The server hosting the specified Git repository - type: string - user_email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository - type: string - user_name: - default: cartographer - description: The name of the user interacting with the Git repository - type: string - type: object - registry: - additionalProperties: false - description: Configuration for the OCI Registry where to store the application - images - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data for the OCI Registry where - the deployment configuration files will be pushed to. - type: string - repository: - default: "" - description: The repository under an OCI Registry where to store the - application images - type: string - server: - default: "" - description: The server of the OCI Registry where to store the application - images - type: string - type: object - service_account: - default: default - description: The ServiceAccount used by the supply chain - type: string - supply_chain: - default: basic - description: The type of supply chain to use - type: string - type: object - version: 0.3.1 diff --git a/repo/packages/cartographer.packages.kadras.io/0.6.2.yml b/repo/packages/cartographer.packages.kadras.io/0.6.2.yml deleted file mode 100644 index 846d0b2..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.6.2.yml +++ /dev/null @@ -1,131 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: cartographer.packages.kadras.io.0.6.2 -spec: - refName: cartographer.packages.kadras.io - version: 0.6.2 - releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.6.2 - releasedAt: "2022-12-16T01:55:13Z" - valuesSchema: - openAPIv3: - title: cartographer.packages.kadras.io.0.6.2 values schema - properties: - ca_cert_data: - type: string - description: 'Optional: PEM Encoded certificate data for image registries with private CA.' - default: "" - excluded_components: - type: array - items: - type: string - default: [] - description: 'Optional: List of components to exclude from installation (e.g. [conventions])' - aws_iam_role_arn: - type: string - description: 'Optional: Arn role that has access to pull images from ECR container registry' - default: "" - cartographer: - type: object - properties: - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maxium amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - conventions: - type: object - properties: - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maxium amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - template: - spec: - fetch: - - imgpkgBundle: - image: index.docker.io/projectcartographer/package-for-cartographer@sha256:b8af2f836e67c21bba28f64f9aa024b7cff1faf65fc89e2fcfc97636484d9f95 - template: - - ytt: - ignoreUnknownComments: true - paths: - - config - - kbld: - paths: - - .imgpkg/images.yml - - '-' - deploy: - - kapp: {} diff --git a/repo/packages/cert-manager.packages.kadras.io/1.10.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.10.2.yml deleted file mode 100644 index 69efbd6..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.10.2.yml +++ /dev/null @@ -1,40 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.10.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2023-01-10T19:50:35Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-cert-manager@sha256:cc905cfd171d29d3cd792d4e265dd78cde09e6f7159f9863acfc93339b1dfb3a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager - type: string - type: object - version: 1.10.2 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.0.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.0.yml deleted file mode 100644 index 0bd36a0..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.11.0.yml +++ /dev/null @@ -1,40 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.11.0 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2023-01-13T19:10:08Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:76d5d060d8a864933699715d29ef3fdc805378ed47600e029b03aadad020e77e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager - type: string - type: object - version: 1.11.0 diff --git a/repo/packages/contour.packages.kadras.io/1.23.2+kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.23.2+kadras.1.yml deleted file mode 100644 index 563e4f1..0000000 --- a/repo/packages/contour.packages.kadras.io/1.23.2+kadras.1.yml +++ /dev/null @@ -1,206 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.23.2+kadras.1 -spec: - capacityRequirementsDescription: Varies significantly based on number of Services, - Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each - Contour and Envoy pod, but this can and should be tuned based on observed usage. - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/projectcontour/contour/releases - releasedAt: "2023-01-13T16:32:44Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:199401260a26831f6cefb5ace643b55278e77b5cf889b7ccd84f8f660d84679b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: Settings for the TLS certificates for securing communication - between Contour and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If useCertManager is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If useCertManager is false, this field is ignored. - type: string - useCertManager: - default: false - description: Whether to use cert-manager to provision TLS certificates - for securing communication between Contour and Envoy. If false, the - upstream Contour certgen job will be used to provision certificates. - If true, the cert-manager addon must be installed in the cluster. - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - configFileContents: - default: null - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - logLevel: - default: info - description: The Contour log level. Valid options are 'info' and 'debug'. - type: string - replicas: - default: 2 - description: How many Contour pod replicas to have. - type: integer - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enable: - default: false - description: Whether to enable host ports. If false, http & https - are ignored. - type: boolean - http: - default: 80 - description: If enable == true, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enable == true, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - logLevel: - default: info - description: The Envoy log level. - type: string - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If infrastructure - provider is not 'aws', these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: "" - description: The external traffic policy for the Envoy service. - If type is 'ClusterIP', this field is ignored. Otherwise, defaults - to 'Cluster' for vsphere and 'Local' for others. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If type is not 'LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not 'NodePort' or 'LoadBalancer', these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: null - description: The type of Kubernetes service to provision for Envoy. - If not specified, will default to 'NodePort' for docker and vsphere - and 'LoadBalancer' for others. - nullable: true - type: string - type: object - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - replicas: - default: 2 - description: The number of Envoy replicas to deploy when 'type' - is set to 'Deployment'. If not specified, it will default to '2'. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload Envoy is deployed as. - Options are 'Deployment' or 'DaemonSet'. If not specified, will - default to 'DaemonSet'. - type: string - type: object - type: object - infrastructureProvider: - default: "" - description: The underlying infrastructure provider. Options are aws, azure, - docker and vsphere. This field is not required, but enables better validation - and defaulting if provided. - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.23.2+kadras.1 diff --git a/repo/packages/contour.packages.kadras.io/1.23.2.yml b/repo/packages/contour.packages.kadras.io/1.23.2.yml deleted file mode 100644 index 1dbba37..0000000 --- a/repo/packages/contour.packages.kadras.io/1.23.2.yml +++ /dev/null @@ -1,206 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.23.2 -spec: - capacityRequirementsDescription: Varies significantly based on number of Services, - Ingresses/HTTPProxies, etc. A starting point is 128MB RAM and 0.5 CPU for each - Contour and Envoy pod, but this can and should be tuned based on observed usage. - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/projectcontour/contour/releases - releasedAt: "2022-12-12T22:21:12Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-contour@sha256:199401260a26831f6cefb5ace643b55278e77b5cf889b7ccd84f8f660d84679b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: Settings for the TLS certificates for securing communication - between Contour and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If useCertManager is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If useCertManager is false, this field is ignored. - type: string - useCertManager: - default: false - description: Whether to use cert-manager to provision TLS certificates - for securing communication between Contour and Envoy. If false, the - upstream Contour certgen job will be used to provision certificates. - If true, the cert-manager addon must be installed in the cluster. - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - configFileContents: - default: null - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - logLevel: - default: info - description: The Contour log level. Valid options are 'info' and 'debug'. - type: string - replicas: - default: 2 - description: How many Contour pod replicas to have. - type: integer - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enable: - default: false - description: Whether to enable host ports. If false, http & https - are ignored. - type: boolean - http: - default: 80 - description: If enable == true, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enable == true, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - logLevel: - default: info - description: The Envoy log level. - type: string - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If infrastructure - provider is not 'aws', these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: "" - description: The external traffic policy for the Envoy service. - If type is 'ClusterIP', this field is ignored. Otherwise, defaults - to 'Cluster' for vsphere and 'Local' for others. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If type is not 'LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not 'NodePort' or 'LoadBalancer', these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: null - description: The type of Kubernetes service to provision for Envoy. - If not specified, will default to 'NodePort' for docker and vsphere - and 'LoadBalancer' for others. - nullable: true - type: string - type: object - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - replicas: - default: 2 - description: The number of Envoy replicas to deploy when 'type' - is set to 'Deployment'. If not specified, it will default to '2'. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload Envoy is deployed as. - Options are 'Deployment' or 'DaemonSet'. If not specified, will - default to 'DaemonSet'. - type: string - type: object - type: object - infrastructureProvider: - default: "" - description: The underlying infrastructure provider. Options are aws, azure, - docker and vsphere. This field is not required, but enables better validation - and defaulting if provided. - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.23.2 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0+kadras.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0+kadras.1.yml deleted file mode 100644 index 81dd665..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0+kadras.1.yml +++ /dev/null @@ -1,72 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.33.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/fluxcd/source-controller/releases - releasedAt: "2023-01-13T16:11:45Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:b7b13bbf52581f722c23819000aa3cfe01f78d59038d7069af25bbfe4a5491be - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy URL - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the source-controller Service - type: integer - type: object - version: 0.33.0+kadras.1 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0.yml deleted file mode 100644 index a08d7e0..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.33.0.yml +++ /dev/null @@ -1,72 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.33.0 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/fluxcd/source-controller/releases - releasedAt: "2023-01-10T19:30:28Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-fluxcd-source-controller@sha256:b7b13bbf52581f722c23819000aa3cfe01f78d59038d7069af25bbfe4a5491be - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy URL - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the source-controller Service - type: integer - type: object - version: 0.33.0 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.3+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.3+kadras.1.yml deleted file mode 100644 index 89692b0..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.8.3+kadras.1.yml +++ /dev/null @@ -1,117 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.8.3+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/knative/serving/releases - releasedAt: "2023-01-12T23:32:07Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:23498b64d519fdbe964817cb683359010d0bb8f203ab91e46cfdbcec26cf9df6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - domain: - additionalProperties: false - description: DNS configuration - properties: - name: - default: 127.0.0.1.sslip.io - description: Your own domain name - type: string - url_template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The domain template to use when creating new services - type: string - type: object - ingress: - additionalProperties: false - description: Ingress configuration - properties: - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internale Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed - type: string - type: object - type: object - namespace: - default: knative-serving - description: The namespace where to install Knative Serving - type: string - scaling: - additionalProperties: false - description: Configuration for the Knative autoscaler - properties: - allow_zero_initial_scale: - default: "true" - description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' - annotation can be set to 0 - type: string - initial_scale: - default: "1" - description: The initial target scale of a revision after creation - type: string - max_scale: - default: "0" - description: The maximum scale of a revision. If set to 0, the revision - has no maximum scale. - type: string - min_scale: - default: "0" - description: The minimum scale of a revision - type: string - scale_down_delay: - default: 0s - description: The amount of time that must pass at reduced concurrency - before a scale down decision is applied. If 0s, no delay. - type: string - type: object - tls: - additionalProperties: false - description: Configuration for automatic TLS certificates - properties: - certmanager: - additionalProperties: false - description: Configuration for integrating with cert-manager for certificate - issuing - properties: - clusterissuer: - default: "" - description: Provide a cluster issuer if you want to enable auto-TLS - type: string - type: object - type: object - type: object - version: 1.8.3+kadras.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.8.3.yml b/repo/packages/knative-serving.packages.kadras.io/1.8.3.yml deleted file mode 100644 index 9c2e5b7..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.8.3.yml +++ /dev/null @@ -1,117 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.8.3 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/knative/serving/releases - releasedAt: "2022-12-12T19:37:54Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-knative-serving@sha256:23498b64d519fdbe964817cb683359010d0bb8f203ab91e46cfdbcec26cf9df6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - domain: - additionalProperties: false - description: DNS configuration - properties: - name: - default: 127.0.0.1.sslip.io - description: Your own domain name - type: string - url_template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The domain template to use when creating new services - type: string - type: object - ingress: - additionalProperties: false - description: Ingress configuration - properties: - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internale Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed - type: string - type: object - type: object - namespace: - default: knative-serving - description: The namespace where to install Knative Serving - type: string - scaling: - additionalProperties: false - description: Configuration for the Knative autoscaler - properties: - allow_zero_initial_scale: - default: "true" - description: Whether either the initial_scale config or the 'autoscaling.knative.dev/initial-scale' - annotation can be set to 0 - type: string - initial_scale: - default: "1" - description: The initial target scale of a revision after creation - type: string - max_scale: - default: "0" - description: The maximum scale of a revision. If set to 0, the revision - has no maximum scale. - type: string - min_scale: - default: "0" - description: The minimum scale of a revision - type: string - scale_down_delay: - default: 0s - description: The amount of time that must pass at reduced concurrency - before a scale down decision is applied. If 0s, no delay. - type: string - type: object - tls: - additionalProperties: false - description: Configuration for automatic TLS certificates - properties: - certmanager: - additionalProperties: false - description: Configuration for integrating with cert-manager for certificate - issuing - properties: - clusterissuer: - default: "" - description: Provide a cluster issuer if you want to enable auto-TLS - type: string - type: object - type: object - type: object - version: 1.8.3 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.2.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.2.yml deleted file mode 100644 index 9c5614a..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.2.yml +++ /dev/null @@ -1,34 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.3.2 -spec: - refName: kpack-dependencies.packages.kadras.io - releasedAt: "2022-11-28T18:44:40Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/kpack-dependencies@sha256:6548de6f924a10c11236eea2b988b95b5702486ca91378f764422b68db25ee97 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - default: "" - description: The OCI registry where to publish builder images. The same - as configured in kpack. - type: string - type: object - version: 0.3.2 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.3.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.3.3.yml deleted file mode 100644 index ee3b6d1..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.3.3.yml +++ /dev/null @@ -1,34 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.3.3 -spec: - refName: kpack-dependencies.packages.kadras.io - releasedAt: "2023-01-13T19:43:23Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kpack-dependencies@sha256:24a7b479c1b9d84f0e1da9708b85bc7d095997b582c8ad269765c0815a480bc3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - default: "" - description: The OCI registry where to publish builder images. The same - as configured in kpack. - type: string - type: object - version: 0.3.3 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml b/repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml deleted file mode 100644 index d2d01b6..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/0.4.3.yml +++ /dev/null @@ -1,46 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io.0.4.3 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack-dependencies.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kpack-dependencies/releases - releasedAt: "2023-03-19T21:05:21Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kpack-dependencies@sha256:07e61701ab12e33d84658dd531ba0fc27ecd1a948d2d827ac904f0ddaa846cec - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.4.3 diff --git a/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml b/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml deleted file mode 100644 index 0a1b400..0000000 --- a/repo/packages/kpack-dependencies.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,18 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: kpack-dependencies.packages.kadras.io -spec: - categories: - - build - displayName: kpack-dependencies - longDescription: A set of buildpacks, stacks, and builders to use with kpack, a - Kubernetes-native implementation of Cloud Native Buildpacks. It supports multiple - languages and frameworks. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: A set of buildpacks, stacks, and builders to use with kpack. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/kpack-dependencies - for community support. diff --git a/repo/packages/kpack.packages.kadras.io/0.9.1+kadras.1.yml b/repo/packages/kpack.packages.kadras.io/0.9.1+kadras.1.yml deleted file mode 100644 index 7ba3b20..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.9.1+kadras.1.yml +++ /dev/null @@ -1,95 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.9.1+kadras.1 -spec: - capacityRequirementsDescription: Registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/pivotal/kpack/releases - releasedAt: "2023-01-12T23:15:39Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kpack@sha256:18b6ce3b289f61a86bde3e42be9919019483f3dceef08ba43cafc83b9fd15b62 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'CA Certificate to be injected into the kpack controller trust - store for communicating with self signed registries. Note: This will not - be injected into builds, you need to use the cert injection webhook with - the kpack.io/build label value' - type: string - kp_default_repository: - default: "" - description: The default repository to use for builder images and dependencies - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - kp_default_repository_aws_iam_role_arn: - default: "" - description: IAM credentials to access kp_default_repository if the registry - is on AWS - type: string - kp_default_repository_password: - default: "" - description: 'Token to access kp_default_repository. Note: Use contents - of service account key json for GCR' - type: string - kp_default_repository_secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to access - kp_default_repository - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - kp_default_repository - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials to - access kp_default_repository - type: string - type: object - kp_default_repository_username: - default: "" - description: 'Username to access kp_default_repository. Note: Use _json_key - for GCR' - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - type: object - version: 0.9.1+kadras.1 diff --git a/repo/packages/kpack.packages.kadras.io/0.9.1.yml b/repo/packages/kpack.packages.kadras.io/0.9.1.yml deleted file mode 100644 index edb12ea..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.9.1.yml +++ /dev/null @@ -1,95 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.9.1 -spec: - capacityRequirementsDescription: Registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/pivotal/kpack/releases - releasedAt: "2022-12-14T20:14:11Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-kpack@sha256:18b6ce3b289f61a86bde3e42be9919019483f3dceef08ba43cafc83b9fd15b62 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'CA Certificate to be injected into the kpack controller trust - store for communicating with self signed registries. Note: This will not - be injected into builds, you need to use the cert injection webhook with - the kpack.io/build label value' - type: string - kp_default_repository: - default: "" - description: The default repository to use for builder images and dependencies - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - kp_default_repository_aws_iam_role_arn: - default: "" - description: IAM credentials to access kp_default_repository if the registry - is on AWS - type: string - kp_default_repository_password: - default: "" - description: 'Token to access kp_default_repository. Note: Use contents - of service account key json for GCR' - type: string - kp_default_repository_secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to access - kp_default_repository - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - kp_default_repository - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials to - access kp_default_repository - type: string - type: object - kp_default_repository_username: - default: "" - description: 'Username to access kp_default_repository. Note: Use _json_key - for GCR' - type: string - proxy: - additionalProperties: false - description: Configure proxy support - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - type: object - version: 0.9.1 diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.1.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.1.yml deleted file mode 100644 index ca5b7d8..0000000 --- a/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.1.yml +++ /dev/null @@ -1,148 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: metrics-server.packages.kadras.io.0.6.2+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: metrics-server.packages.kadras.io - releaseNotes: https://github.com/kubernetes-sigs/metrics-server/releases - releasedAt: "2023-01-12T23:12:22Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-metrics-server@sha256:57a109b45ad86ffd9f47f3626800fed777f94ba4fbb5eb1ca1a9a4286f66c9ed - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - daemonset: - additionalProperties: false - properties: - updateStrategy: - default: null - description: Update strategy of daemonsets - nullable: true - type: string - type: object - deployment: - additionalProperties: false - properties: - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: null - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - nullable: true - type: integer - maxUnavailable: - default: null - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - nullable: true - type: integer - type: object - updateStrategy: - default: null - description: Update strategy of deployments - nullable: true - type: string - type: object - metricsServer: - additionalProperties: false - properties: - config: - additionalProperties: false - properties: - apiServiceInsecureTLS: - default: true - description: Whether to enable insecure TLS for metrics-server api - service - type: boolean - args: - default: [] - description: Arguments passed into metrics-server container - items: - default: "" - type: string - type: array - probe: - additionalProperties: false - properties: - failureThreshold: - default: 3 - description: Probe failureThreshold of metrics-server deployment - type: integer - periodSeconds: - default: 10 - description: Probe period of metrics-server deployment - type: integer - type: object - securePort: - default: 4443 - description: The HTTPS secure port used by metrics-server - type: integer - tolerations: - default: [] - description: Metrics-server deployment tolerations - nullable: true - updateStrategy: - default: RollingUpdate - description: The update strategy of the metrics-server deployment - type: string - type: object - createNamespace: - default: true - description: Whether to create namespace specified for metrics-server - type: boolean - image: - additionalProperties: false - properties: - name: - default: "" - description: The path of image - type: string - pullPolicy: - default: IfNotPresent - description: The pull policy of image - type: string - repository: - default: "" - description: The repository of metrics-server image - type: string - tag: - default: "" - description: The image tag - type: string - type: object - namespace: - default: null - description: The namespace value used by older templates, will be overwriten - if top level namespace is present, kept for backward compatibility - nullable: true - type: string - type: object - namespace: - default: kube-system - description: The namespace in which metrics-server is deployed - type: string - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - type: object - version: 0.6.2+kadras.1 diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.2.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.2.yml deleted file mode 100644 index 8bb0ace..0000000 --- a/repo/packages/metrics-server.packages.kadras.io/0.6.2.yml +++ /dev/null @@ -1,148 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: metrics-server.packages.kadras.io.0.6.2 -spec: - licenses: - - Apache 2.0 - refName: metrics-server.packages.kadras.io - releaseNotes: https://github.com/kubernetes-sigs/metrics-server/releases - releasedAt: "2022-12-13T22:16:43Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-metrics-server@sha256:57a109b45ad86ffd9f47f3626800fed777f94ba4fbb5eb1ca1a9a4286f66c9ed - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - daemonset: - additionalProperties: false - properties: - updateStrategy: - default: null - description: Update strategy of daemonsets - nullable: true - type: string - type: object - deployment: - additionalProperties: false - properties: - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: null - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - nullable: true - type: integer - maxUnavailable: - default: null - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - nullable: true - type: integer - type: object - updateStrategy: - default: null - description: Update strategy of deployments - nullable: true - type: string - type: object - metricsServer: - additionalProperties: false - properties: - config: - additionalProperties: false - properties: - apiServiceInsecureTLS: - default: true - description: Whether to enable insecure TLS for metrics-server api - service - type: boolean - args: - default: [] - description: Arguments passed into metrics-server container - items: - default: "" - type: string - type: array - probe: - additionalProperties: false - properties: - failureThreshold: - default: 3 - description: Probe failureThreshold of metrics-server deployment - type: integer - periodSeconds: - default: 10 - description: Probe period of metrics-server deployment - type: integer - type: object - securePort: - default: 4443 - description: The HTTPS secure port used by metrics-server - type: integer - tolerations: - default: [] - description: Metrics-server deployment tolerations - nullable: true - updateStrategy: - default: RollingUpdate - description: The update strategy of the metrics-server deployment - type: string - type: object - createNamespace: - default: true - description: Whether to create namespace specified for metrics-server - type: boolean - image: - additionalProperties: false - properties: - name: - default: "" - description: The path of image - type: string - pullPolicy: - default: IfNotPresent - description: The pull policy of image - type: string - repository: - default: "" - description: The repository of metrics-server image - type: string - tag: - default: "" - description: The image tag - type: string - type: object - namespace: - default: null - description: The namespace value used by older templates, will be overwriten - if top level namespace is present, kept for backward compatibility - nullable: true - type: string - type: object - namespace: - default: kube-system - description: The namespace in which metrics-server is deployed - type: string - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - type: object - version: 0.6.2 diff --git a/repo/packages/namespace-setup.packages.kadras.io/0.2.0.yml b/repo/packages/namespace-setup.packages.kadras.io/0.2.0.yml deleted file mode 100644 index 5e7c05c..0000000 --- a/repo/packages/namespace-setup.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,83 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: namespace-setup.packages.kadras.io.0.2.0 -spec: - refName: namespace-setup.packages.kadras.io - releasedAt: "2022-12-24T16:46:28Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/namespace-setup@sha256:78cbf82a77112729790c136804582c06b2445344dec2f70049b4bebf8f138053 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - gitops: - additionalProperties: false - description: Configuration to access the Git repositories used in the GitOps - workflows - properties: - password: - default: "" - description: The password for the Git server used in the GitOps workflows - type: string - server: - default: https://github.com - description: The Git server hosting the Git repositories used in the - GitOps workflows - type: string - username: - default: "" - description: The username for the Git server used in the GitOps workflows - type: string - type: object - namespaces: - default: [] - description: Configuration for developer namespaces - items: - additionalProperties: false - description: Details about the namespace to configure - properties: - exists: - default: false - type: boolean - name: - default: "" - type: string - type: object - type: array - registry: - additionalProperties: false - description: Configuration to access the OCI registry where the Kadras packages - are stored - properties: - password: - default: "" - description: The password for the OCI registry server where the Kadras - packages are stored - type: string - server: - default: "" - description: The OCI registry server where the Kadras packages are stored - type: string - username: - default: "" - description: The username for the OCI registry server where the Kadras - packages are stored - type: string - type: object - type: object - version: 0.2.0 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.13.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.13.0.yml deleted file mode 100644 index 70aa344..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.13.0.yml +++ /dev/null @@ -1,67 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.13.0 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releasedAt: "2022-12-12T22:04:28Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/vmware-tanzu/carvel-secretgen-controller-package-bundle@sha256:e9fc8cf560dde1dd29ee4cb4fc7cc70e81d389ca9c8299e05d75564aff135f1f - template: - - ytt: - paths: - - config/package-bundle/config - - config/release-config.yml - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - create_namespace: - default: true - description: Whether to create namespace specified for secretgen-controller - type: boolean - deployment: - additionalProperties: false - description: Configuration for secretgen-controller deployment - properties: - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: 0 - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - type: integer - maxUnavailable: - default: 1 - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - type: integer - type: object - updateStrategy: - default: "" - description: Update strategy of deployments, empty uses default strategy - type: string - type: object - namespace: - default: secretgen-controller - description: The namespace in which to deploy secretgen-controller - type: string - type: object - version: 0.13.0 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.0.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.0.yml deleted file mode 100644 index 064d1dc..0000000 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,64 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: spring-boot-conventions.packages.kadras.io.0.1.0 -spec: - refName: spring-boot-conventions.packages.kadras.io - releasedAt: "2022-09-30T21:11:16Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-spring-boot-conventions@sha256:9f2a483556d8c9a9d894bbbd13ad2948f5901d32cad87bd7f5a2e456cd391d3c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: spring-boot-conventions - description: The namespace where to install the Spring Boot Conventions - type: string - resources: - additionalProperties: false - description: Resource configuration for the Convention Server - properties: - limits: - additionalProperties: false - description: Resource limits - properties: - cpu: - default: 100m - description: CPU limits - type: string - memory: - default: 256Mi - description: Memory limits - type: string - type: object - requests: - additionalProperties: false - description: Resource requests - properties: - cpu: - default: 100m - description: CPU requests - type: string - memory: - default: 20Mi - description: Memory requests - type: string - type: object - type: object - type: object - version: 0.1.0 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.3.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.3.yml deleted file mode 100644 index 462b6d7..0000000 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/0.1.3.yml +++ /dev/null @@ -1,67 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: spring-boot-conventions.packages.kadras.io.0.1.3 -spec: - licenses: - - Apache 2.0 - refName: spring-boot-conventions.packages.kadras.io - releaseNotes: https://github.com/kadras-io/spring-boot-conventions - releasedAt: "2023-01-12T23:00:24Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:751dd0b3bcc76e2dd3d4b6152b45af790db1959661bf54e1fd36d82d89b0b6be - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: spring-boot-conventions - description: The namespace where to install Spring Boot Conventions - type: string - resources: - additionalProperties: false - description: Resource configuration for the Convention Server - properties: - limits: - additionalProperties: false - description: Resource limits - properties: - cpu: - default: 100m - description: CPU limits - type: string - memory: - default: 256Mi - description: Memory limits - type: string - type: object - requests: - additionalProperties: false - description: Resource requests - properties: - cpu: - default: 100m - description: CPU requests - type: string - memory: - default: 20Mi - description: Memory requests - type: string - type: object - type: object - type: object - version: 0.1.3 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.43.1.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.43.1.yml deleted file mode 100644 index edd668c..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.43.1.yml +++ /dev/null @@ -1,151 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.43.1 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/tektoncd/pipeline/releases - releasedAt: "2023-01-10T18:50:04Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/arktonix/package-for-tekton-pipelines@sha256:ec08f12ee741270f4b0091e4fdfb898789965390a580e6e3bc0340332bc0fcd2 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - defaults: - additionalProperties: false - description: Default configuration stored in the config-defaults ConfigMap. - properties: - affinity_assistant_pod_template: - default: "" - description: Pod template to use for affinity assistant pods. - type: string - cloud_events_sink: - default: "" - description: CloudEvents sink to be used for TaskRun and PipelineRun. - If no sink is specified, no CloudEvent is generated. - type: string - managed_by_label_value: - default: tekton-pipelines - description: Value given to the 'app.kubernetes.io/managed-by' label - applied to all Pods created for TaskRuns. - type: string - max_matrix_combinations_count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - pod_template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - service_account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - task_run_workspace_binding: - default: "" - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - example: 'emptyDir: {}' - type: string - x-example-description: Use emptyDir volume for workspace - timeout_minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the feature-flags ConfigMap. - properties: - await_sidecar_readiness: - default: "true" - description: Setting this flag to 'false' will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - disable_affinity_assistant: - default: "false" - description: Setting this flag to 'true' will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable_creds_init: - default: "false" - description: Setting this flag to 'true' will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable_api_fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable_custom_tasks: - default: "false" - description: Setting this flag to 'true' enables the use of custom tasks - from within pipelines. This is an experimental feature and thus should - still be considered an alpha feature. - type: string - enable_provenance_in_status: - default: "false" - description: Setting this flag to 'true' enables populating the 'provenance' - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable_tekton_oci_bundles: - default: "false" - description: Setting this flag to 'true' enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - require_git_ssh_secret_known_hosts: - default: "false" - description: Setting this flag to 'true' will require that any Git SSH - Secret offered to Tekton must have known_hosts included. - type: string - resource_verification_mode: - default: skip - description: Setting this flag to 'enforce' will enforce verification - of tasks/pipeline. Failing to verify will fail the taskrun/pipelinerun. - 'warn' will only log the err message and 'skip' will skip the whole - verification. - type: string - running_in_environment_with_injected_sidecars: - default: "true" - description: This option should be set to 'false' when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send_cloudevents_for_runs: - default: "false" - description: Setting this flag to 'true' enables CloudEvents for Runs, - as long as a CloudEvents sink is configured in the config-defaults - config map. - type: string - type: object - type: object - version: 0.43.1 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.43.2.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.43.2.yml deleted file mode 100644 index 8f8a59a..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.43.2.yml +++ /dev/null @@ -1,151 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.43.2 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/tektoncd/pipeline/releases - releasedAt: "2023-01-12T22:56:16Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:144b5b28ed46733207b8a1490e3d9e93c14b9ffc93e1cf220135593869d27e76 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - defaults: - additionalProperties: false - description: Default configuration stored in the config-defaults ConfigMap. - properties: - affinity_assistant_pod_template: - default: "" - description: Pod template to use for affinity assistant pods. - type: string - cloud_events_sink: - default: "" - description: CloudEvents sink to be used for TaskRun and PipelineRun. - If no sink is specified, no CloudEvent is generated. - type: string - managed_by_label_value: - default: tekton-pipelines - description: Value given to the 'app.kubernetes.io/managed-by' label - applied to all Pods created for TaskRuns. - type: string - max_matrix_combinations_count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - pod_template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - service_account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - task_run_workspace_binding: - default: "" - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - example: 'emptyDir: {}' - type: string - x-example-description: Use emptyDir volume for workspace - timeout_minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - feature_flags: - additionalProperties: false - description: Feature flags configuration stored in the feature-flags ConfigMap. - properties: - await_sidecar_readiness: - default: "true" - description: Setting this flag to 'false' will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - disable_affinity_assistant: - default: "false" - description: Setting this flag to 'true' will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable_creds_init: - default: "false" - description: Setting this flag to 'true' will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable_api_fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable_custom_tasks: - default: "false" - description: Setting this flag to 'true' enables the use of custom tasks - from within pipelines. This is an experimental feature and thus should - still be considered an alpha feature. - type: string - enable_provenance_in_status: - default: "false" - description: Setting this flag to 'true' enables populating the 'provenance' - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable_tekton_oci_bundles: - default: "false" - description: Setting this flag to 'true' enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - require_git_ssh_secret_known_hosts: - default: "false" - description: Setting this flag to 'true' will require that any Git SSH - Secret offered to Tekton must have known_hosts included. - type: string - resource_verification_mode: - default: skip - description: Setting this flag to 'enforce' will enforce verification - of tasks/pipeline. Failing to verify will fail the taskrun/pipelinerun. - 'warn' will only log the err message and 'skip' will skip the whole - verification. - type: string - running_in_environment_with_injected_sidecars: - default: "true" - description: This option should be set to 'false' when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send_cloudevents_for_runs: - default: "false" - description: Setting this flag to 'true' enables CloudEvents for Runs, - as long as a CloudEvents sink is configured in the config-defaults - config map. - type: string - type: object - type: object - version: 0.43.2 From 5ed3aeecc0a2695cb7326c71ae593049b18846ae Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 21 Mar 2023 00:23:03 +0100 Subject: [PATCH 171/601] Update Buildpacks Catalog metadata and add version 0.5.1 (#148) Co-authored-by: github-actions --- .../0.5.1.yml | 46 +++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.5.1.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.1.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.1.yml new file mode 100644 index 0000000..142f252 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.1.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.5.1 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-03-20T23:20:19Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:4c13e22ca17e61d553f04e049c21800995fd8dabc4a526b4326bd6a09a406ab7 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack-build + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.5.1 From 47dd5ffcceb29e686404f1db823eced131c79382 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 21 Mar 2023 00:29:56 +0100 Subject: [PATCH 172/601] Update Engineering Platform metadata and add version 0.7.1 (#149) Co-authored-by: github-actions --- .../0.7.1.yml | 134 ++++++++++++++++++ 1 file changed, 134 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.7.1.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.7.1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.7.1.yml new file mode 100644 index 0000000..6ad9af7 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.7.1.yml @@ -0,0 +1,134 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.7.1 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-03-20T23:25:56Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:1175759495f0674418102117d92524735bb9b8e9050d21e27605317e6d339aba + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package. + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages. + properties: + excluded: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform. + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + type: object + version: 0.7.1 From 4052edd12462d27e5342b2a85aa088ca34e718dc Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 21 Mar 2023 00:30:35 +0100 Subject: [PATCH 173/601] Prepare release 0.9.1 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 6c1f0ca..bb5ed1c 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.9.0 + VERSION: 0.9.1 jobs: build: From 17150843b065ee34f8d7f3eff513d94b52ab04a6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 25 Mar 2023 09:02:13 +0200 Subject: [PATCH 174/601] Update Tekton Pipelines metadata and add version 0.46.0 (#150) Co-authored-by: github-actions --- .../0.46.0.yml | 522 ++++++++++++++++++ 1 file changed, 522 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.46.0.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0.yml new file mode 100644 index 0000000..885e56e --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0.yml @@ -0,0 +1,522 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.46.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-03-25T06:58:20Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:aed6d2992b4571ff46bbe6225213877e16b9aab608c61b0d5192a2bbaabf5708 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-cloud-events-sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, + and Run lifeycle events. If no sink is specified, no CloudEvent is + generated. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-resolver-type: + default: "" + description: The default resolver type to be used in the cluster. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-leader-election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + custom-task-version: + default: v1beta1 + description: Setting this flag will determine the version for custom + tasks created by PipelineRuns. + type: string + disable-affinity-assistant: + default: "false" + description: Setting this flag to `true` will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: stable + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-provenance-in-status: + default: "false" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiablity: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + require-git-ssh-secret-known-hosts: + default: "false" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + resource-verification-mode: + default: skip + description: Setting this flag to `enforce` will enforce verification + of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. + `warn` will only log the err message and `skip` will skip the whole + verification. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + enable: + default: false + description: Setting this flag to `true` enables the trace exporter. + type: boolean + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + endpoint: + default: "" + description: The endpoint where the distributed tracing backend + accepts OpenTelemetry traces using the Jaeger protocol. + type: string + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.46.0 From 247a2649af8ff5158598ba38b208acfc98e8420c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 26 Mar 2023 15:59:37 +0300 Subject: [PATCH 175/601] Update Buildpacks Catalog metadata and add version 0.6.0 (#151) Co-authored-by: github-actions --- .../0.6.0.yml | 46 +++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.6.0.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.0.yml new file mode 100644 index 0000000..92399c1 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.0.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.6.0 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-03-26T12:56:10Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:c6d703887d9890fc012f2c69d3264c7587e5d035d1a203db457b9090e68431de + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/kpack-build + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.6.0 From f7d3111ce12a811620c933a50cd18a8e20675573 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 26 Mar 2023 22:51:26 +0300 Subject: [PATCH 176/601] Update Tekton Catalog metadata and add version 0.1.0 (#152) Co-authored-by: github-actions --- .../0.1.0.yml | 36 +++++++++++++++++++ .../metadata.yml | 17 +++++++++ 2 files changed, 53 insertions(+) create mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/tekton-catalog.packages.kadras.io/metadata.yml diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.1.0.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..e7146d0 --- /dev/null +++ b/repo/packages/tekton-catalog.packages.kadras.io/0.1.0.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-catalog.packages.kadras.io.0.1.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/tekton-catalog/releases + releasedAt: "2023-03-26T19:47:08Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/tekton-catalog@sha256:9a5c9eb1a47f517ef49cb755fa490ac7ffabf295a640da3dc9a220f7dbb5ece9 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: tekton-catalog + description: The namespace where to deploy the Tekton Catalog. + type: string + type: object + version: 0.1.0 diff --git a/repo/packages/tekton-catalog.packages.kadras.io/metadata.yml b/repo/packages/tekton-catalog.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..ce1b575 --- /dev/null +++ b/repo/packages/tekton-catalog.packages.kadras.io/metadata.yml @@ -0,0 +1,17 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: tekton-catalog.packages.kadras.io +spec: + categories: + - build + displayName: tekton-catalog + longDescription: A set of Tekton pipelines and tasks used by the Kadras platform + to support testing, scanning, delivering and deploying applications. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: A set of Tekton pipelines and tasks to use with the Kadras platform. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/tekton-catalog + for community support. From 01f2641c0151e6423a024029d4ea3adc728e4089 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 26 Mar 2023 23:18:08 +0300 Subject: [PATCH 177/601] Update Cartographer Blueprints metadata and add version 0.5.0 (#153) Co-authored-by: github-actions --- .../0.5.0.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.5.0.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.0.yml new file mode 100644 index 0000000..952942a --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.0.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.5.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-03-26T20:14:47Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:ca24f226558ced8a8dcac1335a80d70465fda9e3a0936103098a8349825bb83d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being created + in the cluster. + items: + default: "" + type: string + type: array + tekton_catalog_namespace: + default: tekton-catalog + description: The namespace where the Tekton Catalog package has been installed. + type: string + type: object + version: 0.5.0 From e7fb37aea7bc3c9a09c9e7535f962543864eb6b1 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 26 Mar 2023 23:39:05 +0300 Subject: [PATCH 178/601] Update Cartographer Supply Chains metadata and add version 0.5.0 (#154) Co-authored-by: github-actions --- .../0.5.0.yml | 145 ++++++++++++++++++ 1 file changed, 145 insertions(+) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.0.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.0.yml new file mode 100644 index 0000000..c46ef97 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.0.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.5.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-03-26T20:33:06Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:663b5df2072380302e01c6b6b00fa975001a0d7db340782d189d2b08f3cdb96c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + git_access_secret: + default: git-secret + description: The Secret containing authentication credentials for the Git + repository. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chain. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data for the OCI Registry where + the supply chain will publish and consume OCI images. + type: string + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + service_account: + default: default + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' + type: string + type: object + version: 0.5.0 From c665dd9c0ae97bddf7f7b640ae23223666ddbe9a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 26 Mar 2023 23:55:24 +0300 Subject: [PATCH 179/601] Update Tekton Pipelines metadata and add version 0.46.0+kadras.1 (#155) Co-authored-by: github-actions --- .../0.46.0+kadras.1.yml | 522 ++++++++++++++++++ 1 file changed, 522 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.1.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.1.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.1.yml new file mode 100644 index 0000000..a4eb4cc --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.1.yml @@ -0,0 +1,522 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.46.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-03-26T20:51:17Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:61345735ba6f6a25f39395e8c1b1a7890a16123b448076b0d95a02eccccc0804 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-cloud-events-sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, + and Run lifeycle events. If no sink is specified, no CloudEvent is + generated. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-resolver-type: + default: "" + description: The default resolver type to be used in the cluster. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-leader-election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + custom-task-version: + default: v1beta1 + description: Setting this flag will determine the version for custom + tasks created by PipelineRuns. + type: string + disable-affinity-assistant: + default: "false" + description: Setting this flag to `true` will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: beta + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-provenance-in-status: + default: "false" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiablity: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + require-git-ssh-secret-known-hosts: + default: "false" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + resource-verification-mode: + default: skip + description: Setting this flag to `enforce` will enforce verification + of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. + `warn` will only log the err message and `skip` will skip the whole + verification. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + enable: + default: false + description: Setting this flag to `true` enables the trace exporter. + type: boolean + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + endpoint: + default: "" + description: The endpoint where the distributed tracing backend + accepts OpenTelemetry traces using the Jaeger protocol. + type: string + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.46.0+kadras.1 From 85606ba3805777014a5718bab2306700baf9ab82 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 27 Mar 2023 00:00:41 +0300 Subject: [PATCH 180/601] Update Engineering Platform metadata and add version 0.8.0 (#156) Co-authored-by: github-actions --- .../0.8.0.yml | 138 ++++++++++++++++++ 1 file changed, 138 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.8.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.8.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.8.0.yml new file mode 100644 index 0000000..d5f9b94 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.8.0.yml @@ -0,0 +1,138 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.8.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-03-26T20:58:04Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:393d106f45250c145de181d0c4a7985efd7a8fed5593904d011866021f77c3a2 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + namespace_setup: + default: {} + description: Configuration for the Namespace Setup package. + nullable: true + packages: + additionalProperties: false + description: Configuration for the platform packages. + properties: + excluded: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + namespace: + default: "" + description: The namespace where to install the platform. + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + type: object + version: 0.8.0 From ac6e9f6ec298ff1e4efca964cdd16ed37e3eb826 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 26 Mar 2023 23:01:27 +0200 Subject: [PATCH 181/601] Update docs --- .github/workflows/release.yml | 2 +- README.md | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index bb5ed1c..53d95b2 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.9.1 + VERSION: 0.10.0 jobs: build: diff --git a/README.md b/README.md index 5b97d75..d8dec9d 100644 --- a/README.md +++ b/README.md @@ -30,6 +30,7 @@ This repository contains the following Carvel packages. | [namespace-setup](https://github.com/kadras-io/namespace-setup) | Sets up up namespaces with the necessary RBAC and Secrets to work with the Kadras platform. | | [secretgen-controller](https://github.com/carvel-dev/secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. Maintained by [Carvel](https://github.com/carvel-dev). | | [spring-boot-conventions](https://github.com/kadras-io/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | +| [tekton-catalog](https://github.com/kadras-io/package-for-tekton-catalog) | A set of Tekton pipelines and tasks used by the Kadras platform to support testing, scanning, delivering and deploying applications. | | [tekton-pipelines](https://github.com/kadras-io/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | ## 🚀  Getting Started From 32da7f274f8c9f989cad0ab0fb3d67a880a1ebfc Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 1 Apr 2023 18:39:44 +0300 Subject: [PATCH 182/601] Update Cartographer Blueprints metadata and add version 0.5.1 (#157) Co-authored-by: github-actions --- .../0.5.1.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.5.1.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.1.yml new file mode 100644 index 0000000..4cd3f2c --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.1.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.5.1 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-04-01T15:36:14Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:c9d33e5018c6b5c1a3c60a5416404cb0e5c307bcfda43028505722c4a1eaf669 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being created + in the cluster. + items: + default: "" + type: string + type: array + tekton_catalog_namespace: + default: tekton-catalog + description: The namespace where the Tekton Catalog package has been installed. + type: string + type: object + version: 0.5.1 From 0b4fa2d312c1d281f593bc1ebc0e1b6bed7becd4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 8 Apr 2023 22:01:37 +0200 Subject: [PATCH 183/601] Update Buildpacks Catalog metadata and add version 0.6.1 (#158) Co-authored-by: github-actions --- .../0.6.1.yml | 46 +++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.6.1.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.1.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.1.yml new file mode 100644 index 0000000..240328b --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.1.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.6.1 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-04-08T19:58:27Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:a608743dbc9d63f7f4f27fb4654fdc0da4bb1770af0c7893541e890b5f8425c4 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.6.1 From fd868fe1ea9a1b52decfffc9704ba4b430cbace0 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 8 Apr 2023 22:44:52 +0200 Subject: [PATCH 184/601] Update Tekton Pipelines metadata and add version 0.46.0+kadras.2 (#159) Co-authored-by: github-actions --- .../0.46.0+kadras.2.yml | 522 ++++++++++++++++++ 1 file changed, 522 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.2.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.2.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.2.yml new file mode 100644 index 0000000..ef32c5e --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.2.yml @@ -0,0 +1,522 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.46.0+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-04-08T20:38:25Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:40d5ab0f7cf0a5ebd4eaf59e733bc8c02e7ec53ab16efbf6b2604827d856fed0 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-cloud-events-sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, + and Run lifeycle events. If no sink is specified, no CloudEvent is + generated. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-resolver-type: + default: "" + description: The default resolver type to be used in the cluster. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-leader-election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + custom-task-version: + default: v1beta1 + description: Setting this flag will determine the version for custom + tasks created by PipelineRuns. + type: string + disable-affinity-assistant: + default: "false" + description: Setting this flag to `true` will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: beta + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-provenance-in-status: + default: "false" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiablity: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + require-git-ssh-secret-known-hosts: + default: "true" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + resource-verification-mode: + default: skip + description: Setting this flag to `enforce` will enforce verification + of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. + `warn` will only log the err message and `skip` will skip the whole + verification. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + enable: + default: false + description: Setting this flag to `true` enables the trace exporter. + type: boolean + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + endpoint: + default: "" + description: The endpoint where the distributed tracing backend + accepts OpenTelemetry traces using the Jaeger protocol. + type: string + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.46.0+kadras.2 From 39dd164cdb934bd767e2ff20b1b94cf8f309f2b6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 8 Apr 2023 23:26:18 +0200 Subject: [PATCH 185/601] Update Tekton Catalog metadata and add version 0.1.1 (#160) Co-authored-by: github-actions --- .../0.1.1.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.1.1.yml diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.1.1.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.1.1.yml new file mode 100644 index 0000000..b2c2896 --- /dev/null +++ b/repo/packages/tekton-catalog.packages.kadras.io/0.1.1.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-catalog.packages.kadras.io.0.1.1 +spec: + licenses: + - Apache 2.0 + refName: tekton-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/tekton-catalog/releases + releasedAt: "2023-04-08T21:09:48Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/tekton-catalog@sha256:59e6c0acd0c9dc040013494f23dac0f5d038f7b4cab9d531c5d33465e7bb5eb1 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: tekton-catalog + description: The namespace where to deploy the Tekton Catalog. + type: string + type: object + version: 0.1.1 From 160621f3125d50c5bc8674d4c25036872ae29785 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 08:57:50 +0200 Subject: [PATCH 186/601] Update Kpack metadata and add version 0.10.1+kadras.1 (#161) Co-authored-by: github-actions --- .../0.10.1+kadras.1.yml | 155 ++++++++++++++++++ 1 file changed, 155 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.10.1+kadras.1.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.10.1+kadras.1.yml b/repo/packages/kpack.packages.kadras.io/0.10.1+kadras.1.yml new file mode 100644 index 0000000..5797421 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.10.1+kadras.1.yml @@ -0,0 +1,155 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.10.1+kadras.1 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2023-04-09T06:54:49Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:bc2c853b0bbf87d6787f1a989559af1e6b1e144b3619effac1bd729e4ff16e77 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + create_export: + default: false + description: Whether to create a SecretExport resource to export + the Secret from the source namespace to the kpack namespace. Not + needed when installing kpack as part of the Kadras Enginnering + Platform. + type: boolean + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + type: object + version: 0.10.1+kadras.1 From 24f51acd2b95ca92b70d0afb196f50e52ec782f2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 10:47:10 +0200 Subject: [PATCH 187/601] Update Cartographer Delivery metadata and add version 0.4.1 (#162) Co-authored-by: github-actions --- .../0.4.1.yml | 43 +++++++++++++++++++ 1 file changed, 43 insertions(+) create mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.4.1.yml diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.4.1.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.4.1.yml new file mode 100644 index 0000000..c54b6b9 --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/0.4.1.yml @@ -0,0 +1,43 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io.0.4.1 +spec: + refName: cartographer-delivery.packages.kadras.io + releasedAt: "2023-04-09T08:44:54Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-delivery@sha256:620a2bddd30c11982c0332cef5bef554a26b8c086ce5daf3ced4a793b9eb1c7e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + delivery_chain: + default: basic + description: 'The type of delivery chain to use when deploying workloads. + Options: `basic`.' + type: string + git_access_secret: + default: supply-chain-git-credentials + description: The Secret containing authentication credentials for the Git + repository. + type: string + service_account: + default: default + description: The default `ServiceAccount` used by the delivery chain. + type: string + type: object + version: 0.4.1 From c9713f876041c544250e2cd5fe561bc6e692e2b1 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 10:47:35 +0200 Subject: [PATCH 188/601] Update Cartographer Supply Chains metadata and add version 0.5.1 (#163) Co-authored-by: github-actions --- .../0.5.1.yml | 140 ++++++++++++++++++ 1 file changed, 140 insertions(+) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.1.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.1.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.1.yml new file mode 100644 index 0000000..b8252db --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.1.yml @@ -0,0 +1,140 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.5.1 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-04-09T08:45:24Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:650e1c107d57454e18c4e6e8ba9247747db4cb22a9c2718c99d2b0465bae400c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + git_access_secret: + default: supply-chain-git-credentials + description: The Secret containing authentication credentials for the Git + repository. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chain. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + service_account: + default: default + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' + type: string + type: object + version: 0.5.1 From 560be9f534b6080dd7616bc25c1cbd2b18a27893 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 11:17:02 +0200 Subject: [PATCH 189/601] Update Contour metadata and add version 1.24.3 (#164) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.24.3.yml | 222 ++++++++++++++++++ 1 file changed, 222 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.24.3.yml diff --git a/repo/packages/contour.packages.kadras.io/1.24.3.yml b/repo/packages/contour.packages.kadras.io/1.24.3.yml new file mode 100644 index 0000000..807f2fe --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.24.3.yml @@ -0,0 +1,222 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.24.3 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-04-09T09:14:36Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:8ad525ebd8fe06e636056b13f386d96fe61e484a5acad42a93f0a44f71d85e5f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If `infrastructureProvider` + is not `aws`, these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: null + description: The external traffic policy for the Envoy service. + If type is `ClusterIP`, this field is ignored. Otherwise, it defaults + to `Cluster` for vsphere and `Local` for others. + nullable: true + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, it will default to `NodePort` for local and + vsphere and `LoadBalancer` for others. + nullable: true + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: false + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructureProvider: + default: null + description: The underlying infrastructure provider. Options are `aws`, + `azure`, `local` and `vsphere`. This field is not required, but it enables + better validation and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.24.3 From 6f4e8db60bdbb9ce8573fc24e6550602a02eef5c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 12:35:11 +0200 Subject: [PATCH 190/601] Update FluxCD Source Controller metadata and add version 0.36.1 (#165) Co-authored-by: github-actions --- .../0.36.1.yml | 77 +++++++++++++++++++ 1 file changed, 77 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.1.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.1.yml new file mode 100644 index 0000000..37828c7 --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.1.yml @@ -0,0 +1,77 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.0.36.1 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases + releasedAt: "2023-04-09T09:25:44Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:40627427c34909205b7dc99008f44db39e180c95cb26776348df67677cb98355 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: source-system + description: The namespace where to install FluxCD Source Controller. + type: string + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 1000m + description: CPU limits configuration for the `source-controller` + Deployment. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the `source-controller` + Deployment. + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the `source-controller` Service. + type: integer + type: object + version: 0.36.1 From eed120d8200071308ea4116c86f5d3c4023f9c52 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 12:42:19 +0200 Subject: [PATCH 191/601] Update Cert Manager metadata and add version 1.11.1 (#166) Co-authored-by: github-actions --- .../1.11.1.yml | 119 ++++++++++++++++++ 1 file changed, 119 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.1.yml new file mode 100644 index 0000000..9750003 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.11.1.yml @@ -0,0 +1,119 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.11.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-04-09T10:36:26Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:102f4dcf95c4f514160ccee432785bd4e1d30ca9747414bca95adedfb70821ef + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy URL. + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL. + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.11.1 From e5d02a5ff96d33131c52f2ea8746f8bbaa95a611 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 16:44:16 +0200 Subject: [PATCH 192/601] Update Knative Serving metadata and add version 1.9.3 (#167) Co-authored-by: github-actions --- .../1.9.3.yml | 235 ++++++++++++++++++ 1 file changed, 235 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.3.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.3.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.3.yml new file mode 100644 index 0000000..f278aa0 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.9.3.yml @@ -0,0 +1,235 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.9.3 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-04-09T14:40:05Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:a80927dec3e328e9116bda6239a2256466aad9a05e91a34418ef571dfeaa2c61 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + domain: + additionalProperties: false + description: Domain configuration stored in the `config-domain` ConfigMap. + properties: + name: + default: "" + description: Domain name for Knative Services. It must be a valid + DNS name. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Enabled + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + tls: + additionalProperties: false + description: Settings for TLS certificates. + properties: + certmanager: + additionalProperties: false + description: Cert Manager configuration stored in the `config-certmanager` + ConfigMap. + properties: + clusterissuer: + default: "" + description: A reference to the ClusterIssuer to use if you want + to enable autoTLS. + type: string + type: object + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.9.3 From f27b3ce25922d821742fa5401c661cfa100950ad Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 16:59:17 +0200 Subject: [PATCH 193/601] Update Metrics Server metadata and add version 0.6.3 (#168) Co-authored-by: github-actions --- .../0.6.3.yml | 148 ++++++++++++++++++ 1 file changed, 148 insertions(+) create mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.3.yml diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.3.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.3.yml new file mode 100644 index 0000000..1afedf9 --- /dev/null +++ b/repo/packages/metrics-server.packages.kadras.io/0.6.3.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: metrics-server.packages.kadras.io.0.6.3 +spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases + releasedAt: "2023-04-09T14:51:57Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-metrics-server@sha256:d0079992047bd7998a0f228fc45ae1389ad88d5098db737a90ea7091d676a44d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + daemonset: + additionalProperties: false + properties: + updateStrategy: + default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + nullable: true + type: integer + maxUnavailable: + default: null + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object + updateStrategy: + default: null + description: Update strategy of deployments + nullable: true + type: string + type: object + metricsServer: + additionalProperties: false + properties: + config: + additionalProperties: false + properties: + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean + args: + default: [] + description: Arguments passed into metrics-server container + items: + default: "" + type: string + type: array + probe: + additionalProperties: false + properties: + failureThreshold: + default: 3 + description: Probe failureThreshold of metrics-server deployment + type: integer + periodSeconds: + default: 10 + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer + tolerations: + default: [] + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string + type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: + additionalProperties: false + properties: + name: + default: "" + description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: + default: "" + description: The repository of metrics-server image + type: string + tag: + default: "" + description: The image tag + type: string + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object + version: 0.6.3 From 4ec684f3263e7c8811a8e84f3766521226a976d6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 18:13:34 +0200 Subject: [PATCH 194/601] Update Spring Boot Conventions metadata and add version 0.2.1 (#169) Co-authored-by: github-actions --- .../0.2.1.yml | 67 +++++++++++++++++++ 1 file changed, 67 insertions(+) create mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.2.1.yml diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.1.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.1.yml new file mode 100644 index 0000000..a2c8c12 --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.1.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io.0.2.1 +spec: + licenses: + - Apache 2.0 + refName: spring-boot-conventions.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases + releasedAt: "2023-04-09T16:10:20Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:94529a2e9bbb279259922a3c7dbdcff67a8442fbfef71e59d5c86f7938e614f5 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: spring-boot-conventions + description: The namespace where to install Spring Boot Conventions + type: string + resources: + additionalProperties: false + description: Resource configuration for the Convention Server + properties: + limits: + additionalProperties: false + description: Resource limits + properties: + cpu: + default: 100m + description: CPU limits + type: string + memory: + default: 256Mi + description: Memory limits + type: string + type: object + requests: + additionalProperties: false + description: Resource requests + properties: + cpu: + default: 100m + description: CPU requests + type: string + memory: + default: 20Mi + description: Memory requests + type: string + type: object + type: object + type: object + version: 0.2.1 From 15d84e2df564f2e2beaea4815c2245474887f4b2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 18:22:14 +0200 Subject: [PATCH 195/601] Add Cartographer 0.7.1+tap.1 and update metadata (#170) --- .github/workflows/release.yml | 2 +- README.md | 4 +- docs/verify-release.md | 37 +++++ .../0.7.1+tap.1.yml | 146 ++++++++++++++++++ .../metadata.yml | 2 +- 5 files changed, 187 insertions(+), 4 deletions(-) create mode 100644 docs/verify-release.md create mode 100644 repo/packages/cartographer.packages.kadras.io/0.7.1+tap.1.yml diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 53d95b2..7c43ebe 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.10.0 + VERSION: 0.11.0-RC1 jobs: build: diff --git a/README.md b/README.md index d8dec9d..fb3cc88 100644 --- a/README.md +++ b/README.md @@ -27,11 +27,11 @@ This repository contains the following Carvel packages. | [knative-serving](https://github.com/kadras-io/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | | [kpack](https://github.com/kadras-io/package-for-kpack) | A Kubernetes-native implementation of Cloud Native Buildpacks to build source code into OCI images from within your cluster. | | [metrics-server](https://github.com/kadras-io/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | -| [namespace-setup](https://github.com/kadras-io/namespace-setup) | Sets up up namespaces with the necessary RBAC and Secrets to work with the Kadras platform. | | [secretgen-controller](https://github.com/carvel-dev/secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. Maintained by [Carvel](https://github.com/carvel-dev). | | [spring-boot-conventions](https://github.com/kadras-io/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | -| [tekton-catalog](https://github.com/kadras-io/package-for-tekton-catalog) | A set of Tekton pipelines and tasks used by the Kadras platform to support testing, scanning, delivering and deploying applications. | +| [tekton-catalog](https://github.com/kadras-io/tekton-catalog) | A set of Tekton pipelines and tasks used by the Kadras platform to support testing, scanning, delivering and deploying applications. | | [tekton-pipelines](https://github.com/kadras-io/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | +| [workspace-provisioner](https://github.com/kadras-io/workspace-provisioner) | Provisions and configures workspaces (namespaces or virtual clusters) to work with the Kadras Engineering Platform. | ## 🚀  Getting Started diff --git a/docs/verify-release.md b/docs/verify-release.md new file mode 100644 index 0000000..3e6875c --- /dev/null +++ b/docs/verify-release.md @@ -0,0 +1,37 @@ +# Verifying the Package Repository Release + +This package repository is published as an OCI artifact, signed with Sigstore [Cosign](https://docs.sigstore.dev/cosign/overview), and associated with a [SLSA Provenance](https://slsa.dev/provenance) attestation. + +Using `cosign`, you can display the supply chain security related artifacts for the `ghcr.io/kadras-io/kadras-packages` images. Use the specific digest you'd like to verify. + +```shell +cosign tree ghcr.io/kadras-io/kadras-packages +``` + +The result: + +```shell +📦 Supply Chain Security Related artifacts for an image: ghcr.io/kadras-io/kadras-packages +└── 💾 Attestations for an image tag: ghcr.io/kadras-io/kadras-packages:sha256-046c6f16def6fa8ea562c84169725a4a7ef8c16dd7180137dc729f555af4a151.att + └── 🍒 sha256:23f10f5d24941657ddaa5ff25117373a243abbeb51f2f81065e562e3b292ee2d +└── 🔐 Signatures for an image tag: ghcr.io/kadras-io/kadras-packages:sha256-046c6f16def6fa8ea562c84169725a4a7ef8c16dd7180137dc729f555af4a151.sig + └── 🍒 sha256:2e765ddc539ac475fa5275d0709e62699ebc2b47d054be5d5eb05b3d958310e6 +``` + +You can verify the signature and its claims: + +```shell +cosign verify \ + --certificate-identity-regexp https://github.com/kadras-io \ + --certificate-oidc-issuer https://token.actions.githubusercontent.com \ + ghcr.io/kadras-io/kadras-packages | jq +``` + +You can also verify the SLSA Provenance attestation associated with the image. + +```shell +cosign verify-attestation --type slsaprovenance \ + --certificate-identity-regexp https://github.com/slsa-framework \ + --certificate-oidc-issuer https://token.actions.githubusercontent.com \ + ghcr.io/kadras-io/kadras-packages | jq .payload -r | base64 --decode | jq +``` diff --git a/repo/packages/cartographer.packages.kadras.io/0.7.1+tap.1.yml b/repo/packages/cartographer.packages.kadras.io/0.7.1+tap.1.yml new file mode 100644 index 0000000..a45ca96 --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.7.1+tap.1.yml @@ -0,0 +1,146 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + name: cartographer.packages.kadras.io.0.7.1+tap.1 +spec: + refName: cartographer.packages.kadras.io + version: 0.7.1+tap.1 + releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.7.1+tap.1 + releasedAt: "2023-03-22T16:00:22Z" + valuesSchema: + openAPIv3: + title: cartographer.packages.kadras.io.0.7.1+tap.1 values schema + properties: + ca_cert_data: + type: string + description: 'Optional: PEM Encoded certificate data for image registries with private CA.' + default: "" + excluded_components: + type: array + items: + type: string + default: [] + description: 'Optional: List of components to exclude from installation (e.g. [conventions])' + aws_iam_role_arn: + type: string + description: 'Optional: Arn role that has access to pull images from ECR container registry' + default: "" + cartographer: + type: object + properties: + concurrency: + type: object + properties: + max_workloads: + type: integer + description: 'Optional: maximum number of Workloads to process concurrently.' + default: 2 + max_deliveries: + type: integer + description: 'Optional: maximum number of Deliverables to process concurrently.' + default: 2 + max_runnables: + type: integer + description: 'Optional: maximum number of Runnables to process concurrently.' + default: 2 + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + conventions: + type: object + properties: + resources: + type: object + properties: + limits: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of cpu resources to allow the controller to use' + default: 1000m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: maximum amount of memory to allow the controller to use' + default: 128Mi + requests: + type: object + properties: + cpu: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of cpu to reserve' + default: 250m + memory: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + description: 'Optional: minimum amount of memory to reserve' + default: 128Mi + template: + spec: + fetch: + - imgpkgBundle: + image: index.docker.io/projectcartographer/package-for-cartographer@sha256:155c08105fccb02f0300d948197f1a77a7a476e5825a3f31daa142b81dfd5ab4 + template: + - ytt: + ignoreUnknownComments: true + paths: + - config + - kbld: + paths: + - .imgpkg/images.yml + - '-' + deploy: + - kapp: {} diff --git a/repo/packages/cartographer.packages.kadras.io/metadata.yml b/repo/packages/cartographer.packages.kadras.io/metadata.yml index 262a7be..cabdc7e 100644 --- a/repo/packages/cartographer.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer.packages.kadras.io/metadata.yml @@ -7,7 +7,7 @@ metadata: spec: displayName: Cartographer providerName: VMware - shortDescription: Kubernetes native Supply Chain Choreographer. + shortDescription: Kubernetes Native Supply Chain Choreographer. supportDescription: https://github.com/vmware-tanzu/cartographer longDescription: |- Cartographer is a Kubernetes native Choreographer. It allows users to From c78d6792dcab5680608ce6bd4a586ef0a8dd2013 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 22:24:35 +0200 Subject: [PATCH 196/601] Update Contour metadata and add version 1.24.3+kadras.1 (#172) Co-authored-by: github-actions --- .../1.24.3+kadras.1.yml | 222 ++++++++++++++++++ 1 file changed, 222 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.24.3+kadras.1.yml diff --git a/repo/packages/contour.packages.kadras.io/1.24.3+kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.24.3+kadras.1.yml new file mode 100644 index 0000000..02c6032 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.24.3+kadras.1.yml @@ -0,0 +1,222 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.24.3+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-04-09T20:21:58Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:0c532f64333cc088407fda1fc1a685949d1caf1b48a61ba7445f4c13a34b854f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: true + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If `infrastructureProvider` + is not `aws`, these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: null + description: The external traffic policy for the Envoy service. + If type is `ClusterIP`, this field is ignored. Otherwise, it defaults + to `Cluster` for vsphere and `Local` for others. + nullable: true + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, it will default to `NodePort` for local and + vsphere and `LoadBalancer` for others. + nullable: true + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: false + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructureProvider: + default: null + description: The underlying infrastructure provider. Options are `aws`, + `azure`, `local` and `vsphere`. This field is not required, but it enables + better validation and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.24.3+kadras.1 From 116b7a90bd462436fe060c8c97167fc3897c2c04 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 22:50:24 +0200 Subject: [PATCH 197/601] Update Workspace Provisioner metadata and add version 0.1.1 (#173) Co-authored-by: github-actions --- .../0.1.1.yml | 123 ++++++++++++++++++ .../metadata.yml | 17 +++ 2 files changed, 140 insertions(+) create mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/0.1.1.yml create mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/metadata.yml diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/0.1.1.yml b/repo/packages/workspace-provisioner.packages.kadras.io/0.1.1.yml new file mode 100644 index 0000000..e361667 --- /dev/null +++ b/repo/packages/workspace-provisioner.packages.kadras.io/0.1.1.yml @@ -0,0 +1,123 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: workspace-provisioner.packages.kadras.io.0.1.1 +spec: + licenses: + - Apache 2.0 + refName: workspace-provisioner.packages.kadras.io + releaseNotes: https://github.com/kadras-io/workspace-provisioner/releases + releasedAt: "2023-04-09T20:47:52Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/workspace-provisioner@sha256:1c6d72d155a3378c4c46aeee795c1bedeafe198b0e2ccbb78e9e3203ef4292c5 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Cosign key + pair. + type: string + type: object + type: object + git: + additionalProperties: false + description: Configuration to access the Git repositories used in the GitOps + workflows. + properties: + credentials: + additionalProperties: false + description: Configuration for Git credentials. + properties: + password: + default: "" + description: The password to access the Git repositories. + type: string + username: + default: "" + description: The username to access the Git repositories. + type: string + type: object + secret: + additionalProperties: false + description: Configuration for the Secret holding the Git credentials. + properties: + name: + default: supply-chain-git-credentials + description: The name of the Secret holding the Git credentials. + type: string + type: object + server: + default: https://github.com + description: The Git server hosting the Git repositories used in the + GitOps workflows. + type: string + type: object + namespaces: + default: [] + description: Configuration for the namespaces the platform will provision + and manage. + items: + additionalProperties: false + description: Details about the namespace to configure. + properties: + name: + default: "" + type: string + type: object + type: array + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the workspace will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the OCI registry. + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + the OCI registry. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + type: object + service_account: + default: default + description: The `ServiceAccount` to be configured with credentials and + roles in each workspace. + type: string + type: object + version: 0.1.1 diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/metadata.yml b/repo/packages/workspace-provisioner.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..91aeb81 --- /dev/null +++ b/repo/packages/workspace-provisioner.packages.kadras.io/metadata.yml @@ -0,0 +1,17 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: workspace-provisioner.packages.kadras.io +spec: + categories: + - environment provisioning + displayName: workspace-provisioner + longDescription: Provisions and configures workspaces for the platform users, such + as application developers. A workspace can be a namespace or a virtual cluster. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: Provisions and configures workspaces for the platform users. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/workspace-provisioner + for community support. From 83318411d2eeb6d29858dc9707007ed759a3cfb5 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 22:52:52 +0200 Subject: [PATCH 198/601] Update Knative Serving metadata and add version 1.9.3+kadras.1 (#174) Co-authored-by: github-actions --- .../1.9.3+kadras.1.yml | 230 ++++++++++++++++++ 1 file changed, 230 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.1.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.1.yml new file mode 100644 index 0000000..c0e2abc --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.1.yml @@ -0,0 +1,230 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.9.3+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-04-09T20:50:31Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:1a2c2097864d408b01587e03255d0276245a19f56c96766264e0a598ea48e322 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Enabled + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + tls: + additionalProperties: false + description: Settings for TLS certificates. + properties: + certmanager: + additionalProperties: false + description: Cert Manager configuration stored in the `config-certmanager` + ConfigMap. + properties: + clusterissuer: + default: "" + description: A reference to the ClusterIssuer to use if you want + to enable autoTLS. + type: string + type: object + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.9.3+kadras.1 From d063814eeabf901cf2f8db80d3019f08d9d894ab Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Apr 2023 22:53:44 +0200 Subject: [PATCH 199/601] Prepare release 0.11.0-RC2 --- .github/workflows/release.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 7c43ebe..334cde3 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.11.0-RC1 + VERSION: 0.11.0-RC2 jobs: build: @@ -19,7 +19,7 @@ jobs: image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code - uses: actions/checkout@v3.3.0 + uses: actions/checkout@v3.5.0 - name: Set up Carvel uses: carvel-dev/setup-action@v1.3.0 @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.0.1 + uses: sigstore/cosign-installer@v3.0.2 - name: Log into container registry uses: redhat-actions/podman-login@v1.6 From e00cb6b557de6a78278edc4193f6a965239fe260 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 10 Apr 2023 17:20:41 +0200 Subject: [PATCH 200/601] Update Contour metadata and add version 1.24.3+kadras.2 (#175) Co-authored-by: github-actions --- .../1.24.3+kadras.2.yml | 222 ++++++++++++++++++ 1 file changed, 222 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.24.3+kadras.2.yml diff --git a/repo/packages/contour.packages.kadras.io/1.24.3+kadras.2.yml b/repo/packages/contour.packages.kadras.io/1.24.3+kadras.2.yml new file mode 100644 index 0000000..df5b1be --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.24.3+kadras.2.yml @@ -0,0 +1,222 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.24.3+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-04-10T15:17:02Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:8ad525ebd8fe06e636056b13f386d96fe61e484a5acad42a93f0a44f71d85e5f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If `infrastructureProvider` + is not `aws`, these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: null + description: The external traffic policy for the Envoy service. + If type is `ClusterIP`, this field is ignored. Otherwise, it defaults + to `Cluster` for vsphere and `Local` for others. + nullable: true + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, then load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: null + description: The type of Kubernetes service to provision for Envoy. + If not specified, it will default to `NodePort` for local and + vsphere and `LoadBalancer` for others. + nullable: true + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: false + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructureProvider: + default: null + description: The underlying infrastructure provider. Options are `aws`, + `azure`, `local` and `vsphere`. This field is not required, but it enables + better validation and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.24.3+kadras.2 From a71dc76f683cb4bed772ca50a41d22fa6a53fdfd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 10 Apr 2023 17:37:53 +0200 Subject: [PATCH 201/601] Update Knative Serving metadata and add version 1.9.3+kadras.2 (#176) Co-authored-by: github-actions --- .../1.9.3+kadras.2.yml | 221 ++++++++++++++++++ 1 file changed, 221 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.2.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.2.yml new file mode 100644 index 0000000..8f9b331 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.2.yml @@ -0,0 +1,221 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.9.3+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-04-10T15:34:58Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:744ed4a68edd201d0a138a561fb396655e808bca5ae88d4ec49d6e28418e2c42 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.9.3+kadras.2 From e06f419bcb47979fed2554c7a32123c8562c6cf9 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 10 Apr 2023 18:52:33 +0200 Subject: [PATCH 202/601] Update Cert Manager metadata and add version 1.11.1+kadras.1 (#178) Co-authored-by: github-actions --- .../1.11.1+kadras.1.yml | 119 ++++++++++++++++++ 1 file changed, 119 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.1+kadras.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.1+kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.1+kadras.1.yml new file mode 100644 index 0000000..9885756 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.11.1+kadras.1.yml @@ -0,0 +1,119 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.11.1+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-04-10T16:43:35Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:5eb109783bf54f76e09621437a9bacfe6bd38348ee459883173c89a5e7fcc4fc + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy Cert Manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy URL. + type: string + https_proxy: + default: "" + description: The HTTPS proxy URL. + type: string + no_proxy: + default: "" + description: For which domains the proxy should not be used. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.11.1+kadras.1 From 881bf12a7dadd6158ada1d6eab56f4e4abce20f6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 10 Apr 2023 19:29:36 +0200 Subject: [PATCH 203/601] Update Cert Manager Issuers metadata and add version 0.1.0 (#179) Co-authored-by: github-actions --- .../0.1.0.yml | 50 +++++++++++++++++++ .../metadata.yml | 19 +++++++ 2 files changed, 69 insertions(+) create mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/0.1.0.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..408df9d --- /dev/null +++ b/repo/packages/cert-manager-issuers.packages.kadras.io/0.1.0.yml @@ -0,0 +1,50 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager-issuers.packages.kadras.io.0.1.0 +spec: + licenses: + - Apache 2.0 + refName: cert-manager-issuers.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cert-manager-issuers/releases + releasedAt: "2023-04-10T17:23:11Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cert-manager-issuers@sha256:0bf8807f63cb5756a3006fb6db248aa1209692075d2d79f1510164819c0b2441 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + staging: + default: true + description: Whether to use Let's Encrypt staging, recommended for non-production + environments. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace where Cert Manager is deployed. + type: string + type: object + version: 0.1.0 diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..0bf0159 --- /dev/null +++ b/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml @@ -0,0 +1,19 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: cert-manager-issuers.packages.kadras.io +spec: + categories: + - certificate-management + - security + - tls + displayName: cert-manager-issuers + longDescription: A collection of ClusterIssuers to use with cert-manager, including + a private CA and optional Let's Encrypt support. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: A collection of ClusterIssuers to use with cert-manager. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/cert-manager-issuers + for community support. From 1c12f9de735b50abef348db0cfa888cdf3796331 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 10 Apr 2023 19:31:26 +0200 Subject: [PATCH 204/601] Update docs --- .github/workflows/release.yml | 2 +- README.md | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 334cde3..3f31abf 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.11.0-RC2 + VERSION: 0.11.0-RC3 jobs: build: diff --git a/README.md b/README.md index fb3cc88..6170e0a 100644 --- a/README.md +++ b/README.md @@ -20,6 +20,7 @@ This repository contains the following Carvel packages. | [cartographer-delivery](https://github.com/kadras-io/cartographer-delivery) | Cartographer delivery chains to deploy workloads to a Kubernetes cluster based on GitOps or RegistryOps. | | [cartographer-supply-chains](https://github.com/kadras-io/cartographer-supply-chains) | Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | | [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates. | +| [cert-manager-issuers](https://github.com/kadras-io/cert-manager-issuers) | A collection of issuers for Cert Manager, used by the Kadras platform to support TLS via a private CA or Let's Encrypt. | | [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | | [engineering-platform](https://github.com/kadras-io/engineering-platform) | A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes. | | [fluxcd-source-controller](https://github.com/kadras-io/package-for-fluxcd-source-controller) | A source management component from the Flux GitOps Toolkit to provide a common interface for artifacts acquisition. | From 348876409a0587d10e03ce156690fe97ad6d8ff2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 10 Apr 2023 23:54:17 +0200 Subject: [PATCH 205/601] Update Engineering Platform metadata and add version 0.9.0 (#180) Co-authored-by: github-actions --- .../0.9.0.yml | 258 ++++++++++++++++++ 1 file changed, 258 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.9.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.9.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.9.0.yml new file mode 100644 index 0000000..cc27f6a --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.9.0.yml @@ -0,0 +1,258 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.9.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-04-10T21:51:52Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:70a323388e87c20c853125e2b89552c45022999d98aae1917c27509eefee7a44 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: supply-chain-cosign-key-pair + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + credentials: + additionalProperties: false + description: Credentials to access the OCI registry. + nullable: true + properties: + password: + default: "" + description: 'Token to access the OCI registry. Note: Use contents + of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the OCI registry. Note: Use + `_json_key` for GCR.' + type: string + type: object + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish and consume OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: supply-chain-registry-credentials + description: The name of the Secret holding the credentials + to access the OCI registry. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish and consume OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.9.0 From 9b3299939c8da03c9cc96b7e9045aca180793844 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 10 Apr 2023 23:55:19 +0200 Subject: [PATCH 206/601] Prepare release 0.11.0-RC4 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 3f31abf..1da9e65 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.11.0-RC3 + VERSION: 0.11.0-RC4 jobs: build: From 7905064aa9b174b42cbeea0ab2207ae49964b289 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 13 Apr 2023 23:07:04 +0200 Subject: [PATCH 207/601] Update Argo CD metadata and add version 2.6.7 (#181) Co-authored-by: github-actions --- .../argo-cd.packages.kadras.io/2.6.7.yml | 45 +++++++++++++++++++ .../argo-cd.packages.kadras.io/metadata.yml | 2 + 2 files changed, 47 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.6.7.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.6.7.yml b/repo/packages/argo-cd.packages.kadras.io/2.6.7.yml new file mode 100644 index 0000000..1da5f3e --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.6.7.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.6.7 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases + releasedAt: "2023-04-13T20:46:52Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-argo-cd@sha256:3c17becac8f60bdc2e2b407e70ef7ea84ad3577e5269581db5ce62e217ff8676 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.6.7 diff --git a/repo/packages/argo-cd.packages.kadras.io/metadata.yml b/repo/packages/argo-cd.packages.kadras.io/metadata.yml index 12deb34..6203ed3 100644 --- a/repo/packages/argo-cd.packages.kadras.io/metadata.yml +++ b/repo/packages/argo-cd.packages.kadras.io/metadata.yml @@ -14,3 +14,5 @@ spec: providerName: Kadras shortDescription: Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-argo-cd + for community support. From 56d059b437dbac65579c3a223f4cbef25e072f49 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 13 Apr 2023 23:24:57 +0200 Subject: [PATCH 208/601] Update Knative Eventing metadata and add version 1.9.7 (#182) Co-authored-by: github-actions --- .../1.9.7.yml | 45 +++++++++++++++++++ .../metadata.yml | 2 + 2 files changed, 47 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.9.7.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.9.7.yml b/repo/packages/knative-eventing.packages.kadras.io/1.9.7.yml new file mode 100644 index 0000000..c64a5c9 --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.9.7.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.9.7 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases + releasedAt: "2023-04-13T21:14:52Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:fd966e4ceb802a6bbfb371cde9bd6c4af74631b48520b3bb0c5a65b6e0f22fa9 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.9.7 diff --git a/repo/packages/knative-eventing.packages.kadras.io/metadata.yml b/repo/packages/knative-eventing.packages.kadras.io/metadata.yml index a0ecc19..34a5f8b 100644 --- a/repo/packages/knative-eventing.packages.kadras.io/metadata.yml +++ b/repo/packages/knative-eventing.packages.kadras.io/metadata.yml @@ -14,3 +14,5 @@ spec: - name: Thomas Vitale providerName: Kadras shortDescription: Toolkit to build event-driven architectures on Kubernetes. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-knative-eventing + for community support. From 252b4e64fbf54928b1f5b6dbc835bde116c347fa Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 14 Apr 2023 23:46:05 +0200 Subject: [PATCH 209/601] Update Buildpacks Catalog metadata and add version 0.7.0 (#183) Co-authored-by: github-actions --- .../0.7.0.yml | 46 +++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.7.0.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.7.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.7.0.yml new file mode 100644 index 0000000..412c25b --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.7.0.yml @@ -0,0 +1,46 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.7.0 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-04-14T21:42:10Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:0f2ae6cdb13272451b330b74a0dbfb8bbe2b6961e7dd2897db5abb0d9065fab6 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.7.0 From c8831f5914f1da35d6d44764ee1868e3d5864606 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 15 Apr 2023 00:25:26 +0200 Subject: [PATCH 210/601] Update Kyverno metadata and add version 1.9.2 (#184) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.9.2.yml | 31 +++++++++++++++++++ .../kyverno.packages.kadras.io/metadata.yml | 18 +++++++++++ 2 files changed, 49 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.9.2.yml create mode 100644 repo/packages/kyverno.packages.kadras.io/metadata.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.9.2.yml b/repo/packages/kyverno.packages.kadras.io/1.9.2.yml new file mode 100644 index 0000000..422441d --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.9.2.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.9.2 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2023-04-14T22:19:01Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:d0cded82b9bed8ccf4cdede857cbe57d19503dd1c57d90375f84273698cfcb8a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 1.9.2 diff --git a/repo/packages/kyverno.packages.kadras.io/metadata.yml b/repo/packages/kyverno.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..78193d4 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/metadata.yml @@ -0,0 +1,18 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io +spec: + categories: + - policy-management + - policies + displayName: kyverno + longDescription: Kyverno is a policy engine designed for Kubernetes. It can validate, + mutate, and generate configurations using admission controls and background scans. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: A Kubernetes-native policy engine. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-kyverno + for community support. From d4d505ba22d628bf8b8fb8e7c8d490942e5fc417 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 16 Apr 2023 10:55:52 +0200 Subject: [PATCH 211/601] Update Engineering Platform metadata and add version 0.9.1 (#185) Co-authored-by: github-actions --- .../0.9.1.yml | 258 ++++++++++++++++++ 1 file changed, 258 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.9.1.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.9.1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.9.1.yml new file mode 100644 index 0000000..e68dabf --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.9.1.yml @@ -0,0 +1,258 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.9.1 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-04-16T08:51:13Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:ebc0dc7f0077eb18b1430656ae4e927739b681e5ea32737f6bbdf1f6e2bf0cf7 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: supply-chain-cosign-key-pair + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + credentials: + additionalProperties: false + description: Credentials to access the OCI registry. + nullable: true + properties: + password: + default: "" + description: 'Token to access the OCI registry. Note: Use contents + of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the OCI registry. Note: Use + `_json_key` for GCR.' + type: string + type: object + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish and consume OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: supply-chain-registry-credentials + description: The name of the Secret holding the credentials + to access the OCI registry. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish and consume OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.9.1 From ff2a3ecf52efd8979b330a0659b74db8240eee3e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 16 Apr 2023 11:03:33 +0200 Subject: [PATCH 212/601] Prepare release 0.11.0 --- .github/workflows/release.yml | 2 +- README.md | 1 + 2 files changed, 2 insertions(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 1da9e65..f659a45 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.11.0-RC4 + VERSION: 0.11.0 jobs: build: diff --git a/README.md b/README.md index 6170e0a..f0d98cb 100644 --- a/README.md +++ b/README.md @@ -27,6 +27,7 @@ This repository contains the following Carvel packages. | [knative-eventing](https://github.com/kadras-io/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | | [knative-serving](https://github.com/kadras-io/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | | [kpack](https://github.com/kadras-io/package-for-kpack) | A Kubernetes-native implementation of Cloud Native Buildpacks to build source code into OCI images from within your cluster. | +| [kyverno](https://github.com/kadras-io/package-for-kyverno) | A policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans. | | [metrics-server](https://github.com/kadras-io/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | | [secretgen-controller](https://github.com/carvel-dev/secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. Maintained by [Carvel](https://github.com/carvel-dev). | | [spring-boot-conventions](https://github.com/kadras-io/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | From 57857fe4267b71cc540331e60f0527d2592bf786 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 16 Apr 2023 11:24:11 +0200 Subject: [PATCH 213/601] Update Kyverno metadata and add version 1.9.2+kadras.1 (#186) Co-authored-by: github-actions --- .../1.9.2+kadras.1.yml | 31 +++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.9.2+kadras.1.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.9.2+kadras.1.yml b/repo/packages/kyverno.packages.kadras.io/1.9.2+kadras.1.yml new file mode 100644 index 0000000..e859323 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.9.2+kadras.1.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.9.2+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2023-04-16T09:19:36Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:7f54379d62c115ee75228558d0f3377826c1deacdbdabcd897748b1b6ce58382 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 1.9.2+kadras.1 From d5963aea6739afbca9d9f15524863434c220e698 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 17 Apr 2023 00:44:47 +0300 Subject: [PATCH 214/601] Update Engineering Platform metadata and add version 0.9.2 (#187) Co-authored-by: github-actions --- .../0.9.2.yml | 258 ++++++++++++++++++ 1 file changed, 258 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.9.2.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.9.2.yml b/repo/packages/engineering-platform.packages.kadras.io/0.9.2.yml new file mode 100644 index 0000000..5028f8a --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.9.2.yml @@ -0,0 +1,258 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.9.2 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-04-16T21:42:19Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:ab84cb03af957b587f11813213910ac1864520cb2dd7f8ddee4f5baa4c0c70da + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + credentials: + additionalProperties: false + description: Credentials to access the OCI registry. + nullable: true + properties: + password: + default: "" + description: 'Token to access the OCI registry. Note: Use contents + of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the OCI registry. Note: Use + `_json_key` for GCR.' + type: string + type: object + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish and consume OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: supply-chain-registry-credentials + description: The name of the Secret holding the credentials + to access the OCI registry. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish and consume OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.9.2 From 8e52d800258ae921238ae9e54a8bd9c09e3a1085 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 16 Apr 2023 23:45:15 +0200 Subject: [PATCH 215/601] Bump to 0.11.1 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index f659a45..1534a99 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.11.0 + VERSION: 0.11.1 jobs: build: From e4a5a48f68960b14d78e87ece3695566ffd0c303 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 4 Jun 2023 16:57:19 +0200 Subject: [PATCH 216/601] Update cert-manager metadata and add version 1.12.1 (#188) Co-authored-by: github-actions --- .../1.12.1.yml | 145 ++++++++++++++++++ .../metadata.yml | 9 +- 2 files changed, 150 insertions(+), 4 deletions(-) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.1.yml new file mode 100644 index 0000000..de6a63b --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.12.1.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.12.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-06-04T14:54:32Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:b29ad2d41f9cf13b874e32e24c0e63dce5be5c0df977dda97354c960c2b8ae89 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + probes: + additionalProperties: false + description: Settings for the cert-manager controller probes. + properties: + enabled: + default: false + description: 'Whether to enable to optional probes on the cert-manager + controller. It''s recommended not to enable this unless you encounter + issues with the controller Pods not restarting correctly. More + information: https://github.com/cert-manager/cert-manager/pull/5962.' + type: boolean + type: object + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.12.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/metadata.yml b/repo/packages/cert-manager.packages.kadras.io/metadata.yml index a1569c7..2727aa2 100644 --- a/repo/packages/cert-manager.packages.kadras.io/metadata.yml +++ b/repo/packages/cert-manager.packages.kadras.io/metadata.yml @@ -10,10 +10,11 @@ spec: - tls displayName: cert-manager iconSVGBase64: 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 - longDescription: Extensible X.509 certificate controller for Kubernetes. It will - obtain certificates from a variety of Issuers, both popular public Issuers as - well as private Issuers, and ensure the certificates are valid and up-to-date, - and will attempt to renew certificates at a configured time before expiry. + longDescription: Adds certificates and certificate issuers as resource types in + Kubernetes clusters, and simplifies the process of obtaining, renewing and using + those certificates. It can issue certificates from a variety of supported sources. + It will ensure certificates are valid and up to date, and attempt to renew certificates + at a configured time before expiry. maintainers: - name: Thomas Vitale providerName: Kadras From 9e96a92b2befa15108c4c08a2f8d1c8f11b8e1e7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 4 Jun 2023 17:27:25 +0200 Subject: [PATCH 217/601] Update cert-manager-issuers metadata and add version 0.2.0 (#189) Co-authored-by: github-actions --- .../0.2.0.yml | 55 +++++++++++++++++++ 1 file changed, 55 insertions(+) create mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.0.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..33cf028 --- /dev/null +++ b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.0.yml @@ -0,0 +1,55 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager-issuers.packages.kadras.io.0.2.0 +spec: + licenses: + - Apache 2.0 + refName: cert-manager-issuers.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cert-manager-issuers/releases + releasedAt: "2023-06-04T15:25:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cert-manager-issuers@sha256:0c8f82d9319e8cf4db2c991a2728eb752cacd57fa6785cebf0bc6a74f7c2a31b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + staging: + default: true + description: Whether to use Let's Encrypt staging, recommended for non-production + environments. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace where cert-manager is deployed. + type: string + type: object + version: 0.2.0 From 0e53609622f9d62590f35fc057747fdb96b220cb Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 14 Jun 2023 22:46:27 +0200 Subject: [PATCH 218/601] Update Knative Serving metadata and add version 1.10.2 (#190) Co-authored-by: github-actions --- .../1.10.2.yml | 270 ++++++++++++++++++ 1 file changed, 270 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.10.2.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.10.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.10.2.yml new file mode 100644 index 0000000..6e1f393 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.10.2.yml @@ -0,0 +1,270 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.10.2 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-06-14T20:43:56Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:0b554dd306b48672e7f79f5f21997d499da6287e97aadfb253c9a693848ba79e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, no value is + specified and the system default is used. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, no value + is specified and the system default is used. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, no value + is specified and the system default is used. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.10.2 From 915bc1ef7a80d3f9ffb40bdd3e54f3020bd52b22 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 19 Jun 2023 21:55:31 +0200 Subject: [PATCH 219/601] Update Buildpacks Catalog metadata and add version 0.8.0 (#191) Co-authored-by: github-actions --- .../0.8.0.yml | 47 +++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.8.0.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.0.yml new file mode 100644 index 0000000..26050f3 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.0.yml @@ -0,0 +1,47 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.8.0 +spec: + capacityRequirementsDescription: Container registry with at least 1GB available + space used by kpack to create builder images. + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-06-19T19:53:33Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:08453e0536e05072ee72446142093cafefcfe825dd01fa44d3746b8c8e46d189 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.8.0 From bae6a52f1d2be0799cf0e3f24b51d943bfe1ef73 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 20 Jun 2023 20:10:28 +0200 Subject: [PATCH 220/601] Update kpack metadata and add version 0.11.1 (#192) Co-authored-by: github-actions --- .../kpack.packages.kadras.io/0.11.1.yml | 156 ++++++++++++++++++ 1 file changed, 156 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.11.1.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.11.1.yml b/repo/packages/kpack.packages.kadras.io/0.11.1.yml new file mode 100644 index 0000000..c6f0ee7 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.11.1.yml @@ -0,0 +1,156 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.11.1 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2023-06-20T18:08:24Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:0fd651b905a025af143cc3adf56e99d3cfb8517a75df8970487b2ce092160a05 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + create_export: + default: false + description: Whether to create a SecretExport resource to export + the Secret from the source namespace to the kpack namespace. Not + needed when installing kpack as part of the Kadras Enginnering + Platform. + type: boolean + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy (e.g. Kubernetes + API address). + type: string + type: object + type: object + version: 0.11.1 From a847c09b4d5e824fbf1cc4277d9f837ccc83eb38 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 23 Jun 2023 11:25:55 +0200 Subject: [PATCH 221/601] Update Engineering Platform metadata and add version 0.10.0-RC1 (#193) Co-authored-by: github-actions --- .../0.10.0-RC1.yml | 258 ++++++++++++++++++ 1 file changed, 258 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC1.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC1.yml new file mode 100644 index 0000000..e04e54d --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC1.yml @@ -0,0 +1,258 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.10.0-RC1 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-06-23T09:23:49Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:dc45b97ba2bef74f928274c2e0aed8ba33c60e1953b330fb74e26baeecb75adf + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + credentials: + additionalProperties: false + description: Credentials to access the OCI registry. + nullable: true + properties: + password: + default: "" + description: 'Token to access the OCI registry. Note: Use contents + of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the OCI registry. Note: Use + `_json_key` for GCR.' + type: string + type: object + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish and consume OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: supply-chain-registry-credentials + description: The name of the Secret holding the credentials + to access the OCI registry. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish and consume OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.10.0-RC1 From 25a5e860d640930ddc7282c5c253eca71a12d912 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 23 Jun 2023 11:27:55 +0200 Subject: [PATCH 222/601] Update release.yml (#194) Signed-off-by: Thomas Vitale --- .github/workflows/release.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 1534a99..eec45b7 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.11.1 + VERSION: 0.12.0-RC1 jobs: build: @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.0.2 + uses: sigstore/cosign-installer@v3.0.5 - name: Log into container registry uses: redhat-actions/podman-login@v1.6 @@ -106,7 +106,7 @@ jobs: actions: read id-token: write packages: write - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.5.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.6.0 with: image: ${{ needs.build.outputs.image-name }} digest: ${{ needs.build.outputs.image-digest }} From 138d62c5c7c3a4447a234edabdec177fb40dd1c3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 23 Jun 2023 13:06:46 +0200 Subject: [PATCH 223/601] Update Engineering Platform metadata and add version 0.10.0-RC2 (#195) Co-authored-by: github-actions --- .../0.10.0-RC2.yml | 258 ++++++++++++++++++ 1 file changed, 258 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC2.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC2.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC2.yml new file mode 100644 index 0000000..021a39d --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC2.yml @@ -0,0 +1,258 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.10.0-RC2 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-06-23T11:04:54Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:04ece1fb894c7c55f10ad4231fc769254f4ba2dc4aa73abc4d84351973cae070 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + credentials: + additionalProperties: false + description: Credentials to access the OCI registry. + nullable: true + properties: + password: + default: "" + description: 'Token to access the OCI registry. Note: Use contents + of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the OCI registry. Note: Use + `_json_key` for GCR.' + type: string + type: object + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish and consume OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: supply-chain-registry-credentials + description: The name of the Secret holding the credentials + to access the OCI registry. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish and consume OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.10.0-RC2 From d24cf920606d5911c503c465ba17176e5097c91d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 23 Jun 2023 13:07:20 +0200 Subject: [PATCH 224/601] Update release.yml (#196) Signed-off-by: Thomas Vitale --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index eec45b7..41e4abf 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.12.0-RC1 + VERSION: 0.12.0-RC2 jobs: build: From 7a24969aea6c77fc485e4722e69d5552c3b99b76 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Jun 2023 11:05:02 +0200 Subject: [PATCH 225/601] Update cert-manager metadata and add version 1.12.2 (#197) Co-authored-by: github-actions --- .../1.12.2.yml | 145 ++++++++++++++++++ 1 file changed, 145 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.2.yml new file mode 100644 index 0000000..2eeb1eb --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.12.2.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.12.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-06-25T09:02:36Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:ba67f8e14e8acf12dfdbc7fb8450436401d54c135df957acbbbb5016c7594c7c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + probes: + additionalProperties: false + description: Settings for the cert-manager controller probes. + properties: + enabled: + default: false + description: 'Whether to enable to optional probes on the cert-manager + controller. It''s recommended not to enable this unless you encounter + issues with the controller Pods not restarting correctly. More + information: https://github.com/cert-manager/cert-manager/pull/5962.' + type: boolean + type: object + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.12.2 From 673f59339b1f6a6e4a1aa4d4c007ec40f0f06188 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Jun 2023 11:23:01 +0200 Subject: [PATCH 226/601] Update workflow dependencies --- .github/workflows/release.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 41e4abf..db74386 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,7 +19,7 @@ jobs: image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code - uses: actions/checkout@v3.5.0 + uses: actions/checkout@v3.5.3 - name: Set up Carvel uses: carvel-dev/setup-action@v1.3.0 @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.0.5 + uses: sigstore/cosign-installer@v3.1.0 - name: Log into container registry uses: redhat-actions/podman-login@v1.6 @@ -106,7 +106,7 @@ jobs: actions: read id-token: write packages: write - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.6.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.7.0 with: image: ${{ needs.build.outputs.image-name }} digest: ${{ needs.build.outputs.image-digest }} From eb95f934fc1dd18ca92857cd81622751fd7620f8 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Jun 2023 11:24:25 +0200 Subject: [PATCH 227/601] Update cert-manager-issuers metadata and add version 0.2.1 (#198) Co-authored-by: github-actions --- .../0.2.1.yml | 55 +++++++++++++++++++ 1 file changed, 55 insertions(+) create mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/0.2.1.yml diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.1.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.1.yml new file mode 100644 index 0000000..f07500f --- /dev/null +++ b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.1.yml @@ -0,0 +1,55 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager-issuers.packages.kadras.io.0.2.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager-issuers.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cert-manager-issuers/releases + releasedAt: "2023-06-25T09:18:34Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cert-manager-issuers@sha256:3f1181c087d2d68984d6bf73122b3a77a6a8185bbedc4bacd609e2a84af3b50b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + staging: + default: true + description: Whether to use Let's Encrypt staging, recommended for non-production + environments. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace where cert-manager is deployed. + type: string + type: object + version: 0.2.1 From e55c6968cd2db710dfdd358d523d048a68549fae Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Jun 2023 12:37:41 +0200 Subject: [PATCH 228/601] Update secretgen-controller metadata and add version 0.14.8 (#199) Co-authored-by: github-actions --- .../0.14.8.yml | 35 +++++++++++++++++++ .../metadata.yml | 15 ++++---- 2 files changed, 44 insertions(+), 6 deletions(-) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.14.8.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.14.8.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.14.8.yml new file mode 100644 index 0000000..2c4efd5 --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.14.8.yml @@ -0,0 +1,35 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.14.8 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases + releasedAt: "2023-06-25T10:33:11Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:43c9bc9ceab211bc8e2320a50b155c98daa9a13149688f558b5c85a498a64271 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.14.8 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml b/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml index 1e2e3bd..226534a 100644 --- a/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml +++ b/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml @@ -1,14 +1,17 @@ apiVersion: data.packaging.carvel.dev/v1alpha1 kind: PackageMetadata metadata: + creationTimestamp: null name: secretgen-controller.packages.kadras.io spec: categories: - - secret management + - secrets management displayName: secretgen-controller - longDescription: Provide CRDs to specify what secrets need to be on cluster (generated - or not). + longDescription: A cloud-native solution to generate and share Secrets, passwords, + keys, and certificates. maintainers: - - name: Carvel team (see www.carvel.dev for team members) - providerName: carvel.dev - shortDescription: Secret generation and sharing + - name: Thomas Vitale + providerName: Kadras + shortDescription: Secrets generation and sharing. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-secretgen-controller + for community support. From 9a9559e7809e074c57907fe008579cadd4194072 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Jun 2023 12:39:13 +0200 Subject: [PATCH 229/601] Update docs --- README.md | 11 +++++------ 1 file changed, 5 insertions(+), 6 deletions(-) diff --git a/README.md b/README.md index f0d98cb..78ce1d1 100644 --- a/README.md +++ b/README.md @@ -1,7 +1,7 @@ # Kadras Packages ![Release Workflow](https://github.com/kadras-io/kadras-packages/actions/workflows/release.yml/badge.svg) -[![The SLSA Level 3 badge](https://slsa.dev/images/gh-badge-level3.svg)](https://slsa.dev/spec/v0.1/levels) +[![The SLSA Level 3 badge](https://slsa.dev/images/gh-badge-level3.svg)](https://slsa.dev/spec/v1.0/levels) [![The Apache 2.0 license badge](https://img.shields.io/badge/License-Apache_2.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) [![Follow us on Twitter](https://img.shields.io/static/v1?label=Twitter&message=Follow&color=1DA1F2)](https://twitter.com/kadrasIO) @@ -29,7 +29,7 @@ This repository contains the following Carvel packages. | [kpack](https://github.com/kadras-io/package-for-kpack) | A Kubernetes-native implementation of Cloud Native Buildpacks to build source code into OCI images from within your cluster. | | [kyverno](https://github.com/kadras-io/package-for-kyverno) | A policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans. | | [metrics-server](https://github.com/kadras-io/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | -| [secretgen-controller](https://github.com/carvel-dev/secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. Maintained by [Carvel](https://github.com/carvel-dev). | +| [secretgen-controller](https://github.com/carvel-dev/secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. | | [spring-boot-conventions](https://github.com/kadras-io/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | | [tekton-catalog](https://github.com/kadras-io/tekton-catalog) | A set of Tekton pipelines and tasks used by the Kadras platform to support testing, scanning, delivering and deploying applications. | | [tekton-pipelines](https://github.com/kadras-io/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | @@ -39,7 +39,7 @@ This repository contains the following Carvel packages. ### Prerequisites -* Kubernetes 1.24+ +* Kubernetes 1.25+ * Carvel [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI. * Carvel [kapp-controller](https://carvel.dev/kapp-controller) deployed in your Kubernetes cluster. You can install it with Carvel [`kapp`](https://carvel.dev/kapp/docs/latest/install) (recommended choice) or `kubectl`. @@ -53,10 +53,9 @@ This repository contains the following Carvel packages. Install the Kadras package repository in a dedicated namespace using `kctrl`: ```shell - kubectl create namespace kadras-packages - kctrl package repository add -r kadras-repo \ + kctrl package repository add -r kadras-packages \ --url ghcr.io/kadras-io/kadras-packages \ - -n kadras-packages + -n kadras-packages --create-namespace ```
Installation via CRDs From b5d7e6a2f9c23f1d069a298cbd82250a8b6534f9 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Jun 2023 22:40:19 +0200 Subject: [PATCH 230/601] Update Contour metadata and add version 1.25.0 (#200) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.25.0.yml | 222 ++++++++++++++++++ 1 file changed, 222 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.25.0.yml diff --git a/repo/packages/contour.packages.kadras.io/1.25.0.yml b/repo/packages/contour.packages.kadras.io/1.25.0.yml new file mode 100644 index 0000000..c6505e5 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.25.0.yml @@ -0,0 +1,222 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.25.0 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-06-25T20:35:33Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:4149e01cad76f558715d447f49e0682503af49aa0095e924831ab5429e677a63 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + aws: + additionalProperties: false + description: AWS-specific settings for the Envoy service. If `infrastructure_provider` + is not `aws`, these settings are ignored. + properties: + loadBalancerType: + default: classic + description: The type of AWS load balancer to provision. Options + are 'classic' and 'nlb'. + type: string + type: object + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service in + case the `infrastructure_provider` doesn't enforce one already. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy + in case the `infrastructure_provider` doesn't enforce one already. + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + dnsPolicy: + default: ClusterFirst + description: The DNS policy for the Envoy pods. + type: string + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `aws`, + `do`, `local` and `vsphere`. This field is not required, but it enables + better validation and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.25.0 From 05e47b341f313060ab7e849ecd30b4e4239630bd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 26 Jun 2023 19:11:49 +0200 Subject: [PATCH 231/601] Update Contour metadata and add version 1.25.0+kadras.1 (#201) Co-authored-by: github-actions --- .../1.25.0+kadras.1.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.25.0+kadras.1.yml diff --git a/repo/packages/contour.packages.kadras.io/1.25.0+kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.25.0+kadras.1.yml new file mode 100644 index 0000000..4ac3906 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.25.0+kadras.1.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.25.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-06-26T17:04:45Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:2398774175ef99b5246e51779d1b97c4a2207c2030105de7946bbd9c5ba80d67 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service in + case the `infrastructure_provider` doesn't enforce one already. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy + in case the `infrastructure_provider` doesn't enforce one already. + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + dnsPolicy: + default: ClusterFirst + description: The DNS policy for the Envoy pods. + type: string + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.25.0+kadras.1 From 245fcc2f1fbcf7845258bfea4fbb6873d3d767ff Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 26 Jun 2023 19:26:26 +0200 Subject: [PATCH 232/601] Update Knative Serving metadata and add version 1.10.2+kadras.1 (#202) Co-authored-by: github-actions --- .../1.10.2+kadras.1.yml | 275 ++++++++++++++++++ 1 file changed, 275 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.10.2+kadras.1.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.10.2+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.10.2+kadras.1.yml new file mode 100644 index 0000000..99b7fe1 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.10.2+kadras.1.yml @@ -0,0 +1,275 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.10.2+kadras.1 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-06-26T17:22:13Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:bd8500aea7ea1da39a1b2b0ca935a4385cc0b6b36e29159bf855d6ef22d8d2f2 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, no value is + specified and the system default is used. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, no value + is specified and the system default is used. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, no value + is specified and the system default is used. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.10.2+kadras.1 From 6f3e400e75afde81021c144f177dd393163d98c7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 28 Jun 2023 07:29:22 +0200 Subject: [PATCH 233/601] Update Workspace Provisioner metadata and add version 0.2.0 (#203) Co-authored-by: github-actions --- .../0.2.0.yml | 114 ++++++++++++++++++ 1 file changed, 114 insertions(+) create mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/0.2.0.yml b/repo/packages/workspace-provisioner.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..35e22c1 --- /dev/null +++ b/repo/packages/workspace-provisioner.packages.kadras.io/0.2.0.yml @@ -0,0 +1,114 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: workspace-provisioner.packages.kadras.io.0.2.0 +spec: + licenses: + - Apache 2.0 + refName: workspace-provisioner.packages.kadras.io + releaseNotes: https://github.com/kadras-io/workspace-provisioner/releases + releasedAt: "2023-06-28T05:27:29Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/workspace-provisioner@sha256:0a4715e0735a18e9ca5980f4fed25dc89b8a6b260c0714436fa6608bcbea2fdc + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Cosign key + pair. + type: string + type: object + type: object + git: + additionalProperties: false + description: Configuration to access the Git repositories used in the GitOps + workflows. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Git credentials. + properties: + name: + default: "" + description: The name of the Secret holding the Git credentials. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Git credentials. + type: string + type: object + server: + default: https://github.com + description: The Git server hosting the Git repositories used in the + GitOps workflows. + type: string + type: object + namespaces: + default: [] + description: Configuration for the namespaces the platform will provision + and manage. + items: + additionalProperties: false + description: Details about the namespace to configure. + properties: + name: + default: "" + type: string + type: object + type: array + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the workspace will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the OCI registry. + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + the OCI registry. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + type: object + service_account: + default: default + description: The `ServiceAccount` to be configured with credentials and + roles in each workspace. + type: string + type: object + version: 0.2.0 From 8d49cfb065e0c6e36f0ffee3b4b1cc60b62b349a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 28 Jun 2023 07:32:08 +0200 Subject: [PATCH 234/601] Update Contour metadata and add version 1.25.0+kadras.2 (#204) Co-authored-by: github-actions --- .../1.25.0+kadras.2.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.25.0+kadras.2.yml diff --git a/repo/packages/contour.packages.kadras.io/1.25.0+kadras.2.yml b/repo/packages/contour.packages.kadras.io/1.25.0+kadras.2.yml new file mode 100644 index 0000000..8569913 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.25.0+kadras.2.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.25.0+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-06-28T05:29:47Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:65eab0bf5c9f4fbaa7699e62bb937078091aace329d97c540b5aeb323461070b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service in + case the `infrastructure_provider` doesn't enforce one already. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy + in case the `infrastructure_provider` doesn't enforce one already. + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + dnsPolicy: + default: ClusterFirst + description: The DNS policy for the Envoy pods. + type: string + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.25.0+kadras.2 From e989d6b6877dcdad7d58f5a417d1a57d8d906aaa Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 28 Jun 2023 19:30:38 +0200 Subject: [PATCH 235/601] Update Contour metadata and add version 1.25.0+kadras.3 (#205) Co-authored-by: github-actions --- .../1.25.0+kadras.3.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.25.0+kadras.3.yml diff --git a/repo/packages/contour.packages.kadras.io/1.25.0+kadras.3.yml b/repo/packages/contour.packages.kadras.io/1.25.0+kadras.3.yml new file mode 100644 index 0000000..d1f18a4 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.25.0+kadras.3.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.25.0+kadras.3 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-06-28T17:28:13Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:317561fc386ba5596606827e54752eae18ba342cced3c136dd9affccd4f9964f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service in + case the `infrastructure_provider` doesn't enforce one already. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy + in case the `infrastructure_provider` doesn't enforce one already. + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + dnsPolicy: + default: ClusterFirst + description: The DNS policy for the Envoy pods. + type: string + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.25.0+kadras.3 From 58aa4d53c29d0a2febc02df05b6392b60631b9ec Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 28 Jun 2023 22:37:09 +0200 Subject: [PATCH 236/601] Update Engineering Platform metadata and add version 0.10.0-RC3 (#206) Co-authored-by: github-actions --- .../0.10.0-RC3.yml | 287 ++++++++++++++++++ 1 file changed, 287 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC3.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC3.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC3.yml new file mode 100644 index 0000000..ea8fde3 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC3.yml @@ -0,0 +1,287 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.10.0-RC3 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-06-28T20:35:16Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:29de5f1ee5146e5bac6da8d4d6d353376ef8c62ffbeccdc8161a94a2ab0d143b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: supply-chain-cosign-key-pair + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: supply-chain-git-credentials + description: The name of the Secret holding the credentials + to access the Git server. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish and consume OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: supply-chain-registry-credentials + description: The name of the Secret holding the credentials + to access the OCI registry. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish and consume OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: full + description: 'The platform profile to install. Options: `full`, `serving`.' + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.10.0-RC3 From d528ffe743dfc355f0a56223f7483b154ac9861b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 1 Jul 2023 18:35:05 +0200 Subject: [PATCH 237/601] Prepare release 0.12.0-RC3 (#207) Signed-off-by: Thomas Vitale --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index db74386..56b9f0f 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.12.0-RC2 + VERSION: 0.12.0-RC3 jobs: build: From 1e4a0a4a24a0e632bfd6869123833a2afa99ef5d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Jul 2023 17:34:35 +0200 Subject: [PATCH 238/601] Update Tekton Pipelines metadata and add version 0.49.0 (#208) Co-authored-by: github-actions --- .../0.49.0.yml | 551 ++++++++++++++++++ 1 file changed, 551 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.49.0.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.49.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.49.0.yml new file mode 100644 index 0000000..57b8b46 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.49.0.yml @@ -0,0 +1,551 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.49.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-07-09T15:32:22Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:997cea4bc49873bc0d91521fb5c7e68f74a01472d223dfa1612c2f82296b0c74 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-cloud-events-sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, + and Run lifeycle events. If no sink is specified, no CloudEvent is + generated. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-resolver-type: + default: "" + description: The default resolver type to be used in the cluster. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-leader-election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + events: + additionalProperties: false + description: Settings for the `tekton-events-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-events-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + artifact_hub_url: + default: https://artifacthub.io/ + description: The Artifact Hub API used by the Hub Resolver to resolve + remote pipelines and tasks. + type: string + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + disable-affinity-assistant: + default: "false" + description: Setting this flag to `true` will prevent Tekton to create + an Affinity Assistant for every TaskRun sharing a PVC workspace. + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: beta + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-provenance-in-status: + default: "true" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiablity: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + require-git-ssh-secret-known-hosts: + default: "true" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + results-from: + default: termination-message + description: Setting this flag will determine how Tekton pipelines will + handle extracting results from the task. Acceptable values are `termination-message` + or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus + should still be considered an alpha feature. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + set-security-context: + default: "false" + description: Setting this flag to `true` will limit privileges for containers + injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces + with `restricted` pod security standards. Not all Kubernetes implementations + support this option. + type: string + trusted-resources-verification-no-match-policy: + default: ignore + description: This flag affects the behavior of taskruns and pipelineruns + in cases where no VerificationPolicies match them. If it is set to + `fail`, TaskRuns and PipelineRuns will fail verification if no matching + policies are found. If it is set to `warn`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and an error + will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and no error + will be logged. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + enable: + default: false + description: Setting this flag to `true` enables the trace exporter. + type: boolean + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + endpoint: + default: "" + description: The endpoint where the distributed tracing backend + accepts OpenTelemetry traces using the Jaeger protocol. + type: string + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.49.0 From 9407d0be82f3d84d50c2c893d850e3b1bd8c0f1d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Jul 2023 18:42:05 +0200 Subject: [PATCH 239/601] Update FluxCD Source Controller metadata and add version 1.0.0 (#209) Co-authored-by: github-actions --- .../1.0.0.yml | 89 +++++++++++++++++++ 1 file changed, 89 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.0.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.0.yml new file mode 100644 index 0000000..beb5a9a --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.0.yml @@ -0,0 +1,89 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.1.0.0 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases + releasedAt: "2023-07-09T16:34:48Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:531fd243b5f9b0174781fd975a8c934538a2dce66b8c8a9dda5e009b71d20ed4 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: flux-source-system + description: The namespace where to install FluxCD Source Controller. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment. + properties: + limits: + additionalProperties: false + description: Resource limits configuration for the `source-controller` + Deployment. + properties: + cpu: + default: 1000m + description: CPU limits configuration for the `source-controller` + Deployment. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the `source-controller` + Deployment. + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the `source-controller` Service. + type: integer + type: object + version: 1.0.0 From ceb7113b5c2cd51df717107b12e3b330ab72a56e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Jul 2023 22:19:27 +0200 Subject: [PATCH 240/601] Update kpack metadata and add version 0.11.2 (#210) Co-authored-by: github-actions --- .../kpack.packages.kadras.io/0.11.2.yml | 156 ++++++++++++++++++ 1 file changed, 156 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.11.2.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.11.2.yml b/repo/packages/kpack.packages.kadras.io/0.11.2.yml new file mode 100644 index 0000000..53ca8f1 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.11.2.yml @@ -0,0 +1,156 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.11.2 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2023-07-09T20:17:34Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:dcdb4cb397741df8fc8c0aa4f43132b9c1e70901909271faa6a7aa0bc35319a3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + create_export: + default: false + description: Whether to create a SecretExport resource to export + the Secret from the source namespace to the kpack namespace. Not + needed when installing kpack as part of the Kadras Enginnering + Platform. + type: boolean + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy (e.g. Kubernetes + API address). + type: string + type: object + type: object + version: 0.11.2 From 183826c6a71c28e69169b6830caf9df960e2b1e3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 9 Jul 2023 22:30:19 +0200 Subject: [PATCH 241/601] Update Buildpacks Catalog metadata and add version 0.8.1 (#211) Co-authored-by: github-actions --- .../0.8.1.yml | 47 +++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.8.1.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.1.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.1.yml new file mode 100644 index 0000000..5ec93f9 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.1.yml @@ -0,0 +1,47 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.8.1 +spec: + capacityRequirementsDescription: Container registry with at least 1GB available + space used by kpack to create builder images. + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-07-09T20:28:09Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:d648e7e095dfdf4bb563f10ab0b3bb74f0053d3a5139137d44558d9cb610c838 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.8.1 From 44ac06d172c9c4f37e011d880b04bbc8f4988b5e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 19 Jul 2023 18:03:30 +0200 Subject: [PATCH 242/601] Update Tekton Catalog metadata and add version 0.2.0 (#212) Co-authored-by: github-actions --- .../0.2.0.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.2.0.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.2.0.yml new file mode 100644 index 0000000..d976c69 --- /dev/null +++ b/repo/packages/tekton-catalog.packages.kadras.io/0.2.0.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-catalog.packages.kadras.io.0.2.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/tekton-catalog/releases + releasedAt: "2023-07-19T15:59:49Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/tekton-catalog@sha256:278c42170c0c6e84edc3641e06de4b1618932b77273d98192c9e7078d021f16b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: tekton-catalog + description: The namespace where to deploy the Tekton Catalog. + type: string + type: object + version: 0.2.0 From 5ca4aa2664da9c6a86909e6200e858cd5846957b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 19 Jul 2023 18:24:02 +0200 Subject: [PATCH 243/601] Update Buildpacks Catalog metadata and add version 0.8.2 (#213) Co-authored-by: github-actions --- .../0.8.2.yml | 47 +++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.8.2.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.2.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.2.yml new file mode 100644 index 0000000..e41a494 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.2.yml @@ -0,0 +1,47 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.8.2 +spec: + capacityRequirementsDescription: Container registry with at least 1GB available + space used by kpack to create builder images. + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-07-19T16:13:51Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:a93d1582c6e97a4b9bf504686d39a98d44dea64f5c89e20b5a2e75f9b26f42b5 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.8.2 From 5f1b3d6405f2717e6439c53630943bc7d2811586 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 12 Aug 2023 14:30:51 +0200 Subject: [PATCH 244/601] Update cert-manager metadata and add version 1.12.3 (#214) Co-authored-by: github-actions --- .../1.12.3.yml | 145 ++++++++++++++++++ 1 file changed, 145 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.3.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.3.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.3.yml new file mode 100644 index 0000000..96cf9d3 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.12.3.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.12.3 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-08-12T12:26:43Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:aa0d68e8d667c277a805e2709c598f02d8e571658e247fe312fb674eb6f7f285 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + probes: + additionalProperties: false + description: Settings for the cert-manager controller probes. + properties: + enabled: + default: false + description: 'Whether to enable to optional probes on the cert-manager + controller. It''s recommended not to enable this unless you encounter + issues with the controller Pods not restarting correctly. More + information: https://github.com/cert-manager/cert-manager/pull/5962.' + type: boolean + type: object + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.12.3 From fdda33ced0b4cc40c31a394f1e4551695b582c0a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 12 Aug 2023 14:49:25 +0200 Subject: [PATCH 245/601] Update cert-manager-issuers metadata and add version 0.2.2 (#215) Co-authored-by: github-actions --- .../0.2.2.yml | 59 +++++++++++++++++++ .../metadata.yml | 1 + 2 files changed, 60 insertions(+) create mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/0.2.2.yml diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.2.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.2.yml new file mode 100644 index 0000000..d4a0192 --- /dev/null +++ b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.2.yml @@ -0,0 +1,59 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager-issuers.packages.kadras.io.0.2.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager-issuers.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cert-manager-issuers/releases + releasedAt: "2023-08-12T12:43:20Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cert-manager-issuers@sha256:3f1181c087d2d68984d6bf73122b3a77a6a8185bbedc4bacd609e2a84af3b50b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + staging: + default: true + description: Whether to use Let's Encrypt staging, recommended for non-production + environments. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace where cert-manager is deployed. + type: string + type: object + version: 0.2.2 diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml index 0bf0159..ca9a43b 100644 --- a/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml +++ b/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml @@ -9,6 +9,7 @@ spec: - security - tls displayName: cert-manager-issuers + iconSVGBase64: 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 longDescription: A collection of ClusterIssuers to use with cert-manager, including a private CA and optional Let's Encrypt support. maintainers: From 59d84c8b8832bccb5453ece7bb0ac8116f9a60d8 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 12 Aug 2023 15:02:27 +0200 Subject: [PATCH 246/601] Update Contour metadata and add version 1.25.2 (#216) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.25.2.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.25.2.yml diff --git a/repo/packages/contour.packages.kadras.io/1.25.2.yml b/repo/packages/contour.packages.kadras.io/1.25.2.yml new file mode 100644 index 0000000..8709619 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.25.2.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.25.2 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-08-12T12:58:35Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:c4ee4463c056ca14f6f0357d9054d38b9dc08045886df96be85156b9ebc8bde4 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service in + case the `infrastructure_provider` doesn't enforce one already. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy + in case the `infrastructure_provider` doesn't enforce one already. + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + dnsPolicy: + default: ClusterFirst + description: The DNS policy for the Envoy pods. + type: string + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.25.2 From c26687ef34720399e7210d07f7109b1d9b125436 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 12 Aug 2023 15:13:12 +0200 Subject: [PATCH 247/601] Update Metrics Server metadata and add version 0.6.4 (#217) Co-authored-by: github-actions --- .../0.6.4.yml | 148 ++++++++++++++++++ .../metadata.yml | 1 + 2 files changed, 149 insertions(+) create mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.4.yml diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.4.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.4.yml new file mode 100644 index 0000000..d518635 --- /dev/null +++ b/repo/packages/metrics-server.packages.kadras.io/0.6.4.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: metrics-server.packages.kadras.io.0.6.4 +spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases + releasedAt: "2023-08-12T13:10:54Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-metrics-server@sha256:b17b5f6f266b64df37adc5dd56a78dd35ff19dc5ebcc59d9dc688dba0c51e5a3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + daemonset: + additionalProperties: false + properties: + updateStrategy: + default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + nullable: true + type: integer + maxUnavailable: + default: null + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object + updateStrategy: + default: null + description: Update strategy of deployments + nullable: true + type: string + type: object + metricsServer: + additionalProperties: false + properties: + config: + additionalProperties: false + properties: + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean + args: + default: [] + description: Arguments passed into metrics-server container + items: + default: "" + type: string + type: array + probe: + additionalProperties: false + properties: + failureThreshold: + default: 3 + description: Probe failureThreshold of metrics-server deployment + type: integer + periodSeconds: + default: 10 + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer + tolerations: + default: [] + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string + type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: + additionalProperties: false + properties: + name: + default: "" + description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: + default: "" + description: The repository of metrics-server image + type: string + tag: + default: "" + description: The image tag + type: string + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object + version: 0.6.4 diff --git a/repo/packages/metrics-server.packages.kadras.io/metadata.yml b/repo/packages/metrics-server.packages.kadras.io/metadata.yml index 4a43b39..6c9f964 100644 --- a/repo/packages/metrics-server.packages.kadras.io/metadata.yml +++ b/repo/packages/metrics-server.packages.kadras.io/metadata.yml @@ -9,6 +9,7 @@ spec: - metrics - observability displayName: metrics-server + iconSVGBase64: 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 longDescription: Metrics Server is a scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. maintainers: From 87d07b8ffa38b888cd26004de8baff52a8819a9a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 13 Aug 2023 14:32:19 +0200 Subject: [PATCH 248/601] Update Knative Serving metadata and add version 1.11.0 (#218) Co-authored-by: github-actions --- .../1.11.0.yml | 278 ++++++++++++++++++ 1 file changed, 278 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.11.0.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.11.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.11.0.yml new file mode 100644 index 0000000..5975c45 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.11.0.yml @@ -0,0 +1,278 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.11.0 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-08-13T07:00:12Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:a2c058653438bfeaeb2696b23a63258f5bea1a29a956621f0cf8bc7cfce098da + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.11.0 From 37455e89f1aa83746dd02eb6f8622495f5bd82c8 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 13 Aug 2023 14:40:45 +0200 Subject: [PATCH 249/601] Update FluxCD Source Controller metadata and add version 1.0.1 (#219) Co-authored-by: github-actions --- .../1.0.1.yml | 128 ++++++++++++++++++ 1 file changed, 128 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1.yml new file mode 100644 index 0000000..29e4fe9 --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1.yml @@ -0,0 +1,128 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.1.0.1 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases + releasedAt: "2023-08-13T12:32:38Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:f6968c6e44a47010c778a47f1739d983f83f750e7d4e2349f443cd02c9b52335 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + leader_election: + additionalProperties: false + description: Leader election configuration. + properties: + lease_duration: + default: 35s + description: Interval at which non-leader candidates will wait to force + acquire leadership. + type: string + release_on_cancel: + default: "true" + description: Defines if the leader should step down voluntarily on controller + manager shutdown. + type: string + renew_deadline: + default: 30s + description: Duration that the leading controller manager will retry + refreshing leadership before giving up. + type: string + retry_period: + default: 5s + description: Duration the LeaderElector clients should wait between + tries of actions. + type: string + type: object + logging: + additionalProperties: false + description: Logging configuration. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + namespace: + default: flux-source-system + description: The namespace where to install FluxCD Source Controller. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment. + properties: + limits: + additionalProperties: false + description: Resource limits configuration for the `source-controller` + Deployment. + properties: + cpu: + default: 1000m + description: CPU limits configuration for the `source-controller` + Deployment. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the `source-controller` + Deployment. + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the `source-controller` Service. + type: integer + type: object + version: 1.0.1 From 6b2aed89b5fcab6896e1f36af4605071cd16efe5 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 13 Aug 2023 15:17:56 +0200 Subject: [PATCH 250/601] Update Knative Eventing metadata and add version 1.11.0 (#220) Co-authored-by: github-actions --- .../1.11.0.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.11.0.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.11.0.yml b/repo/packages/knative-eventing.packages.kadras.io/1.11.0.yml new file mode 100644 index 0000000..f9d5eac --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.11.0.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.11.0 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases + releasedAt: "2023-08-13T13:13:13Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:97675b2afa4ed6ab3246b7e5813f51cce628c20b42726ad9954137cbef7475df + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.11.0 From 990baa611ab43f4b55c8ea5babb4f9f2feb55870 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 13 Aug 2023 15:32:45 +0200 Subject: [PATCH 251/601] Update kpack metadata and add version 0.11.2+kadras.1 (#221) Co-authored-by: github-actions --- .../0.11.2+kadras.1.yml | 156 ++++++++++++++++++ .../kpack.packages.kadras.io/metadata.yml | 1 + 2 files changed, 157 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.11.2+kadras.1.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.11.2+kadras.1.yml b/repo/packages/kpack.packages.kadras.io/0.11.2+kadras.1.yml new file mode 100644 index 0000000..dbcf2f4 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.11.2+kadras.1.yml @@ -0,0 +1,156 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.11.2+kadras.1 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2023-08-13T13:27:32Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:6f3b6a14935723afbe69a85d27b55dc280d413495deabf09a12b46f15be4a592 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + create_export: + default: false + description: Whether to create a SecretExport resource to export + the Secret from the source namespace to the kpack namespace. Not + needed when installing kpack as part of the Kadras Enginnering + Platform. + type: boolean + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy (e.g. Kubernetes + API address). + type: string + type: object + type: object + version: 0.11.2+kadras.1 diff --git a/repo/packages/kpack.packages.kadras.io/metadata.yml b/repo/packages/kpack.packages.kadras.io/metadata.yml index a7bc199..0cee8c1 100644 --- a/repo/packages/kpack.packages.kadras.io/metadata.yml +++ b/repo/packages/kpack.packages.kadras.io/metadata.yml @@ -7,6 +7,7 @@ spec: categories: - build displayName: kpack + iconSVGBase64: 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 longDescription: kpack extends Kubernetes and utilizes unprivileged kubernetes primitives to provide builds of OCI images as a platform implementation of Cloud Native Buildpacks (CNB). From 3f6360c214ea14561598d965604578686c6d709c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 13 Aug 2023 15:57:01 +0200 Subject: [PATCH 252/601] Update Buildpacks Catalog metadata and add version 0.9.0 (#222) Co-authored-by: github-actions --- .../0.9.0.yml | 47 +++++++++++++++++++ .../metadata.yml | 1 + 2 files changed, 48 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.0.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.0.yml new file mode 100644 index 0000000..9440389 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.0.yml @@ -0,0 +1,47 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.9.0 +spec: + capacityRequirementsDescription: Container registry with at least 1GB available + space used by kpack to create builder images. + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-08-13T13:54:54Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:3276a36add34a1cf945fbcca87b6edfede2636bbc5217d6769457a44ecc0e5d7 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.9.0 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml index 06c07d1..6cd36c4 100644 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml @@ -7,6 +7,7 @@ spec: categories: - build displayName: buildpacks-catalog + iconSVGBase64: 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 longDescription: A set of buildpacks, stacks, and builders to use with kpack, a Kubernetes-native implementation of Cloud Native Buildpacks. It supports multiple languages and frameworks. From 130bcc2dc8ec5f53733340ffc043369cfeed5a93 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 13 Aug 2023 16:05:59 +0200 Subject: [PATCH 253/601] Update Tekton Catalog metadata and add version 0.2.1 (#223) Co-authored-by: github-actions --- .../0.2.1.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.2.1.yml diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.2.1.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.2.1.yml new file mode 100644 index 0000000..9a4b25b --- /dev/null +++ b/repo/packages/tekton-catalog.packages.kadras.io/0.2.1.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-catalog.packages.kadras.io.0.2.1 +spec: + licenses: + - Apache 2.0 + refName: tekton-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/tekton-catalog/releases + releasedAt: "2023-08-13T14:04:09Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/tekton-catalog@sha256:01d79cb39f7f341a6932406f513b2b6a126a9b7e97b83c2277c75b26f703fea9 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: tekton-catalog + description: The namespace where to deploy the Tekton Catalog. + type: string + type: object + version: 0.2.1 From fa03fd3f714c18bf53a5988cbc1bf4436b4cb270 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 14 Aug 2023 15:42:47 +0200 Subject: [PATCH 254/601] Update Cartographer metadata and add version 0.7.3 (#224) Co-authored-by: github-actions --- .../cartographer.packages.kadras.io/0.7.3.yml | 82 +++++++++++++++++++ .../metadata.yml | 27 +++--- 2 files changed, 96 insertions(+), 13 deletions(-) create mode 100644 repo/packages/cartographer.packages.kadras.io/0.7.3.yml diff --git a/repo/packages/cartographer.packages.kadras.io/0.7.3.yml b/repo/packages/cartographer.packages.kadras.io/0.7.3.yml new file mode 100644 index 0000000..aac54da --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.7.3.yml @@ -0,0 +1,82 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer.packages.kadras.io.0.7.3 +spec: + licenses: + - Apache 2.0 + refName: cartographer.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases + releasedAt: "2023-08-14T13:40:27Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cartographer@sha256:c121c2ed1e36f0d9ac774a1c0289135a0f262412d8125bbb3c7c14ecbd35e60a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cartographer: + additionalProperties: false + description: Settings for the Cartographer component. + properties: + concurrency: + additionalProperties: false + description: Concurrency configuration for the Cartographer controller. + properties: + max_deliveries: + default: 2 + description: Maximum concurrent Deliveries processed by the Cartographer + controller. + type: integer + max_runnables: + default: 2 + description: Maximum concurrent Runnables processed by the Cartographer + controller. + type: integer + max_workloads: + default: 2 + description: Maximum concurrent Workloads processed by the Cartographer + controller. + type: integer + type: object + resources: + default: {} + description: CPU and memory configuration for the Cartographer controller. + nullable: true + type: object + conventions: + additionalProperties: false + description: Settings for the Cartographer Conventions component. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to authenticate the Cartographer Conventions + controller when deployed on AWS. + nullable: true + type: string + resources: + default: {} + description: CPU and memory configuration for the Cartographer Conventions + controller. + nullable: true + type: object + type: object + version: 0.7.3 diff --git a/repo/packages/cartographer.packages.kadras.io/metadata.yml b/repo/packages/cartographer.packages.kadras.io/metadata.yml index cabdc7e..14cf767 100644 --- a/repo/packages/cartographer.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer.packages.kadras.io/metadata.yml @@ -1,19 +1,20 @@ apiVersion: data.packaging.carvel.dev/v1alpha1 kind: PackageMetadata metadata: + creationTimestamp: null name: cartographer.packages.kadras.io - annotations: - kapp.k14s.io/change-group: carto.run/meta spec: - displayName: Cartographer - providerName: VMware - shortDescription: Kubernetes Native Supply Chain Choreographer. - supportDescription: https://github.com/vmware-tanzu/cartographer - longDescription: |- - Cartographer is a Kubernetes native Choreographer. It allows users to - configure K8s resources into re-usable Supply Chains that can be used to - define all of the stages that an Application Workload must go through to - get to an environment. Requires cert-manager to be installed. + categories: + - supply chains + - golden paths + displayName: cartographer + longDescription: A Kubernetes-native solution to design and build paved paths to + production. Using the choreography pattern, it configures Kubernetes resources + into reusable supply chains that can be used to define all the stages of a path + from the developer laptop to production. maintainers: - - name: VMware - iconSVGBase64: PHN2ZyB3aWR0aD0iMTAwIiBoZWlnaHQ9IjEwMCIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj48cGF0aCBkPSJNIDEwIDEwIEggOTAgViA5MCBIIDEwIEwgMTAgMTAiLz48L3N2Zz4K + - name: Thomas Vitale + providerName: Kadras + shortDescription: Kubernetes-native framework to build paved paths to production. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-cartographer + for community support. From c2f061c48efe4c2e42854cb4a39cfa06b5e5a0bf Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 14 Aug 2023 15:46:46 +0200 Subject: [PATCH 255/601] Remove deprecated package versions --- .github/workflows/release.yml | 2 +- README.md | 2 +- .../argo-cd.packages.kadras.io/2.5.6.yml | 45 -- .../0.5.0.yml | 46 -- .../0.5.1.yml | 46 -- .../0.6.0.yml | 46 -- .../0.6.1.yml | 46 -- .../0.7.0.yml | 46 -- .../0.8.0.yml | 47 -- .../0.8.1.yml | 47 -- .../0.4.0.yml | 40 -- .../0.5.0.yml | 44 -- .../0.4.0.yml | 43 -- .../0.4.0.yml | 145 ----- .../0.5.0.yml | 145 ----- .../0.7.1+tap.1.yml | 146 ----- .../cartographer.packages.kadras.io/0.7.1.yml | 146 ----- .../0.1.0.yml | 50 -- .../0.2.0.yml | 55 -- .../0.2.1.yml | 55 -- .../1.11.0+kadras.2.yml | 128 ----- .../1.11.1+kadras.1.yml | 119 ---- .../1.11.1.yml | 119 ---- .../1.12.1.yml | 145 ----- .../1.12.2.yml | 145 ----- .../contour.packages.kadras.io/1.24.2.yml | 222 -------- .../1.24.3+kadras.1.yml | 222 -------- .../1.24.3+kadras.2.yml | 222 -------- .../contour.packages.kadras.io/1.24.3.yml | 222 -------- .../1.25.0+kadras.1.yml | 211 ------- .../1.25.0+kadras.2.yml | 211 ------- .../1.25.0+kadras.3.yml | 211 ------- .../contour.packages.kadras.io/1.25.0.yml | 222 -------- .../0.10.0-RC1.yml | 258 --------- .../0.10.0-RC2.yml | 258 --------- .../0.7.0.yml | 134 ----- .../0.7.1.yml | 134 ----- .../0.8.0.yml | 138 ----- .../0.9.0.yml | 258 --------- .../0.9.1.yml | 258 --------- .../0.36.0.yml | 77 --- .../0.36.1.yml | 77 --- .../1.0.0.yml | 89 --- .../1.8.4+kadras.1.yml | 45 -- .../1.9.7.yml | 45 -- .../1.10.2+kadras.1.yml | 275 --------- .../1.10.2.yml | 270 --------- .../1.9.2+kadras.1.yml | 234 -------- .../1.9.3+kadras.1.yml | 230 -------- .../1.9.3+kadras.2.yml | 221 -------- .../1.9.3.yml | 235 -------- .../0.10.1+kadras.1.yml | 155 ------ .../kpack.packages.kadras.io/0.10.1.yml | 148 ----- .../kpack.packages.kadras.io/0.11.1.yml | 156 ------ .../kpack.packages.kadras.io/0.11.2.yml | 156 ------ .../kyverno.packages.kadras.io/1.9.2.yml | 31 -- .../0.6.2+kadras.2.yml | 148 ----- .../0.6.3.yml | 148 ----- .../0.2.1.yml | 83 --- .../metadata.yml | 14 - .../0.14.2.yml | 66 --- .../0.2.0.yml | 67 --- .../0.1.0.yml | 36 -- .../0.1.1.yml | 36 -- .../0.2.0.yml | 36 -- .../0.45.0+kadras.1.yml | 518 ----------------- .../0.46.0+kadras.1.yml | 522 ------------------ .../0.46.0+kadras.2.yml | 522 ------------------ .../0.46.0.yml | 522 ------------------ .../0.1.1.yml | 123 ----- 70 files changed, 2 insertions(+), 10362 deletions(-) delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.5.6.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.5.0.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.5.1.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.6.0.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.6.1.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.7.0.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.8.0.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.8.1.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.5.0.yml delete mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.0.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.7.1+tap.1.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.7.1.yml delete mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/0.2.0.yml delete mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/0.2.1.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.1+kadras.1.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.11.1.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.1.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.2.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.24.2.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.24.3+kadras.1.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.24.3+kadras.2.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.24.3.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.25.0+kadras.1.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.25.0+kadras.2.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.25.0+kadras.3.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.25.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC1.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC2.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.7.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.7.1.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.8.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.9.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.9.1.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.1.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.0.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.8.4+kadras.1.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.9.7.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.10.2+kadras.1.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.10.2.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.1.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.2.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.9.3.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.10.1+kadras.1.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.10.1.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.11.1.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.11.2.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.9.2.yml delete mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml delete mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.3.yml delete mode 100644 repo/packages/namespace-setup.packages.kadras.io/0.2.1.yml delete mode 100644 repo/packages/namespace-setup.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml delete mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml delete mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.1.1.yml delete mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.2.0.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.1.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.2.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.46.0.yml delete mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/0.1.1.yml diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 56b9f0f..4d238ac 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.12.0-RC3 + VERSION: 0.12.0-RC4 jobs: build: diff --git a/README.md b/README.md index 78ce1d1..456b375 100644 --- a/README.md +++ b/README.md @@ -15,7 +15,7 @@ This repository contains the following Carvel packages. |---------|-------------| | [argo-cd](https://github.com/kadras-io/package-for-argo-cd) | A declarative and GitOps continuous delivery tool for Kubernetes. | | [buildpacks-catalog](https://github.com/kadras-io/buildpacks-catalog) | A curated set of buildpacks, stacks, and builders to use with kpack, a Kubernetes-native implementation of Cloud Native Buildpacks. | -| [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. Maintained by [VMware Tanzu](https://github.com/vmware-tanzu). | +| [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. | | [cartographer-blueprints](https://github.com/kadras-io/cartographer-blueprints) | Cartographer reusable blueprints to build Kubernetes-native paved paths to production. | | [cartographer-delivery](https://github.com/kadras-io/cartographer-delivery) | Cartographer delivery chains to deploy workloads to a Kubernetes cluster based on GitOps or RegistryOps. | | [cartographer-supply-chains](https://github.com/kadras-io/cartographer-supply-chains) | Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | diff --git a/repo/packages/argo-cd.packages.kadras.io/2.5.6.yml b/repo/packages/argo-cd.packages.kadras.io/2.5.6.yml deleted file mode 100644 index ce470c3..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.5.6.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.5.6 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/argoproj/argo-cd/releases - releasedAt: "2023-01-13T19:15:37Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-argo-cd@sha256:6d6ff476644c0a40323c1a8b73cbe77a1523d00bfb2eaf02c890bee69de9011f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.5.6 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.0.yml deleted file mode 100644 index df0b14d..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.0.yml +++ /dev/null @@ -1,46 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.5.0 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-03-20T16:49:46Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:f6dc63199b4f3b98ee155f2380268cb8819529aab3b777672279f3d414fbf51a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/kpack-build - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.5.0 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.1.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.1.yml deleted file mode 100644 index 142f252..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.5.1.yml +++ /dev/null @@ -1,46 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.5.1 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-03-20T23:20:19Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:4c13e22ca17e61d553f04e049c21800995fd8dabc4a526b4326bd6a09a406ab7 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/kpack-build - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.5.1 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.0.yml deleted file mode 100644 index 92399c1..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.0.yml +++ /dev/null @@ -1,46 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.6.0 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-03-26T12:56:10Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:c6d703887d9890fc012f2c69d3264c7587e5d035d1a203db457b9090e68431de - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/kpack-build - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.6.0 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.1.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.1.yml deleted file mode 100644 index 240328b..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.6.1.yml +++ /dev/null @@ -1,46 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.6.1 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-04-08T19:58:27Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:a608743dbc9d63f7f4f27fb4654fdc0da4bb1770af0c7893541e890b5f8425c4 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.6.1 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.7.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.7.0.yml deleted file mode 100644 index 412c25b..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.7.0.yml +++ /dev/null @@ -1,46 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.7.0 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-04-14T21:42:10Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:0f2ae6cdb13272451b330b74a0dbfb8bbe2b6961e7dd2897db5abb0d9065fab6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.7.0 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.0.yml deleted file mode 100644 index 26050f3..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.0.yml +++ /dev/null @@ -1,47 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.8.0 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-06-19T19:53:33Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:08453e0536e05072ee72446142093cafefcfe825dd01fa44d3746b8c8e46d189 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.8.0 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.1.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.1.yml deleted file mode 100644 index 5ec93f9..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.1.yml +++ /dev/null @@ -1,47 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.8.1 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-07-09T20:28:09Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:d648e7e095dfdf4bb563f10ab0b3bb74f0053d3a5139137d44558d9cb610c838 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.8.1 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml deleted file mode 100644 index 8c5e3af..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.4.0.yml +++ /dev/null @@ -1,40 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.4.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases - releasedAt: "2023-03-19T19:35:54Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:de2b5c420187564a7bf85dfed086bd6d90830c2d3e7807422864956ffd57079c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being created - in the cluster. - items: - default: "" - type: string - type: array - type: object - version: 0.4.0 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.0.yml deleted file mode 100644 index 952942a..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.0.yml +++ /dev/null @@ -1,44 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.5.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases - releasedAt: "2023-03-26T20:14:47Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:ca24f226558ced8a8dcac1335a80d70465fda9e3a0936103098a8349825bb83d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being created - in the cluster. - items: - default: "" - type: string - type: array - tekton_catalog_namespace: - default: tekton-catalog - description: The namespace where the Tekton Catalog package has been installed. - type: string - type: object - version: 0.5.0 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml deleted file mode 100644 index b22b6cb..0000000 --- a/repo/packages/cartographer-delivery.packages.kadras.io/0.4.0.yml +++ /dev/null @@ -1,43 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-delivery.packages.kadras.io.0.4.0 -spec: - refName: cartographer-delivery.packages.kadras.io - releasedAt: "2023-03-19T21:13:33Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-delivery@sha256:53e3f7c26b0b391bb87568025c4d803fff97331b47e3d94626214afa16e9a6fb - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - delivery_chain: - default: basic - description: 'The type of delivery chain to use when deploying workloads. - Options: `basic`.' - type: string - git_access_secret: - default: git-secret - description: The Secret containing authentication credentials for the Git - repository. - type: string - service_account: - default: default - description: The default `ServiceAccount` used by the delivery chain. - type: string - type: object - version: 0.4.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml deleted file mode 100644 index 52b24a9..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.4.0.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.4.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases - releasedAt: "2023-03-19T20:31:32Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:86ae09290c73e960df769e3c004b78c7b59c96d74fc5f5d25b6067c90227d713 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cluster_builder: - default: default - description: The default `ClusterBuilder` used by kpack. - type: string - git_access_secret: - default: git-secret - description: The Secret containing authentication credentials for the Git - repository. - type: string - gitops: - additionalProperties: false - description: Settings for using a GitOps strategy with the supply chain. - properties: - commit: - additionalProperties: false - properties: - message: - default: Update from Cartographer - description: The commit message to use when pushing configuration - changes to Git. - type: string - type: object - pull_request: - additionalProperties: false - description: Settings for using a GitOps approach based on pull requests. - properties: - body: - default: Generated from Cartographer - description: The message body of the pull request. - type: string - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated. - type: string - server_kind: - default: github - description: The type of Git server where to open the pull request. - example: github - type: string - x-example-description: Open a pull request on GitHub - title: - default: Update from Cartographer - description: The title of the pull request. - type: string - type: object - repository: - additionalProperties: false - properties: - name: - default: "" - description: The name of the Git repository. - type: string - owner: - default: "" - description: The owner of the Git repository. - type: string - type: object - server_address: - default: https://github.com - description: The location of the server hosting the specified Git repository. - type: string - strategy: - default: none - description: Whether to commit configuration changes to Git directly - (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps - strategy is applied. - type: string - target_branch: - default: main - description: The target branch where to push configuration changes. - type: string - user: - additionalProperties: false - properties: - email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository. - type: string - name: - default: cartographer - description: The name of the user interacting with the Git repository. - type: string - type: object - type: object - registry: - additionalProperties: false - description: Settings for the OCI Registry used by the supply chain. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data for the OCI Registry where - the supply chain will publish and consume OCI images. - type: string - repository: - default: "" - description: The repository in the OCI Registry where the supply chain - will publish and consume OCI images. - type: string - server: - default: "" - description: The server of the OCI Registry where the supply chain will - publish and consume OCI images. - type: string - type: object - service_account: - default: default - description: The default `ServiceAccount` used by the supply chain. - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' - type: string - type: object - version: 0.4.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.0.yml deleted file mode 100644 index c46ef97..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.0.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.5.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases - releasedAt: "2023-03-26T20:33:06Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:663b5df2072380302e01c6b6b00fa975001a0d7db340782d189d2b08f3cdb96c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cluster_builder: - default: default - description: The default `ClusterBuilder` used by kpack. - type: string - git_access_secret: - default: git-secret - description: The Secret containing authentication credentials for the Git - repository. - type: string - gitops: - additionalProperties: false - description: Settings for using a GitOps strategy with the supply chain. - properties: - commit: - additionalProperties: false - properties: - message: - default: Update from Cartographer - description: The commit message to use when pushing configuration - changes to Git. - type: string - type: object - pull_request: - additionalProperties: false - description: Settings for using a GitOps approach based on pull requests. - properties: - body: - default: Generated from Cartographer - description: The message body of the pull request. - type: string - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated. - type: string - server_kind: - default: github - description: The type of Git server where to open the pull request. - example: github - type: string - x-example-description: Open a pull request on GitHub - title: - default: Update from Cartographer - description: The title of the pull request. - type: string - type: object - repository: - additionalProperties: false - properties: - name: - default: "" - description: The name of the Git repository. - type: string - owner: - default: "" - description: The owner of the Git repository. - type: string - type: object - server_address: - default: https://github.com - description: The location of the server hosting the specified Git repository. - type: string - strategy: - default: none - description: Whether to commit configuration changes to Git directly - (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps - strategy is applied. - type: string - target_branch: - default: main - description: The target branch where to push configuration changes. - type: string - user: - additionalProperties: false - properties: - email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository. - type: string - name: - default: cartographer - description: The name of the user interacting with the Git repository. - type: string - type: object - type: object - registry: - additionalProperties: false - description: Settings for the OCI Registry used by the supply chain. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data for the OCI Registry where - the supply chain will publish and consume OCI images. - type: string - repository: - default: "" - description: The repository in the OCI Registry where the supply chain - will publish and consume OCI images. - type: string - server: - default: "" - description: The server of the OCI Registry where the supply chain will - publish and consume OCI images. - type: string - type: object - service_account: - default: default - description: The default `ServiceAccount` used by the supply chain. - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' - type: string - type: object - version: 0.5.0 diff --git a/repo/packages/cartographer.packages.kadras.io/0.7.1+tap.1.yml b/repo/packages/cartographer.packages.kadras.io/0.7.1+tap.1.yml deleted file mode 100644 index a45ca96..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.7.1+tap.1.yml +++ /dev/null @@ -1,146 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: cartographer.packages.kadras.io.0.7.1+tap.1 -spec: - refName: cartographer.packages.kadras.io - version: 0.7.1+tap.1 - releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.7.1+tap.1 - releasedAt: "2023-03-22T16:00:22Z" - valuesSchema: - openAPIv3: - title: cartographer.packages.kadras.io.0.7.1+tap.1 values schema - properties: - ca_cert_data: - type: string - description: 'Optional: PEM Encoded certificate data for image registries with private CA.' - default: "" - excluded_components: - type: array - items: - type: string - default: [] - description: 'Optional: List of components to exclude from installation (e.g. [conventions])' - aws_iam_role_arn: - type: string - description: 'Optional: Arn role that has access to pull images from ECR container registry' - default: "" - cartographer: - type: object - properties: - concurrency: - type: object - properties: - max_workloads: - type: integer - description: 'Optional: maximum number of Workloads to process concurrently.' - default: 2 - max_deliveries: - type: integer - description: 'Optional: maximum number of Deliverables to process concurrently.' - default: 2 - max_runnables: - type: integer - description: 'Optional: maximum number of Runnables to process concurrently.' - default: 2 - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - conventions: - type: object - properties: - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - template: - spec: - fetch: - - imgpkgBundle: - image: index.docker.io/projectcartographer/package-for-cartographer@sha256:155c08105fccb02f0300d948197f1a77a7a476e5825a3f31daa142b81dfd5ab4 - template: - - ytt: - ignoreUnknownComments: true - paths: - - config - - kbld: - paths: - - .imgpkg/images.yml - - '-' - deploy: - - kapp: {} diff --git a/repo/packages/cartographer.packages.kadras.io/0.7.1.yml b/repo/packages/cartographer.packages.kadras.io/0.7.1.yml deleted file mode 100644 index 356e378..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.7.1.yml +++ /dev/null @@ -1,146 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - name: cartographer.packages.kadras.io.0.7.1 -spec: - refName: cartographer.packages.kadras.io - version: 0.7.1 - releaseNotes: https://github.com/vmware-tanzu/package-for-cartographer/releases/tag/0.7.1 - releasedAt: "2023-03-10T18:38:54Z" - valuesSchema: - openAPIv3: - title: cartographer.packages.kadras.io.0.7.1 values schema - properties: - ca_cert_data: - type: string - description: 'Optional: PEM Encoded certificate data for image registries with private CA.' - default: "" - excluded_components: - type: array - items: - type: string - default: [] - description: 'Optional: List of components to exclude from installation (e.g. [conventions])' - aws_iam_role_arn: - type: string - description: 'Optional: Arn role that has access to pull images from ECR container registry' - default: "" - cartographer: - type: object - properties: - concurrency: - type: object - properties: - max_workloads: - type: integer - description: 'Optional: maximum number of Workloads to process concurrently.' - default: 2 - max_deliveries: - type: integer - description: 'Optional: maximum number of Deliverables to process concurrently.' - default: 2 - max_runnables: - type: integer - description: 'Optional: maximum number of Runnables to process concurrently.' - default: 2 - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - conventions: - type: object - properties: - resources: - type: object - properties: - limits: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of cpu resources to allow the controller to use' - default: 1000m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: maximum amount of memory to allow the controller to use' - default: 128Mi - requests: - type: object - properties: - cpu: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of cpu to reserve' - default: 250m - memory: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - description: 'Optional: minimum amount of memory to reserve' - default: 128Mi - template: - spec: - fetch: - - imgpkgBundle: - image: index.docker.io/projectcartographer/package-for-cartographer@sha256:e39f96dc9b778f81a83e55dd5f30eb38d3f92469787b9152fc1190e1e5de9050 - template: - - ytt: - ignoreUnknownComments: true - paths: - - config - - kbld: - paths: - - .imgpkg/images.yml - - '-' - deploy: - - kapp: {} diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/0.1.0.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/0.1.0.yml deleted file mode 100644 index 408df9d..0000000 --- a/repo/packages/cert-manager-issuers.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,50 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager-issuers.packages.kadras.io.0.1.0 -spec: - licenses: - - Apache 2.0 - refName: cert-manager-issuers.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cert-manager-issuers/releases - releasedAt: "2023-04-10T17:23:11Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cert-manager-issuers@sha256:0bf8807f63cb5756a3006fb6db248aa1209692075d2d79f1510164819c0b2441 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - staging: - default: true - description: Whether to use Let's Encrypt staging, recommended for non-production - environments. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace where Cert Manager is deployed. - type: string - type: object - version: 0.1.0 diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.0.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.0.yml deleted file mode 100644 index 33cf028..0000000 --- a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,55 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager-issuers.packages.kadras.io.0.2.0 -spec: - licenses: - - Apache 2.0 - refName: cert-manager-issuers.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cert-manager-issuers/releases - releasedAt: "2023-06-04T15:25:37Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cert-manager-issuers@sha256:0c8f82d9319e8cf4db2c991a2728eb752cacd57fa6785cebf0bc6a74f7c2a31b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - staging: - default: true - description: Whether to use Let's Encrypt staging, recommended for non-production - environments. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace where cert-manager is deployed. - type: string - type: object - version: 0.2.0 diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.1.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.1.yml deleted file mode 100644 index f07500f..0000000 --- a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.1.yml +++ /dev/null @@ -1,55 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager-issuers.packages.kadras.io.0.2.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager-issuers.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cert-manager-issuers/releases - releasedAt: "2023-06-25T09:18:34Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cert-manager-issuers@sha256:3f1181c087d2d68984d6bf73122b3a77a6a8185bbedc4bacd609e2a84af3b50b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - staging: - default: true - description: Whether to use Let's Encrypt staging, recommended for non-production - environments. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace where cert-manager is deployed. - type: string - type: object - version: 0.2.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml deleted file mode 100644 index 22c4d97..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.11.0+kadras.2.yml +++ /dev/null @@ -1,128 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.11.0+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/jetstack/cert-manager/releases - releasedAt: "2023-03-15T17:05:22Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:c11543ec814053b5c3ca124a6378800c8d37e4c9da560aba7defffee21bc322f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_ca: - additionalProperties: false - description: Settings for configuring a private CA out-of-the-box. - properties: - enable: - default: true - description: Whether to bootstrap a private CA. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy URL. - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL. - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.11.0+kadras.2 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.1+kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.1+kadras.1.yml deleted file mode 100644 index 9885756..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.11.1+kadras.1.yml +++ /dev/null @@ -1,119 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.11.1+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-04-10T16:43:35Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:5eb109783bf54f76e09621437a9bacfe6bd38348ee459883173c89a5e7fcc4fc - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy URL. - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL. - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.11.1+kadras.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.11.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.11.1.yml deleted file mode 100644 index 9750003..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.11.1.yml +++ /dev/null @@ -1,119 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.11.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-04-09T10:36:26Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:102f4dcf95c4f514160ccee432785bd4e1d30ca9747414bca95adedfb70821ef - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy Cert Manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy URL. - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL. - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.11.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.1.yml deleted file mode 100644 index de6a63b..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.12.1.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.12.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-06-04T14:54:32Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:b29ad2d41f9cf13b874e32e24c0e63dce5be5c0df977dda97354c960c2b8ae89 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - probes: - additionalProperties: false - description: Settings for the cert-manager controller probes. - properties: - enabled: - default: false - description: 'Whether to enable to optional probes on the cert-manager - controller. It''s recommended not to enable this unless you encounter - issues with the controller Pods not restarting correctly. More - information: https://github.com/cert-manager/cert-manager/pull/5962.' - type: boolean - type: object - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.12.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.2.yml deleted file mode 100644 index 2eeb1eb..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.12.2.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.12.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-06-25T09:02:36Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:ba67f8e14e8acf12dfdbc7fb8450436401d54c135df957acbbbb5016c7594c7c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - probes: - additionalProperties: false - description: Settings for the cert-manager controller probes. - properties: - enabled: - default: false - description: 'Whether to enable to optional probes on the cert-manager - controller. It''s recommended not to enable this unless you encounter - issues with the controller Pods not restarting correctly. More - information: https://github.com/cert-manager/cert-manager/pull/5962.' - type: boolean - type: object - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.12.2 diff --git a/repo/packages/contour.packages.kadras.io/1.24.2.yml b/repo/packages/contour.packages.kadras.io/1.24.2.yml deleted file mode 100644 index bc98f44..0000000 --- a/repo/packages/contour.packages.kadras.io/1.24.2.yml +++ /dev/null @@ -1,222 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.24.2 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-03-15T20:44:23Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:063d1da1a72087be3e8519e4063f4d5c1308e201963238072d8619bfe8926e3a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If `infrastructureProvider` - is not `aws`, these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: null - description: The external traffic policy for the Envoy service. - If type is `ClusterIP`, this field is ignored. Otherwise, it defaults - to `Cluster` for vsphere and `Local` for others. - nullable: true - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: null - description: The type of Kubernetes service to provision for Envoy. - If not specified, it will default to `NodePort` for local and - vsphere and `LoadBalancer` for others. - nullable: true - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: false - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructureProvider: - default: null - description: The underlying infrastructure provider. Options are `aws`, - `azure`, `local` and `vsphere`. This field is not required, but it enables - better validation and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.24.2 diff --git a/repo/packages/contour.packages.kadras.io/1.24.3+kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.24.3+kadras.1.yml deleted file mode 100644 index 02c6032..0000000 --- a/repo/packages/contour.packages.kadras.io/1.24.3+kadras.1.yml +++ /dev/null @@ -1,222 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.24.3+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-04-09T20:21:58Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:0c532f64333cc088407fda1fc1a685949d1caf1b48a61ba7445f4c13a34b854f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: true - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If `infrastructureProvider` - is not `aws`, these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: null - description: The external traffic policy for the Envoy service. - If type is `ClusterIP`, this field is ignored. Otherwise, it defaults - to `Cluster` for vsphere and `Local` for others. - nullable: true - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: null - description: The type of Kubernetes service to provision for Envoy. - If not specified, it will default to `NodePort` for local and - vsphere and `LoadBalancer` for others. - nullable: true - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: false - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructureProvider: - default: null - description: The underlying infrastructure provider. Options are `aws`, - `azure`, `local` and `vsphere`. This field is not required, but it enables - better validation and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.24.3+kadras.1 diff --git a/repo/packages/contour.packages.kadras.io/1.24.3+kadras.2.yml b/repo/packages/contour.packages.kadras.io/1.24.3+kadras.2.yml deleted file mode 100644 index df5b1be..0000000 --- a/repo/packages/contour.packages.kadras.io/1.24.3+kadras.2.yml +++ /dev/null @@ -1,222 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.24.3+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-04-10T15:17:02Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:8ad525ebd8fe06e636056b13f386d96fe61e484a5acad42a93f0a44f71d85e5f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If `infrastructureProvider` - is not `aws`, these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: null - description: The external traffic policy for the Envoy service. - If type is `ClusterIP`, this field is ignored. Otherwise, it defaults - to `Cluster` for vsphere and `Local` for others. - nullable: true - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: null - description: The type of Kubernetes service to provision for Envoy. - If not specified, it will default to `NodePort` for local and - vsphere and `LoadBalancer` for others. - nullable: true - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: false - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructureProvider: - default: null - description: The underlying infrastructure provider. Options are `aws`, - `azure`, `local` and `vsphere`. This field is not required, but it enables - better validation and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.24.3+kadras.2 diff --git a/repo/packages/contour.packages.kadras.io/1.24.3.yml b/repo/packages/contour.packages.kadras.io/1.24.3.yml deleted file mode 100644 index 807f2fe..0000000 --- a/repo/packages/contour.packages.kadras.io/1.24.3.yml +++ /dev/null @@ -1,222 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.24.3 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-04-09T09:14:36Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:8ad525ebd8fe06e636056b13f386d96fe61e484a5acad42a93f0a44f71d85e5f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If `infrastructureProvider` - is not `aws`, these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: null - description: The external traffic policy for the Envoy service. - If type is `ClusterIP`, this field is ignored. Otherwise, it defaults - to `Cluster` for vsphere and `Local` for others. - nullable: true - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, then load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: null - description: The type of Kubernetes service to provision for Envoy. - If not specified, it will default to `NodePort` for local and - vsphere and `LoadBalancer` for others. - nullable: true - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: false - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructureProvider: - default: null - description: The underlying infrastructure provider. Options are `aws`, - `azure`, `local` and `vsphere`. This field is not required, but it enables - better validation and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.24.3 diff --git a/repo/packages/contour.packages.kadras.io/1.25.0+kadras.1.yml b/repo/packages/contour.packages.kadras.io/1.25.0+kadras.1.yml deleted file mode 100644 index 4ac3906..0000000 --- a/repo/packages/contour.packages.kadras.io/1.25.0+kadras.1.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.25.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-06-26T17:04:45Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:2398774175ef99b5246e51779d1b97c4a2207c2030105de7946bbd9c5ba80d67 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service in - case the `infrastructure_provider` doesn't enforce one already. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy - in case the `infrastructure_provider` doesn't enforce one already. - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - dnsPolicy: - default: ClusterFirst - description: The DNS policy for the Envoy pods. - type: string - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.25.0+kadras.1 diff --git a/repo/packages/contour.packages.kadras.io/1.25.0+kadras.2.yml b/repo/packages/contour.packages.kadras.io/1.25.0+kadras.2.yml deleted file mode 100644 index 8569913..0000000 --- a/repo/packages/contour.packages.kadras.io/1.25.0+kadras.2.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.25.0+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-06-28T05:29:47Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:65eab0bf5c9f4fbaa7699e62bb937078091aace329d97c540b5aeb323461070b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service in - case the `infrastructure_provider` doesn't enforce one already. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy - in case the `infrastructure_provider` doesn't enforce one already. - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - dnsPolicy: - default: ClusterFirst - description: The DNS policy for the Envoy pods. - type: string - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.25.0+kadras.2 diff --git a/repo/packages/contour.packages.kadras.io/1.25.0+kadras.3.yml b/repo/packages/contour.packages.kadras.io/1.25.0+kadras.3.yml deleted file mode 100644 index d1f18a4..0000000 --- a/repo/packages/contour.packages.kadras.io/1.25.0+kadras.3.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.25.0+kadras.3 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-06-28T17:28:13Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:317561fc386ba5596606827e54752eae18ba342cced3c136dd9affccd4f9964f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service in - case the `infrastructure_provider` doesn't enforce one already. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy - in case the `infrastructure_provider` doesn't enforce one already. - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - dnsPolicy: - default: ClusterFirst - description: The DNS policy for the Envoy pods. - type: string - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.25.0+kadras.3 diff --git a/repo/packages/contour.packages.kadras.io/1.25.0.yml b/repo/packages/contour.packages.kadras.io/1.25.0.yml deleted file mode 100644 index c6505e5..0000000 --- a/repo/packages/contour.packages.kadras.io/1.25.0.yml +++ /dev/null @@ -1,222 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.25.0 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-06-25T20:35:33Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:4149e01cad76f558715d447f49e0682503af49aa0095e924831ab5429e677a63 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - aws: - additionalProperties: false - description: AWS-specific settings for the Envoy service. If `infrastructure_provider` - is not `aws`, these settings are ignored. - properties: - loadBalancerType: - default: classic - description: The type of AWS load balancer to provision. Options - are 'classic' and 'nlb'. - type: string - type: object - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service in - case the `infrastructure_provider` doesn't enforce one already. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy - in case the `infrastructure_provider` doesn't enforce one already. - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - dnsPolicy: - default: ClusterFirst - description: The DNS policy for the Envoy pods. - type: string - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `aws`, - `do`, `local` and `vsphere`. This field is not required, but it enables - better validation and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.25.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC1.yml deleted file mode 100644 index e04e54d..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC1.yml +++ /dev/null @@ -1,258 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.10.0-RC1 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-06-23T09:23:49Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:dc45b97ba2bef74f928274c2e0aed8ba33c60e1953b330fb74e26baeecb75adf - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - credentials: - additionalProperties: false - description: Credentials to access the OCI registry. - nullable: true - properties: - password: - default: "" - description: 'Token to access the OCI registry. Note: Use contents - of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the OCI registry. Note: Use - `_json_key` for GCR.' - type: string - type: object - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish and consume OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: supply-chain-registry-credentials - description: The name of the Secret holding the credentials - to access the OCI registry. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish and consume OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.10.0-RC1 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC2.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC2.yml deleted file mode 100644 index 021a39d..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC2.yml +++ /dev/null @@ -1,258 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.10.0-RC2 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-06-23T11:04:54Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:04ece1fb894c7c55f10ad4231fc769254f4ba2dc4aa73abc4d84351973cae070 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - credentials: - additionalProperties: false - description: Credentials to access the OCI registry. - nullable: true - properties: - password: - default: "" - description: 'Token to access the OCI registry. Note: Use contents - of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the OCI registry. Note: Use - `_json_key` for GCR.' - type: string - type: object - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish and consume OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: supply-chain-registry-credentials - description: The name of the Secret holding the credentials - to access the OCI registry. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish and consume OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.10.0-RC2 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.7.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.7.0.yml deleted file mode 100644 index b9e46fa..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.7.0.yml +++ /dev/null @@ -1,134 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.7.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-03-20T17:20:50Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:771170c2473d7d586674a37df6ce03051548e3c3ca9fba0eb83ac0902f1108ba - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package. - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages. - properties: - excluded: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform. - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - type: object - version: 0.7.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.7.1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.7.1.yml deleted file mode 100644 index 6ad9af7..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.7.1.yml +++ /dev/null @@ -1,134 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.7.1 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-03-20T23:25:56Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:1175759495f0674418102117d92524735bb9b8e9050d21e27605317e6d339aba - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package. - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages. - properties: - excluded: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform. - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - type: object - version: 0.7.1 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.8.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.8.0.yml deleted file mode 100644 index d5f9b94..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.8.0.yml +++ /dev/null @@ -1,138 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.8.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-03-26T20:58:04Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:393d106f45250c145de181d0c4a7985efd7a8fed5593904d011866021f77c3a2 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - namespace_setup: - default: {} - description: Configuration for the Namespace Setup package. - nullable: true - packages: - additionalProperties: false - description: Configuration for the platform packages. - properties: - excluded: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - namespace: - default: "" - description: The namespace where to install the platform. - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - type: object - version: 0.8.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.9.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.9.0.yml deleted file mode 100644 index cc27f6a..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.9.0.yml +++ /dev/null @@ -1,258 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.9.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-04-10T21:51:52Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:70a323388e87c20c853125e2b89552c45022999d98aae1917c27509eefee7a44 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: supply-chain-cosign-key-pair - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - credentials: - additionalProperties: false - description: Credentials to access the OCI registry. - nullable: true - properties: - password: - default: "" - description: 'Token to access the OCI registry. Note: Use contents - of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the OCI registry. Note: Use - `_json_key` for GCR.' - type: string - type: object - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish and consume OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: supply-chain-registry-credentials - description: The name of the Secret holding the credentials - to access the OCI registry. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish and consume OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.9.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.9.1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.9.1.yml deleted file mode 100644 index e68dabf..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.9.1.yml +++ /dev/null @@ -1,258 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.9.1 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-04-16T08:51:13Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:ebc0dc7f0077eb18b1430656ae4e927739b681e5ea32737f6bbdf1f6e2bf0cf7 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: supply-chain-cosign-key-pair - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - credentials: - additionalProperties: false - description: Credentials to access the OCI registry. - nullable: true - properties: - password: - default: "" - description: 'Token to access the OCI registry. Note: Use contents - of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the OCI registry. Note: Use - `_json_key` for GCR.' - type: string - type: object - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish and consume OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: supply-chain-registry-credentials - description: The name of the Secret holding the credentials - to access the OCI registry. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish and consume OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.9.1 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml deleted file mode 100644 index 353f91a..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.0.yml +++ /dev/null @@ -1,77 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.36.0 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases - releasedAt: "2023-03-18T23:06:51Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:24aa6509b06f16bb1ad67e62013af2e781c1ee57e5342c4537ba32493bc1ec7e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller. - type: string - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - description: CPU limits configuration for the `source-controller` - Deployment. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the `source-controller` - Deployment. - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the `source-controller` Service. - type: integer - type: object - version: 0.36.0 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.1.yml deleted file mode 100644 index 37828c7..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/0.36.1.yml +++ /dev/null @@ -1,77 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.0.36.1 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases - releasedAt: "2023-04-09T09:25:44Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:40627427c34909205b7dc99008f44db39e180c95cb26776348df67677cb98355 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: source-system - description: The namespace where to install FluxCD Source Controller. - type: string - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 1000m - description: CPU limits configuration for the `source-controller` - Deployment. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the `source-controller` - Deployment. - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the `source-controller` Service. - type: integer - type: object - version: 0.36.1 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.0.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.0.yml deleted file mode 100644 index beb5a9a..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.0.yml +++ /dev/null @@ -1,89 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.1.0.0 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases - releasedAt: "2023-07-09T16:34:48Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:531fd243b5f9b0174781fd975a8c934538a2dce66b8c8a9dda5e009b71d20ed4 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: flux-source-system - description: The namespace where to install FluxCD Source Controller. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment. - properties: - limits: - additionalProperties: false - description: Resource limits configuration for the `source-controller` - Deployment. - properties: - cpu: - default: 1000m - description: CPU limits configuration for the `source-controller` - Deployment. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the `source-controller` - Deployment. - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the `source-controller` Service. - type: integer - type: object - version: 1.0.0 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.8.4+kadras.1.yml b/repo/packages/knative-eventing.packages.kadras.io/1.8.4+kadras.1.yml deleted file mode 100644 index 70a6beb..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.8.4+kadras.1.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.8.4+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/knative/eventing/releases - releasedAt: "2023-01-12T23:29:53Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:7758f1009ff9aa4918ca516b8502ebe327e14f3ad5cabc97d1c186f2fbb7e58d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.8.4+kadras.1 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.9.7.yml b/repo/packages/knative-eventing.packages.kadras.io/1.9.7.yml deleted file mode 100644 index c64a5c9..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.9.7.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.9.7 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases - releasedAt: "2023-04-13T21:14:52Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:fd966e4ceb802a6bbfb371cde9bd6c4af74631b48520b3bb0c5a65b6e0f22fa9 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.9.7 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.10.2+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.10.2+kadras.1.yml deleted file mode 100644 index 99b7fe1..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.10.2+kadras.1.yml +++ /dev/null @@ -1,275 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.10.2+kadras.1 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-06-26T17:22:13Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:bd8500aea7ea1da39a1b2b0ca935a4385cc0b6b36e29159bf855d6ef22d8d2f2 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, no value is - specified and the system default is used. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, no value - is specified and the system default is used. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, no value - is specified and the system default is used. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.10.2+kadras.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.10.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.10.2.yml deleted file mode 100644 index 6e1f393..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.10.2.yml +++ /dev/null @@ -1,270 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.10.2 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-06-14T20:43:56Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:0b554dd306b48672e7f79f5f21997d499da6287e97aadfb253c9a693848ba79e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, no value is - specified and the system default is used. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, no value - is specified and the system default is used. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, no value - is specified and the system default is used. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.10.2 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml deleted file mode 100644 index d60c29c..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.9.2+kadras.1.yml +++ /dev/null @@ -1,234 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.9.2+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-03-15T20:10:57Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:862e3592fef2047812978c348a20ad1d019061f11e949a6af6c30513f3408b7b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - domain: - additionalProperties: false - description: Domain configuration stored in the `config-domain` ConfigMap. - properties: - name: - default: 127.0.0.1.sslip.io - description: Domain name for Knative Services. It must be a valid - DNS name. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Enabled - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy URL. - type: string - https_proxy: - default: "" - description: The HTTPS proxy URL. - type: string - no_proxy: - default: "" - description: For which domains the proxy should not be used. - type: string - type: object - tls: - additionalProperties: false - description: Settings for TLS certificates. - properties: - certmanager: - additionalProperties: false - description: Cert Manager configuration stored in the `config-certmanager` - ConfigMap. - properties: - clusterissuer: - default: "" - description: A reference to the ClusterIssuer to use if you want - to enable autoTLS. - type: string - type: object - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.9.2+kadras.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.1.yml deleted file mode 100644 index c0e2abc..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.1.yml +++ /dev/null @@ -1,230 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.9.3+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-04-09T20:50:31Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:1a2c2097864d408b01587e03255d0276245a19f56c96766264e0a598ea48e322 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Enabled - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - tls: - additionalProperties: false - description: Settings for TLS certificates. - properties: - certmanager: - additionalProperties: false - description: Cert Manager configuration stored in the `config-certmanager` - ConfigMap. - properties: - clusterissuer: - default: "" - description: A reference to the ClusterIssuer to use if you want - to enable autoTLS. - type: string - type: object - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.9.3+kadras.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.2.yml deleted file mode 100644 index 8f9b331..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.9.3+kadras.2.yml +++ /dev/null @@ -1,221 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.9.3+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-04-10T15:34:58Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:744ed4a68edd201d0a138a561fb396655e808bca5ae88d4ec49d6e28418e2c42 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.9.3+kadras.2 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.9.3.yml b/repo/packages/knative-serving.packages.kadras.io/1.9.3.yml deleted file mode 100644 index f278aa0..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.9.3.yml +++ /dev/null @@ -1,235 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.9.3 -spec: - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-04-09T14:40:05Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:a80927dec3e328e9116bda6239a2256466aad9a05e91a34418ef571dfeaa2c61 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - domain: - additionalProperties: false - description: Domain configuration stored in the `config-domain` ConfigMap. - properties: - name: - default: "" - description: Domain name for Knative Services. It must be a valid - DNS name. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Enabled - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - tls: - additionalProperties: false - description: Settings for TLS certificates. - properties: - certmanager: - additionalProperties: false - description: Cert Manager configuration stored in the `config-certmanager` - ConfigMap. - properties: - clusterissuer: - default: "" - description: A reference to the ClusterIssuer to use if you want - to enable autoTLS. - type: string - type: object - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.9.3 diff --git a/repo/packages/kpack.packages.kadras.io/0.10.1+kadras.1.yml b/repo/packages/kpack.packages.kadras.io/0.10.1+kadras.1.yml deleted file mode 100644 index 5797421..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.10.1+kadras.1.yml +++ /dev/null @@ -1,155 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.10.1+kadras.1 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kpack/releases - releasedAt: "2023-04-09T06:54:49Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kpack@sha256:bc2c853b0bbf87d6787f1a989559af1e6b1e144b3619effac1bd729e4ff16e77 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'PEM-encoded certificate data that kpack controller will use - to trust TLS connections based on a custom CA with a container registry. - Note: This will not be injected into builds, you need to use the cert - injection webhook with the `kpack.io/build` label value.' - type: string - config: - additionalProperties: false - description: Settings for kpack. - properties: - injected_sidecar_support: - default: false - description: Enable support for injected sidecars. - type: boolean - type: object - controller: - additionalProperties: false - description: Settings for the the kpack controller. - properties: - resources: - additionalProperties: false - description: Resource configuration for the kpack-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory limits configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `500Mi`. - type: string - type: object - requests: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory requests configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `100Mi`. - type: string - type: object - type: object - type: object - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to access the default container repository - if the registry is on AWS. - nullable: true - type: string - credentials: - additionalProperties: false - description: Read/write credentials to access the default container - repository. - nullable: true - properties: - password: - default: "" - description: 'Token to access the default container repository. - Note: Use contents of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the default container repository. - Note: Use `_json_key` for GCR.' - type: string - type: object - name: - default: "" - description: The default repository to use for builder images and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the default container repository. - nullable: true - properties: - create_export: - default: false - description: Whether to create a SecretExport resource to export - the Secret from the source namespace to the kpack namespace. Not - needed when installing kpack as part of the Kadras Enginnering - Platform. - type: boolean - name: - default: "" - description: The name of the Secret holding the credentials to access - the default container repository. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the default container repository. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - type: object - version: 0.10.1+kadras.1 diff --git a/repo/packages/kpack.packages.kadras.io/0.10.1.yml b/repo/packages/kpack.packages.kadras.io/0.10.1.yml deleted file mode 100644 index 7f3b6b7..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.10.1.yml +++ /dev/null @@ -1,148 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.10.1 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kpack/releases - releasedAt: "2023-03-18T17:13:37Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kpack@sha256:ad95f95ced2a4311c32bed590eb6207baf8cf240137ae292dc0ef0baa214b68b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'PEM-encoded certificate data that kpack controller will use - to trust TLS connections based on a custom CA with a container registry. - Note: This will not be injected into builds, you need to use the cert - injection webhook with the `kpack.io/build` label value.' - type: string - config: - additionalProperties: false - description: Settings for kpack. - properties: - injected_sidecar_support: - default: false - description: Enable support for injected sidecars. - type: boolean - type: object - controller: - additionalProperties: false - description: Settings for the the kpack controller. - properties: - resources: - additionalProperties: false - description: Resource configuration for the kpack-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory limits configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `500Mi`. - type: string - type: object - requests: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory requests configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `100Mi`. - type: string - type: object - type: object - type: object - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to access the default container repository - if the registry is on AWS. - nullable: true - type: string - credentials: - additionalProperties: false - description: Read/write credentials to access the default container - repository. - nullable: true - properties: - password: - default: "" - description: 'Token to access the default container repository. - Note: Use contents of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the default container repository. - Note: Use `_json_key` for GCR.' - type: string - type: object - name: - default: "" - description: The default repository to use for builder images and dependencies. - example: ghcr.io/thomasvitale/kpack - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the default container repository. - nullable: true - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - the default container repository. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the default container repository. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy - type: string - type: object - type: object - version: 0.10.1 diff --git a/repo/packages/kpack.packages.kadras.io/0.11.1.yml b/repo/packages/kpack.packages.kadras.io/0.11.1.yml deleted file mode 100644 index c6f0ee7..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.11.1.yml +++ /dev/null @@ -1,156 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.11.1 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kpack/releases - releasedAt: "2023-06-20T18:08:24Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kpack@sha256:0fd651b905a025af143cc3adf56e99d3cfb8517a75df8970487b2ce092160a05 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'PEM-encoded certificate data that kpack controller will use - to trust TLS connections based on a custom CA with a container registry. - Note: This will not be injected into builds, you need to use the cert - injection webhook with the `kpack.io/build` label value.' - type: string - config: - additionalProperties: false - description: Settings for kpack. - properties: - injected_sidecar_support: - default: false - description: Enable support for injected sidecars. - type: boolean - type: object - controller: - additionalProperties: false - description: Settings for the the kpack controller. - properties: - resources: - additionalProperties: false - description: Resource configuration for the kpack-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory limits configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `500Mi`. - type: string - type: object - requests: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory requests configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `100Mi`. - type: string - type: object - type: object - type: object - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to access the default container repository - if the registry is on AWS. - nullable: true - type: string - credentials: - additionalProperties: false - description: Read/write credentials to access the default container - repository. - nullable: true - properties: - password: - default: "" - description: 'Token to access the default container repository. - Note: Use contents of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the default container repository. - Note: Use `_json_key` for GCR.' - type: string - type: object - name: - default: "" - description: The default repository to use for builder images and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the default container repository. - nullable: true - properties: - create_export: - default: false - description: Whether to create a SecretExport resource to export - the Secret from the source namespace to the kpack namespace. Not - needed when installing kpack as part of the Kadras Enginnering - Platform. - type: boolean - name: - default: "" - description: The name of the Secret holding the credentials to access - the default container repository. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the default container repository. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy (e.g. Kubernetes - API address). - type: string - type: object - type: object - version: 0.11.1 diff --git a/repo/packages/kpack.packages.kadras.io/0.11.2.yml b/repo/packages/kpack.packages.kadras.io/0.11.2.yml deleted file mode 100644 index 53ca8f1..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.11.2.yml +++ /dev/null @@ -1,156 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.11.2 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kpack/releases - releasedAt: "2023-07-09T20:17:34Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kpack@sha256:dcdb4cb397741df8fc8c0aa4f43132b9c1e70901909271faa6a7aa0bc35319a3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'PEM-encoded certificate data that kpack controller will use - to trust TLS connections based on a custom CA with a container registry. - Note: This will not be injected into builds, you need to use the cert - injection webhook with the `kpack.io/build` label value.' - type: string - config: - additionalProperties: false - description: Settings for kpack. - properties: - injected_sidecar_support: - default: false - description: Enable support for injected sidecars. - type: boolean - type: object - controller: - additionalProperties: false - description: Settings for the the kpack controller. - properties: - resources: - additionalProperties: false - description: Resource configuration for the kpack-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory limits configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `500Mi`. - type: string - type: object - requests: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory requests configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `100Mi`. - type: string - type: object - type: object - type: object - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to access the default container repository - if the registry is on AWS. - nullable: true - type: string - credentials: - additionalProperties: false - description: Read/write credentials to access the default container - repository. - nullable: true - properties: - password: - default: "" - description: 'Token to access the default container repository. - Note: Use contents of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the default container repository. - Note: Use `_json_key` for GCR.' - type: string - type: object - name: - default: "" - description: The default repository to use for builder images and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the default container repository. - nullable: true - properties: - create_export: - default: false - description: Whether to create a SecretExport resource to export - the Secret from the source namespace to the kpack namespace. Not - needed when installing kpack as part of the Kadras Enginnering - Platform. - type: boolean - name: - default: "" - description: The name of the Secret holding the credentials to access - the default container repository. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the default container repository. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy (e.g. Kubernetes - API address). - type: string - type: object - type: object - version: 0.11.2 diff --git a/repo/packages/kyverno.packages.kadras.io/1.9.2.yml b/repo/packages/kyverno.packages.kadras.io/1.9.2.yml deleted file mode 100644 index 422441d..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.9.2.yml +++ /dev/null @@ -1,31 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.9.2 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2023-04-14T22:19:01Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:d0cded82b9bed8ccf4cdede857cbe57d19503dd1c57d90375f84273698cfcb8a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 1.9.2 diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml deleted file mode 100644 index e01a950..0000000 --- a/repo/packages/metrics-server.packages.kadras.io/0.6.2+kadras.2.yml +++ /dev/null @@ -1,148 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: metrics-server.packages.kadras.io.0.6.2+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: metrics-server.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases - releasedAt: "2023-03-19T08:53:06Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-metrics-server@sha256:c401d928cf929e8d3307c82103b0fddbd9dca2126e988a49acab719be5c7ae2f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - daemonset: - additionalProperties: false - properties: - updateStrategy: - default: null - description: Update strategy of daemonsets - nullable: true - type: string - type: object - deployment: - additionalProperties: false - properties: - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: null - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - nullable: true - type: integer - maxUnavailable: - default: null - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - nullable: true - type: integer - type: object - updateStrategy: - default: null - description: Update strategy of deployments - nullable: true - type: string - type: object - metricsServer: - additionalProperties: false - properties: - config: - additionalProperties: false - properties: - apiServiceInsecureTLS: - default: true - description: Whether to enable insecure TLS for metrics-server api - service - type: boolean - args: - default: [] - description: Arguments passed into metrics-server container - items: - default: "" - type: string - type: array - probe: - additionalProperties: false - properties: - failureThreshold: - default: 3 - description: Probe failureThreshold of metrics-server deployment - type: integer - periodSeconds: - default: 10 - description: Probe period of metrics-server deployment - type: integer - type: object - securePort: - default: 4443 - description: The HTTPS secure port used by metrics-server - type: integer - tolerations: - default: [] - description: Metrics-server deployment tolerations - nullable: true - updateStrategy: - default: RollingUpdate - description: The update strategy of the metrics-server deployment - type: string - type: object - createNamespace: - default: true - description: Whether to create namespace specified for metrics-server - type: boolean - image: - additionalProperties: false - properties: - name: - default: "" - description: The path of image - type: string - pullPolicy: - default: IfNotPresent - description: The pull policy of image - type: string - repository: - default: "" - description: The repository of metrics-server image - type: string - tag: - default: "" - description: The image tag - type: string - type: object - namespace: - default: null - description: The namespace value used by older templates, will be overwriten - if top level namespace is present, kept for backward compatibility - nullable: true - type: string - type: object - namespace: - default: kube-system - description: The namespace in which metrics-server is deployed - type: string - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - type: object - version: 0.6.2+kadras.2 diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.3.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.3.yml deleted file mode 100644 index 1afedf9..0000000 --- a/repo/packages/metrics-server.packages.kadras.io/0.6.3.yml +++ /dev/null @@ -1,148 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: metrics-server.packages.kadras.io.0.6.3 -spec: - licenses: - - Apache 2.0 - refName: metrics-server.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases - releasedAt: "2023-04-09T14:51:57Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-metrics-server@sha256:d0079992047bd7998a0f228fc45ae1389ad88d5098db737a90ea7091d676a44d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - daemonset: - additionalProperties: false - properties: - updateStrategy: - default: null - description: Update strategy of daemonsets - nullable: true - type: string - type: object - deployment: - additionalProperties: false - properties: - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: null - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - nullable: true - type: integer - maxUnavailable: - default: null - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - nullable: true - type: integer - type: object - updateStrategy: - default: null - description: Update strategy of deployments - nullable: true - type: string - type: object - metricsServer: - additionalProperties: false - properties: - config: - additionalProperties: false - properties: - apiServiceInsecureTLS: - default: true - description: Whether to enable insecure TLS for metrics-server api - service - type: boolean - args: - default: [] - description: Arguments passed into metrics-server container - items: - default: "" - type: string - type: array - probe: - additionalProperties: false - properties: - failureThreshold: - default: 3 - description: Probe failureThreshold of metrics-server deployment - type: integer - periodSeconds: - default: 10 - description: Probe period of metrics-server deployment - type: integer - type: object - securePort: - default: 4443 - description: The HTTPS secure port used by metrics-server - type: integer - tolerations: - default: [] - description: Metrics-server deployment tolerations - nullable: true - updateStrategy: - default: RollingUpdate - description: The update strategy of the metrics-server deployment - type: string - type: object - createNamespace: - default: true - description: Whether to create namespace specified for metrics-server - type: boolean - image: - additionalProperties: false - properties: - name: - default: "" - description: The path of image - type: string - pullPolicy: - default: IfNotPresent - description: The pull policy of image - type: string - repository: - default: "" - description: The repository of metrics-server image - type: string - tag: - default: "" - description: The image tag - type: string - type: object - namespace: - default: null - description: The namespace value used by older templates, will be overwriten - if top level namespace is present, kept for backward compatibility - nullable: true - type: string - type: object - namespace: - default: kube-system - description: The namespace in which metrics-server is deployed - type: string - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - type: object - version: 0.6.3 diff --git a/repo/packages/namespace-setup.packages.kadras.io/0.2.1.yml b/repo/packages/namespace-setup.packages.kadras.io/0.2.1.yml deleted file mode 100644 index e6f5ba6..0000000 --- a/repo/packages/namespace-setup.packages.kadras.io/0.2.1.yml +++ /dev/null @@ -1,83 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: namespace-setup.packages.kadras.io.0.2.1 -spec: - refName: namespace-setup.packages.kadras.io - releasedAt: "2023-01-13T19:34:08Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/namespace-setup@sha256:78cbf82a77112729790c136804582c06b2445344dec2f70049b4bebf8f138053 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - gitops: - additionalProperties: false - description: Configuration to access the Git repositories used in the GitOps - workflows - properties: - password: - default: "" - description: The password for the Git server used in the GitOps workflows - type: string - server: - default: https://github.com - description: The Git server hosting the Git repositories used in the - GitOps workflows - type: string - username: - default: "" - description: The username for the Git server used in the GitOps workflows - type: string - type: object - namespaces: - default: [] - description: Configuration for developer namespaces - items: - additionalProperties: false - description: Details about the namespace to configure - properties: - exists: - default: false - type: boolean - name: - default: "" - type: string - type: object - type: array - registry: - additionalProperties: false - description: Configuration to access the OCI registry where the Kadras packages - are stored - properties: - password: - default: "" - description: The password for the OCI registry server where the Kadras - packages are stored - type: string - server: - default: "" - description: The OCI registry server where the Kadras packages are stored - type: string - username: - default: "" - description: The username for the OCI registry server where the Kadras - packages are stored - type: string - type: object - type: object - version: 0.2.1 diff --git a/repo/packages/namespace-setup.packages.kadras.io/metadata.yml b/repo/packages/namespace-setup.packages.kadras.io/metadata.yml deleted file mode 100644 index ebbe76a..0000000 --- a/repo/packages/namespace-setup.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,14 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: namespace-setup.packages.kadras.io -spec: - categories: - - environment provisioning - displayName: namespace-setup - longDescription: namespace-setup.packages.kadras.io - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: namespace-setup.packages.kadras.io diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml deleted file mode 100644 index 9373bd5..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.14.2.yml +++ /dev/null @@ -1,66 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.14.2 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releasedAt: "2023-03-09T08:21:37Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:2ad6dca5a96ac317c01b05d2e62c3c45370888a75f9ba2b7ab946bc53bb38634 - template: - - ytt: - paths: - - config/package-bundle/config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - create_namespace: - default: true - description: Whether to create namespace specified for secretgen-controller - type: boolean - deployment: - additionalProperties: false - description: Configuration for secretgen-controller deployment - properties: - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: 0 - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - type: integer - maxUnavailable: - default: 1 - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - type: integer - type: object - updateStrategy: - default: "" - description: Update strategy of deployments, empty uses default strategy - type: string - type: object - namespace: - default: secretgen-controller - description: The namespace in which to deploy secretgen-controller - type: string - type: object - version: 0.14.2 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml deleted file mode 100644 index 785e00b..0000000 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,67 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: spring-boot-conventions.packages.kadras.io.0.2.0 -spec: - licenses: - - Apache 2.0 - refName: spring-boot-conventions.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases - releasedAt: "2023-03-19T10:32:02Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:bc1375f0429edb32a79f0687c87734153220ceea66f937ec1c4fc47e494022ac - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: spring-boot-conventions - description: The namespace where to install Spring Boot Conventions - type: string - resources: - additionalProperties: false - description: Resource configuration for the Convention Server - properties: - limits: - additionalProperties: false - description: Resource limits - properties: - cpu: - default: 100m - description: CPU limits - type: string - memory: - default: 256Mi - description: Memory limits - type: string - type: object - requests: - additionalProperties: false - description: Resource requests - properties: - cpu: - default: 100m - description: CPU requests - type: string - memory: - default: 20Mi - description: Memory requests - type: string - type: object - type: object - type: object - version: 0.2.0 diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.1.0.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.1.0.yml deleted file mode 100644 index e7146d0..0000000 --- a/repo/packages/tekton-catalog.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-catalog.packages.kadras.io.0.1.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/tekton-catalog/releases - releasedAt: "2023-03-26T19:47:08Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/tekton-catalog@sha256:9a5c9eb1a47f517ef49cb755fa490ac7ffabf295a640da3dc9a220f7dbb5ece9 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: tekton-catalog - description: The namespace where to deploy the Tekton Catalog. - type: string - type: object - version: 0.1.0 diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.1.1.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.1.1.yml deleted file mode 100644 index b2c2896..0000000 --- a/repo/packages/tekton-catalog.packages.kadras.io/0.1.1.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-catalog.packages.kadras.io.0.1.1 -spec: - licenses: - - Apache 2.0 - refName: tekton-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/tekton-catalog/releases - releasedAt: "2023-04-08T21:09:48Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/tekton-catalog@sha256:59e6c0acd0c9dc040013494f23dac0f5d038f7b4cab9d531c5d33465e7bb5eb1 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: tekton-catalog - description: The namespace where to deploy the Tekton Catalog. - type: string - type: object - version: 0.1.1 diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.2.0.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.2.0.yml deleted file mode 100644 index d976c69..0000000 --- a/repo/packages/tekton-catalog.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-catalog.packages.kadras.io.0.2.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/tekton-catalog/releases - releasedAt: "2023-07-19T15:59:49Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/tekton-catalog@sha256:278c42170c0c6e84edc3641e06de4b1618932b77273d98192c9e7078d021f16b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: tekton-catalog - description: The namespace where to deploy the Tekton Catalog. - type: string - type: object - version: 0.2.0 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml deleted file mode 100644 index 371f900..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.45.0+kadras.1.yml +++ /dev/null @@ -1,518 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.45.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-03-15T17:44:31Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:7a4cfa6bc0bedd1d73eeb3db3a637716ffa839fd35adc44769bd14dd6b67a2bc - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config-defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - default-affinity-assistant-pod-template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - default-cloud-events-sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, - and Run lifeycle events. If no sink is specified, no CloudEvent is - generated. - type: string - default-forbidden-env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - default-managed-by-label-value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - default-max-matrix-combinations-count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - default-pod-template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - default-service-account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - default-task-run-workspace-binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - default-timeout-minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - config-leader-election: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel.controller: - default: info - description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` - Deployments. - type: string - loglevel.webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - zap-logger-config: - default: | - { - "level": "info", - "development": false, - "sampling": { - "initial": 100, - "thereafter": 100 - }, - "outputPaths": ["stdout"], - "errorOutputPaths": ["stderr"], - "encoding": "json", - "encoderConfig": { - "timeKey": "timestamp", - "levelKey": "severity", - "nameKey": "logger", - "callerKey": "caller", - "messageKey": "message", - "stacktraceKey": "stacktrace", - "lineEnding": "", - "levelEncoder": "", - "timeEncoder": "iso8601", - "durationEncoder": "", - "callerEncoder": "" - } - } - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - config-observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics.allow-stackdriver-custom-metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver using - 'global' resource type and custom metric type. Ignore if `backend_destination` - is not `stackdriver`. - type: string - metrics.backend-destination: - default: prometheus - description: The destination for the metrics produced by the Tekton - components. - type: string - metrics.pipelinerun.duration-type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram value - isn’t available when the `pipelinerun` level is selected. - type: string - metrics.pipelinerun.level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling which labels - are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), - (namespace).' - type: string - metrics.stackdriver-project-id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the cluster's - project if this field is not provided. - type: string - metrics.taskrun.duration-type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram value - isn’t available when the `taskrun` level is selected. - type: string - metrics.taskrun.level: - default: task - description: 'Level for the TaskRun metrics controlling which labels - are included: (taskrun, task, namespace), (task, namespace), (namespace).' - type: string - type: object - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - type: object - type: object - feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await-sidecar-readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - custom-task-version: - default: v1beta1 - description: Setting this flag will determine the version for custom - tasks created by PipelineRuns. - type: string - disable-affinity-assistant: - default: "false" - description: Setting this flag to `true` will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable-creds-init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable-api-fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable-provenance-in-status: - default: "false" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable-tekton-oci-bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce-nonfalsifiablity: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - require-git-ssh-secret-known-hosts: - default: "false" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - resource-verification-mode: - default: skip - description: Setting this flag to `enforce` will enforce verification - of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. - `warn` will only log the err message and `skip` will skip the whole - verification. - type: string - running-in-environment-with-injected-sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send-cloudevents-for-runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - enable: - default: false - description: Setting this flag to `true` enables the trace exporter. - type: boolean - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - endpoint: - default: "" - description: The endpoint where the distributed tracing backend - accepts OpenTelemetry traces using the Jaeger protocol. - type: string - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundleresolver-config: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default-kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default-service-account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster-resolver-config: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - git-resolver-config: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api-token-secret-key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api-token-secret-name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api-token-secret-namespace: - default: default - description: The namespace containing the API token secret. - type: string - default-org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default-revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default-url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch-timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm-type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server-url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hubresolver-config: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default-artifact-hub-pipeline-catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default-artifact-hub-task-catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-tekton-hub-catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default-type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - resolvers-feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable-bundles-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable-cluster-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable-git-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable-hub-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.45.0+kadras.1 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.1.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.1.yml deleted file mode 100644 index a4eb4cc..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.1.yml +++ /dev/null @@ -1,522 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.46.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-03-26T20:51:17Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:61345735ba6f6a25f39395e8c1b1a7890a16123b448076b0d95a02eccccc0804 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config-defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - default-affinity-assistant-pod-template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - default-cloud-events-sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, - and Run lifeycle events. If no sink is specified, no CloudEvent is - generated. - type: string - default-forbidden-env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - default-managed-by-label-value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - default-max-matrix-combinations-count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - default-pod-template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - default-resolver-type: - default: "" - description: The default resolver type to be used in the cluster. - type: string - default-service-account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - default-task-run-workspace-binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - default-timeout-minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - config-leader-election: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel.controller: - default: info - description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` - Deployments. - type: string - loglevel.webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - zap-logger-config: - default: | - { - "level": "info", - "development": false, - "sampling": { - "initial": 100, - "thereafter": 100 - }, - "outputPaths": ["stdout"], - "errorOutputPaths": ["stderr"], - "encoding": "json", - "encoderConfig": { - "timeKey": "timestamp", - "levelKey": "severity", - "nameKey": "logger", - "callerKey": "caller", - "messageKey": "message", - "stacktraceKey": "stacktrace", - "lineEnding": "", - "levelEncoder": "", - "timeEncoder": "iso8601", - "durationEncoder": "", - "callerEncoder": "" - } - } - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - config-observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics.allow-stackdriver-custom-metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver using - 'global' resource type and custom metric type. Ignore if `backend_destination` - is not `stackdriver`. - type: string - metrics.backend-destination: - default: prometheus - description: The destination for the metrics produced by the Tekton - components. - type: string - metrics.pipelinerun.duration-type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram value - isn’t available when the `pipelinerun` level is selected. - type: string - metrics.pipelinerun.level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling which labels - are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), - (namespace).' - type: string - metrics.stackdriver-project-id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the cluster's - project if this field is not provided. - type: string - metrics.taskrun.duration-type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram value - isn’t available when the `taskrun` level is selected. - type: string - metrics.taskrun.level: - default: task - description: 'Level for the TaskRun metrics controlling which labels - are included: (taskrun, task, namespace), (task, namespace), (namespace).' - type: string - type: object - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - type: object - type: object - feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await-sidecar-readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - custom-task-version: - default: v1beta1 - description: Setting this flag will determine the version for custom - tasks created by PipelineRuns. - type: string - disable-affinity-assistant: - default: "false" - description: Setting this flag to `true` will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable-creds-init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable-api-fields: - default: beta - description: Setting this flag will determine which gated features are - enabled. - type: string - enable-provenance-in-status: - default: "false" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable-tekton-oci-bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce-nonfalsifiablity: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - require-git-ssh-secret-known-hosts: - default: "false" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - resource-verification-mode: - default: skip - description: Setting this flag to `enforce` will enforce verification - of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. - `warn` will only log the err message and `skip` will skip the whole - verification. - type: string - running-in-environment-with-injected-sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send-cloudevents-for-runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - enable: - default: false - description: Setting this flag to `true` enables the trace exporter. - type: boolean - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - endpoint: - default: "" - description: The endpoint where the distributed tracing backend - accepts OpenTelemetry traces using the Jaeger protocol. - type: string - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundleresolver-config: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default-kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default-service-account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster-resolver-config: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - git-resolver-config: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api-token-secret-key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api-token-secret-name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api-token-secret-namespace: - default: default - description: The namespace containing the API token secret. - type: string - default-org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default-revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default-url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch-timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm-type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server-url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hubresolver-config: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default-artifact-hub-pipeline-catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default-artifact-hub-task-catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-tekton-hub-catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default-type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - resolvers-feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable-bundles-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable-cluster-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable-git-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable-hub-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.46.0+kadras.1 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.2.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.2.yml deleted file mode 100644 index ef32c5e..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0+kadras.2.yml +++ /dev/null @@ -1,522 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.46.0+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-04-08T20:38:25Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:40d5ab0f7cf0a5ebd4eaf59e733bc8c02e7ec53ab16efbf6b2604827d856fed0 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config-defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - default-affinity-assistant-pod-template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - default-cloud-events-sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, - and Run lifeycle events. If no sink is specified, no CloudEvent is - generated. - type: string - default-forbidden-env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - default-managed-by-label-value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - default-max-matrix-combinations-count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - default-pod-template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - default-resolver-type: - default: "" - description: The default resolver type to be used in the cluster. - type: string - default-service-account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - default-task-run-workspace-binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - default-timeout-minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - config-leader-election: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel.controller: - default: info - description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` - Deployments. - type: string - loglevel.webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - zap-logger-config: - default: | - { - "level": "info", - "development": false, - "sampling": { - "initial": 100, - "thereafter": 100 - }, - "outputPaths": ["stdout"], - "errorOutputPaths": ["stderr"], - "encoding": "json", - "encoderConfig": { - "timeKey": "timestamp", - "levelKey": "severity", - "nameKey": "logger", - "callerKey": "caller", - "messageKey": "message", - "stacktraceKey": "stacktrace", - "lineEnding": "", - "levelEncoder": "", - "timeEncoder": "iso8601", - "durationEncoder": "", - "callerEncoder": "" - } - } - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - config-observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics.allow-stackdriver-custom-metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver using - 'global' resource type and custom metric type. Ignore if `backend_destination` - is not `stackdriver`. - type: string - metrics.backend-destination: - default: prometheus - description: The destination for the metrics produced by the Tekton - components. - type: string - metrics.pipelinerun.duration-type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram value - isn’t available when the `pipelinerun` level is selected. - type: string - metrics.pipelinerun.level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling which labels - are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), - (namespace).' - type: string - metrics.stackdriver-project-id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the cluster's - project if this field is not provided. - type: string - metrics.taskrun.duration-type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram value - isn’t available when the `taskrun` level is selected. - type: string - metrics.taskrun.level: - default: task - description: 'Level for the TaskRun metrics controlling which labels - are included: (taskrun, task, namespace), (task, namespace), (namespace).' - type: string - type: object - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - type: object - type: object - feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await-sidecar-readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - custom-task-version: - default: v1beta1 - description: Setting this flag will determine the version for custom - tasks created by PipelineRuns. - type: string - disable-affinity-assistant: - default: "false" - description: Setting this flag to `true` will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable-creds-init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable-api-fields: - default: beta - description: Setting this flag will determine which gated features are - enabled. - type: string - enable-provenance-in-status: - default: "false" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable-tekton-oci-bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce-nonfalsifiablity: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - require-git-ssh-secret-known-hosts: - default: "true" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - resource-verification-mode: - default: skip - description: Setting this flag to `enforce` will enforce verification - of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. - `warn` will only log the err message and `skip` will skip the whole - verification. - type: string - running-in-environment-with-injected-sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send-cloudevents-for-runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - enable: - default: false - description: Setting this flag to `true` enables the trace exporter. - type: boolean - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - endpoint: - default: "" - description: The endpoint where the distributed tracing backend - accepts OpenTelemetry traces using the Jaeger protocol. - type: string - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundleresolver-config: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default-kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default-service-account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster-resolver-config: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - git-resolver-config: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api-token-secret-key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api-token-secret-name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api-token-secret-namespace: - default: default - description: The namespace containing the API token secret. - type: string - default-org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default-revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default-url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch-timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm-type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server-url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hubresolver-config: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default-artifact-hub-pipeline-catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default-artifact-hub-task-catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-tekton-hub-catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default-type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - resolvers-feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable-bundles-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable-cluster-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable-git-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable-hub-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.46.0+kadras.2 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0.yml deleted file mode 100644 index 885e56e..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.46.0.yml +++ /dev/null @@ -1,522 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.46.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-03-25T06:58:20Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:aed6d2992b4571ff46bbe6225213877e16b9aab608c61b0d5192a2bbaabf5708 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config-defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - default-affinity-assistant-pod-template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - default-cloud-events-sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, - and Run lifeycle events. If no sink is specified, no CloudEvent is - generated. - type: string - default-forbidden-env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - default-managed-by-label-value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - default-max-matrix-combinations-count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - default-pod-template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - default-resolver-type: - default: "" - description: The default resolver type to be used in the cluster. - type: string - default-service-account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - default-task-run-workspace-binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - default-timeout-minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - config-leader-election: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel.controller: - default: info - description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` - Deployments. - type: string - loglevel.webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - zap-logger-config: - default: | - { - "level": "info", - "development": false, - "sampling": { - "initial": 100, - "thereafter": 100 - }, - "outputPaths": ["stdout"], - "errorOutputPaths": ["stderr"], - "encoding": "json", - "encoderConfig": { - "timeKey": "timestamp", - "levelKey": "severity", - "nameKey": "logger", - "callerKey": "caller", - "messageKey": "message", - "stacktraceKey": "stacktrace", - "lineEnding": "", - "levelEncoder": "", - "timeEncoder": "iso8601", - "durationEncoder": "", - "callerEncoder": "" - } - } - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - config-observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics.allow-stackdriver-custom-metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver using - 'global' resource type and custom metric type. Ignore if `backend_destination` - is not `stackdriver`. - type: string - metrics.backend-destination: - default: prometheus - description: The destination for the metrics produced by the Tekton - components. - type: string - metrics.pipelinerun.duration-type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram value - isn’t available when the `pipelinerun` level is selected. - type: string - metrics.pipelinerun.level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling which labels - are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), - (namespace).' - type: string - metrics.stackdriver-project-id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the cluster's - project if this field is not provided. - type: string - metrics.taskrun.duration-type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram value - isn’t available when the `taskrun` level is selected. - type: string - metrics.taskrun.level: - default: task - description: 'Level for the TaskRun metrics controlling which labels - are included: (taskrun, task, namespace), (task, namespace), (namespace).' - type: string - type: object - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - type: object - type: object - feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await-sidecar-readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - custom-task-version: - default: v1beta1 - description: Setting this flag will determine the version for custom - tasks created by PipelineRuns. - type: string - disable-affinity-assistant: - default: "false" - description: Setting this flag to `true` will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable-creds-init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable-api-fields: - default: stable - description: Setting this flag will determine which gated features are - enabled. - type: string - enable-provenance-in-status: - default: "false" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable-tekton-oci-bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce-nonfalsifiablity: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - require-git-ssh-secret-known-hosts: - default: "false" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - resource-verification-mode: - default: skip - description: Setting this flag to `enforce` will enforce verification - of tasks/pipelines. Failing to verify will fail the TaskRun/PipelineRun. - `warn` will only log the err message and `skip` will skip the whole - verification. - type: string - running-in-environment-with-injected-sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send-cloudevents-for-runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - enable: - default: false - description: Setting this flag to `true` enables the trace exporter. - type: boolean - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - endpoint: - default: "" - description: The endpoint where the distributed tracing backend - accepts OpenTelemetry traces using the Jaeger protocol. - type: string - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundleresolver-config: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default-kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default-service-account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster-resolver-config: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - git-resolver-config: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api-token-secret-key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api-token-secret-name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api-token-secret-namespace: - default: default - description: The namespace containing the API token secret. - type: string - default-org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default-revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default-url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch-timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm-type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server-url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hubresolver-config: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default-artifact-hub-pipeline-catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default-artifact-hub-task-catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-tekton-hub-catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default-type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - resolvers-feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable-bundles-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable-cluster-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable-git-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable-hub-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.46.0 diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/0.1.1.yml b/repo/packages/workspace-provisioner.packages.kadras.io/0.1.1.yml deleted file mode 100644 index e361667..0000000 --- a/repo/packages/workspace-provisioner.packages.kadras.io/0.1.1.yml +++ /dev/null @@ -1,123 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: workspace-provisioner.packages.kadras.io.0.1.1 -spec: - licenses: - - Apache 2.0 - refName: workspace-provisioner.packages.kadras.io - releaseNotes: https://github.com/kadras-io/workspace-provisioner/releases - releasedAt: "2023-04-09T20:47:52Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/workspace-provisioner@sha256:1c6d72d155a3378c4c46aeee795c1bedeafe198b0e2ccbb78e9e3203ef4292c5 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Cosign key - pair. - type: string - type: object - type: object - git: - additionalProperties: false - description: Configuration to access the Git repositories used in the GitOps - workflows. - properties: - credentials: - additionalProperties: false - description: Configuration for Git credentials. - properties: - password: - default: "" - description: The password to access the Git repositories. - type: string - username: - default: "" - description: The username to access the Git repositories. - type: string - type: object - secret: - additionalProperties: false - description: Configuration for the Secret holding the Git credentials. - properties: - name: - default: supply-chain-git-credentials - description: The name of the Secret holding the Git credentials. - type: string - type: object - server: - default: https://github.com - description: The Git server hosting the Git repositories used in the - GitOps workflows. - type: string - type: object - namespaces: - default: [] - description: Configuration for the namespaces the platform will provision - and manage. - items: - additionalProperties: false - description: Details about the namespace to configure. - properties: - name: - default: "" - type: string - type: object - type: array - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the workspace will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the OCI registry. - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - the OCI registry. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - type: object - service_account: - default: default - description: The `ServiceAccount` to be configured with credentials and - roles in each workspace. - type: string - type: object - version: 0.1.1 From 81bfc2aa604333572baa751f154ae215f16c1300 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 19 Aug 2023 14:50:28 +0200 Subject: [PATCH 256/601] Update Cartographer Blueprints metadata and add version 0.6.0 (#225) Co-authored-by: github-actions --- .../0.6.0.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.6.0.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.0.yml new file mode 100644 index 0000000..952add1 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.0.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.6.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-08-19T12:47:59Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:ab4f3bbd532b125c0e2dde644d0ffdbec839f072a3bbe906bb5dadc6ff0850f0 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being created + in the cluster. + items: + default: "" + type: string + type: array + tekton_catalog_namespace: + default: tekton-catalog + description: The namespace where the Tekton Catalog package has been installed. + type: string + type: object + version: 0.6.0 From a42508561236e3aaff9cb742d3e00133ccbc76f8 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 19 Aug 2023 15:00:32 +0200 Subject: [PATCH 257/601] Update Cartographer Supply Chains metadata and add version 0.6.0 (#226) Co-authored-by: github-actions --- .../0.6.0.yml | 145 ++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 146 insertions(+), 1 deletion(-) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.6.0.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.6.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.6.0.yml new file mode 100644 index 0000000..2564a10 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.6.0.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.6.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-08-19T12:58:45Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:77ee5b2d1ecbeffb0c230594ed3770a2c733abb23edc4d096b6e1613eaf0656e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + git_credentials_secret: + default: "" + description: The Secret containing authentication credentials for Git repositories. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chain. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + description: Settings for the Git repository used for the GitOps workflows. + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + service_account: + default: default + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' + type: string + type: object + version: 0.6.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml index 538cf6f..d9a0d0c 100644 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/metadata.yml @@ -9,7 +9,7 @@ spec: - golden paths - developer experience displayName: cartographer-supply-chains - longDescription: Cartographer supply chains to build golden paths to production + longDescription: Cartographer supply chains defining golden paths to production for applications and functions, from source code to deployment in a Kubernetes cluster. maintainers: From b19bd5352bf50df1fb7c8783f75d3255d91bd4ae Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 19 Aug 2023 15:08:02 +0200 Subject: [PATCH 258/601] Update Cartographer Delivery metadata and add version 0.5.0 (#227) Co-authored-by: github-actions --- .../0.5.0.yml | 42 +++++++++++++++++++ 1 file changed, 42 insertions(+) create mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.5.0.yml diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.5.0.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.5.0.yml new file mode 100644 index 0000000..1d11fec --- /dev/null +++ b/repo/packages/cartographer-delivery.packages.kadras.io/0.5.0.yml @@ -0,0 +1,42 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-delivery.packages.kadras.io.0.5.0 +spec: + refName: cartographer-delivery.packages.kadras.io + releasedAt: "2023-08-19T13:05:25Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-delivery@sha256:236e9fc286f347b1de82fe55038ebd6415e22811fa004e912817f79951b6b660 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + delivery_chain: + default: basic + description: 'The type of delivery chain to use when deploying workloads. + Options: `basic`.' + type: string + git_credentials_secret: + default: "" + description: The Secret containing authentication credentials for Git repositories. + type: string + service_account: + default: default + description: The default `ServiceAccount` used by the delivery chain. + type: string + type: object + version: 0.5.0 From ca16d14f3e76a5a8df489aafbb43c8495dd7b964 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 20 Aug 2023 14:42:20 +0200 Subject: [PATCH 259/601] Update Spring Boot Conventions metadata and add version 0.3.0 (#228) Co-authored-by: github-actions --- .../0.3.0.yml | 67 +++++++++++++++++++ 1 file changed, 67 insertions(+) create mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.3.0.yml diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.0.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.0.yml new file mode 100644 index 0000000..15dd413 --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.0.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io.0.3.0 +spec: + licenses: + - Apache 2.0 + refName: spring-boot-conventions.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases + releasedAt: "2023-08-20T12:40:04Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:c528edbd4696b6b79a05ae521cb4acb0cf1a5491a550c77e9c3dff88adf242d5 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: spring-boot-conventions + description: The namespace where to install Spring Boot Conventions + type: string + resources: + additionalProperties: false + description: Resource configuration for the Convention Server + properties: + limits: + additionalProperties: false + description: Resource limits + properties: + cpu: + default: 100m + description: CPU limits + type: string + memory: + default: 256Mi + description: Memory limits + type: string + type: object + requests: + additionalProperties: false + description: Resource requests + properties: + cpu: + default: 100m + description: CPU requests + type: string + memory: + default: 20Mi + description: Memory requests + type: string + type: object + type: object + type: object + version: 0.3.0 From 8db46eb91788b1e3b84955bf914d387f4380978c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 20 Aug 2023 16:01:30 +0200 Subject: [PATCH 260/601] Update Buildpacks Catalog metadata and add version 0.9.1 (#229) Co-authored-by: github-actions --- .../0.9.1.yml | 47 +++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.1.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.1.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.1.yml new file mode 100644 index 0000000..b528c89 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.1.yml @@ -0,0 +1,47 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.9.1 +spec: + capacityRequirementsDescription: Container registry with at least 1GB available + space used by kpack to create builder images. + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-08-20T13:59:48Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:d9343cb559cde1673296b2168abd8b420f4ef9a1ad8cb2225db9042446cdd517 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.9.1 From 5669094f3a643408cc4936006fb14f6131ad7c57 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 20 Aug 2023 16:08:50 +0200 Subject: [PATCH 261/601] Update Workspace Provisioner metadata and add version 0.2.1 (#230) Co-authored-by: github-actions --- .../0.2.1.yml | 114 ++++++++++++++++++ 1 file changed, 114 insertions(+) create mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/0.2.1.yml diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/0.2.1.yml b/repo/packages/workspace-provisioner.packages.kadras.io/0.2.1.yml new file mode 100644 index 0000000..8ac1b51 --- /dev/null +++ b/repo/packages/workspace-provisioner.packages.kadras.io/0.2.1.yml @@ -0,0 +1,114 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: workspace-provisioner.packages.kadras.io.0.2.1 +spec: + licenses: + - Apache 2.0 + refName: workspace-provisioner.packages.kadras.io + releaseNotes: https://github.com/kadras-io/workspace-provisioner/releases + releasedAt: "2023-08-20T14:07:00Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/workspace-provisioner@sha256:f3ae24dd72f9ac6194738683e8d5e0cc95c2c8d7e7b87e431bdd4f67f828f2a3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Cosign key + pair. + type: string + type: object + type: object + git: + additionalProperties: false + description: Configuration to access the Git repositories used in the GitOps + workflows. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Git credentials. + properties: + name: + default: "" + description: The name of the Secret holding the Git credentials. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Git credentials. + type: string + type: object + server: + default: https://github.com + description: The Git server hosting the Git repositories used in the + GitOps workflows. + type: string + type: object + namespaces: + default: [] + description: Configuration for the namespaces the platform will provision + and manage. + items: + additionalProperties: false + description: Details about the namespace to configure. + properties: + name: + default: "" + type: string + type: object + type: array + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the workspace will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the OCI registry. + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + the OCI registry. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + type: object + service_account: + default: default + description: The `ServiceAccount` to be configured with credentials and + roles in each workspace. + type: string + type: object + version: 0.2.1 From e64e97fcdd3f330735ac7f1567cf835820c9f103 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 20 Aug 2023 17:03:52 +0200 Subject: [PATCH 262/601] Update FluxCD Source Controller metadata and add version 1.0.1+kadras.1 (#231) Co-authored-by: github-actions --- .../1.0.1+kadras.1.yml | 128 ++++++++++++++++++ 1 file changed, 128 insertions(+) create mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1+kadras.1.yml diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1+kadras.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1+kadras.1.yml new file mode 100644 index 0000000..4ce6e85 --- /dev/null +++ b/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1+kadras.1.yml @@ -0,0 +1,128 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: fluxcd-source-controller.packages.kadras.io.1.0.1+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: fluxcd-source-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases + releasedAt: "2023-08-20T14:59:00Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:5d9d9d1a2b1350e67081448d98763097c82a96f9a5b1203a304e07e8d0627547 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + leader_election: + additionalProperties: false + description: Leader election configuration. + properties: + lease_duration: + default: 35s + description: Interval at which non-leader candidates will wait to force + acquire leadership. + type: string + release_on_cancel: + default: "true" + description: Defines if the leader should step down voluntarily on controller + manager shutdown. + type: string + renew_deadline: + default: 30s + description: Duration that the leading controller manager will retry + refreshing leadership before giving up. + type: string + retry_period: + default: 5s + description: Duration the LeaderElector clients should wait between + tries of actions. + type: string + type: object + logging: + additionalProperties: false + description: Logging configuration. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + namespace: + default: flux-source-system + description: The namespace where to install FluxCD Source Controller. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment. + properties: + limits: + additionalProperties: false + description: Resource limits configuration for the `source-controller` + Deployment. + properties: + cpu: + default: 1000m + description: CPU limits configuration for the `source-controller` + Deployment. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the `source-controller` + Deployment. + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the `source-controller` Service. + type: integer + type: object + version: 1.0.1+kadras.1 From 6e4e253c2df93d7dc66019245383bf4c5e928d79 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 20 Aug 2023 17:03:59 +0200 Subject: [PATCH 263/601] Update Cartographer Blueprints metadata and add version 0.6.1 (#232) Co-authored-by: github-actions --- .../0.6.1.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.6.1.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.1.yml new file mode 100644 index 0000000..2036a02 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.1.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.6.1 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-08-20T15:00:54Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:6ae5d8fcc698e545479e203f74c55625d39067076e75b5cfba4e5a19cb20ca98 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints and manifests to esclude from being created + in the cluster. + items: + default: "" + type: string + type: array + tekton_catalog_namespace: + default: tekton-catalog + description: The namespace where the Tekton Catalog package has been installed. + type: string + type: object + version: 0.6.1 From def06e55019c94278722e8787001f2d7f7428ea1 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 20 Aug 2023 21:43:57 +0200 Subject: [PATCH 264/601] Update Engineering Platform metadata and add version 0.10.0-RC4 (#233) --- .../0.10.0-RC4.yml | 292 ++++++++++++++++++ 1 file changed, 292 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC4.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC4.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC4.yml new file mode 100644 index 0000000..26a23c7 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC4.yml @@ -0,0 +1,292 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.10.0-RC4 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-08-20T16:30:46Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:36f12636efc8a742bb85448a94af7ccec4d2da47bc3507180e23c9a1780d182a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: supply-chain-cosign-key-pair + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: supply-chain-git-credentials + description: The name of the Secret holding the credentials + to access the Git server. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish and consume OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: supply-chain-registry-credentials + description: The name of the Secret holding the credentials + to access the OCI registry. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish and consume OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: full + description: 'The platform profile to install. Options: `full`, `serving`.' + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, + `advanced`.' + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.10.0-RC4 From 7b3d425e0ce43ddb1fd8956182f071e0f923224e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 21 Aug 2023 14:28:01 +0200 Subject: [PATCH 265/601] Remove deprecated dependencies --- .../0.8.2.yml | 47 --- .../0.9.0.yml | 47 --- .../0.5.1.yml | 44 --- .../0.6.0.yml | 44 --- .../0.4.1.yml | 43 --- .../0.5.1.yml | 140 --------- .../0.10.0-RC3.yml | 287 ------------------ .../0.9.2.yml | 258 ---------------- .../1.0.1.yml | 128 -------- .../0.2.1.yml | 67 ---- .../0.2.0.yml | 114 ------- 11 files changed, 1219 deletions(-) delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.8.2.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.0.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.5.1.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.6.0.yml delete mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.4.1.yml delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.1.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC3.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.9.2.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1.yml delete mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.2.1.yml delete mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/0.2.0.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.2.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.2.yml deleted file mode 100644 index e41a494..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.8.2.yml +++ /dev/null @@ -1,47 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.8.2 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-07-19T16:13:51Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:a93d1582c6e97a4b9bf504686d39a98d44dea64f5c89e20b5a2e75f9b26f42b5 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.8.2 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.0.yml deleted file mode 100644 index 9440389..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.0.yml +++ /dev/null @@ -1,47 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.9.0 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-08-13T13:54:54Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:3276a36add34a1cf945fbcca87b6edfede2636bbc5217d6769457a44ecc0e5d7 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.9.0 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.1.yml deleted file mode 100644 index 4cd3f2c..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.5.1.yml +++ /dev/null @@ -1,44 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.5.1 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases - releasedAt: "2023-04-01T15:36:14Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:c9d33e5018c6b5c1a3c60a5416404cb0e5c307bcfda43028505722c4a1eaf669 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being created - in the cluster. - items: - default: "" - type: string - type: array - tekton_catalog_namespace: - default: tekton-catalog - description: The namespace where the Tekton Catalog package has been installed. - type: string - type: object - version: 0.5.1 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.0.yml deleted file mode 100644 index 952add1..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.0.yml +++ /dev/null @@ -1,44 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.6.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases - releasedAt: "2023-08-19T12:47:59Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:ab4f3bbd532b125c0e2dde644d0ffdbec839f072a3bbe906bb5dadc6ff0850f0 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being created - in the cluster. - items: - default: "" - type: string - type: array - tekton_catalog_namespace: - default: tekton-catalog - description: The namespace where the Tekton Catalog package has been installed. - type: string - type: object - version: 0.6.0 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.4.1.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.4.1.yml deleted file mode 100644 index c54b6b9..0000000 --- a/repo/packages/cartographer-delivery.packages.kadras.io/0.4.1.yml +++ /dev/null @@ -1,43 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-delivery.packages.kadras.io.0.4.1 -spec: - refName: cartographer-delivery.packages.kadras.io - releasedAt: "2023-04-09T08:44:54Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-delivery@sha256:620a2bddd30c11982c0332cef5bef554a26b8c086ce5daf3ced4a793b9eb1c7e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - delivery_chain: - default: basic - description: 'The type of delivery chain to use when deploying workloads. - Options: `basic`.' - type: string - git_access_secret: - default: supply-chain-git-credentials - description: The Secret containing authentication credentials for the Git - repository. - type: string - service_account: - default: default - description: The default `ServiceAccount` used by the delivery chain. - type: string - type: object - version: 0.4.1 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.1.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.1.yml deleted file mode 100644 index b8252db..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.5.1.yml +++ /dev/null @@ -1,140 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.5.1 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases - releasedAt: "2023-04-09T08:45:24Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:650e1c107d57454e18c4e6e8ba9247747db4cb22a9c2718c99d2b0465bae400c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cluster_builder: - default: default - description: The default `ClusterBuilder` used by kpack. - type: string - git_access_secret: - default: supply-chain-git-credentials - description: The Secret containing authentication credentials for the Git - repository. - type: string - gitops: - additionalProperties: false - description: Settings for using a GitOps strategy with the supply chain. - properties: - commit: - additionalProperties: false - properties: - message: - default: Update from Cartographer - description: The commit message to use when pushing configuration - changes to Git. - type: string - type: object - pull_request: - additionalProperties: false - description: Settings for using a GitOps approach based on pull requests. - properties: - body: - default: Generated from Cartographer - description: The message body of the pull request. - type: string - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated. - type: string - server_kind: - default: github - description: The type of Git server where to open the pull request. - example: github - type: string - x-example-description: Open a pull request on GitHub - title: - default: Update from Cartographer - description: The title of the pull request. - type: string - type: object - repository: - additionalProperties: false - properties: - name: - default: "" - description: The name of the Git repository. - type: string - owner: - default: "" - description: The owner of the Git repository. - type: string - type: object - server_address: - default: https://github.com - description: The location of the server hosting the specified Git repository. - type: string - strategy: - default: none - description: Whether to commit configuration changes to Git directly - (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps - strategy is applied. - type: string - target_branch: - default: main - description: The target branch where to push configuration changes. - type: string - user: - additionalProperties: false - properties: - email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository. - type: string - name: - default: cartographer - description: The name of the user interacting with the Git repository. - type: string - type: object - type: object - registry: - additionalProperties: false - description: Settings for the OCI Registry used by the supply chain. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the supply chain - will publish and consume OCI images. - type: string - server: - default: "" - description: The server of the OCI Registry where the supply chain will - publish and consume OCI images. - type: string - type: object - service_account: - default: default - description: The default `ServiceAccount` used by the supply chain. - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' - type: string - type: object - version: 0.5.1 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC3.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC3.yml deleted file mode 100644 index ea8fde3..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC3.yml +++ /dev/null @@ -1,287 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.10.0-RC3 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-06-28T20:35:16Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:29de5f1ee5146e5bac6da8d4d6d353376ef8c62ffbeccdc8161a94a2ab0d143b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: supply-chain-cosign-key-pair - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: supply-chain-git-credentials - description: The name of the Secret holding the credentials - to access the Git server. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish and consume OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: supply-chain-registry-credentials - description: The name of the Secret holding the credentials - to access the OCI registry. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish and consume OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: full - description: 'The platform profile to install. Options: `full`, `serving`.' - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.10.0-RC3 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.9.2.yml b/repo/packages/engineering-platform.packages.kadras.io/0.9.2.yml deleted file mode 100644 index 5028f8a..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.9.2.yml +++ /dev/null @@ -1,258 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.9.2 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-04-16T21:42:19Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:ab84cb03af957b587f11813213910ac1864520cb2dd7f8ddee4f5baa4c0c70da - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - credentials: - additionalProperties: false - description: Credentials to access the OCI registry. - nullable: true - properties: - password: - default: "" - description: 'Token to access the OCI registry. Note: Use contents - of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the OCI registry. Note: Use - `_json_key` for GCR.' - type: string - type: object - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish and consume OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: supply-chain-registry-credentials - description: The name of the Secret holding the credentials - to access the OCI registry. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish and consume OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.9.2 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1.yml deleted file mode 100644 index 29e4fe9..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1.yml +++ /dev/null @@ -1,128 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.1.0.1 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases - releasedAt: "2023-08-13T12:32:38Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:f6968c6e44a47010c778a47f1739d983f83f750e7d4e2349f443cd02c9b52335 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - leader_election: - additionalProperties: false - description: Leader election configuration. - properties: - lease_duration: - default: 35s - description: Interval at which non-leader candidates will wait to force - acquire leadership. - type: string - release_on_cancel: - default: "true" - description: Defines if the leader should step down voluntarily on controller - manager shutdown. - type: string - renew_deadline: - default: 30s - description: Duration that the leading controller manager will retry - refreshing leadership before giving up. - type: string - retry_period: - default: 5s - description: Duration the LeaderElector clients should wait between - tries of actions. - type: string - type: object - logging: - additionalProperties: false - description: Logging configuration. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - namespace: - default: flux-source-system - description: The namespace where to install FluxCD Source Controller. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment. - properties: - limits: - additionalProperties: false - description: Resource limits configuration for the `source-controller` - Deployment. - properties: - cpu: - default: 1000m - description: CPU limits configuration for the `source-controller` - Deployment. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the `source-controller` - Deployment. - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the `source-controller` Service. - type: integer - type: object - version: 1.0.1 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.1.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.1.yml deleted file mode 100644 index a2c8c12..0000000 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/0.2.1.yml +++ /dev/null @@ -1,67 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: spring-boot-conventions.packages.kadras.io.0.2.1 -spec: - licenses: - - Apache 2.0 - refName: spring-boot-conventions.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases - releasedAt: "2023-04-09T16:10:20Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:94529a2e9bbb279259922a3c7dbdcff67a8442fbfef71e59d5c86f7938e614f5 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: spring-boot-conventions - description: The namespace where to install Spring Boot Conventions - type: string - resources: - additionalProperties: false - description: Resource configuration for the Convention Server - properties: - limits: - additionalProperties: false - description: Resource limits - properties: - cpu: - default: 100m - description: CPU limits - type: string - memory: - default: 256Mi - description: Memory limits - type: string - type: object - requests: - additionalProperties: false - description: Resource requests - properties: - cpu: - default: 100m - description: CPU requests - type: string - memory: - default: 20Mi - description: Memory requests - type: string - type: object - type: object - type: object - version: 0.2.1 diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/0.2.0.yml b/repo/packages/workspace-provisioner.packages.kadras.io/0.2.0.yml deleted file mode 100644 index 35e22c1..0000000 --- a/repo/packages/workspace-provisioner.packages.kadras.io/0.2.0.yml +++ /dev/null @@ -1,114 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: workspace-provisioner.packages.kadras.io.0.2.0 -spec: - licenses: - - Apache 2.0 - refName: workspace-provisioner.packages.kadras.io - releaseNotes: https://github.com/kadras-io/workspace-provisioner/releases - releasedAt: "2023-06-28T05:27:29Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/workspace-provisioner@sha256:0a4715e0735a18e9ca5980f4fed25dc89b8a6b260c0714436fa6608bcbea2fdc - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Cosign key - pair. - type: string - type: object - type: object - git: - additionalProperties: false - description: Configuration to access the Git repositories used in the GitOps - workflows. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Git credentials. - properties: - name: - default: "" - description: The name of the Secret holding the Git credentials. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Git credentials. - type: string - type: object - server: - default: https://github.com - description: The Git server hosting the Git repositories used in the - GitOps workflows. - type: string - type: object - namespaces: - default: [] - description: Configuration for the namespaces the platform will provision - and manage. - items: - additionalProperties: false - description: Details about the namespace to configure. - properties: - name: - default: "" - type: string - type: object - type: array - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the workspace will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the OCI registry. - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - the OCI registry. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - type: object - service_account: - default: default - description: The `ServiceAccount` to be configured with credentials and - roles in each workspace. - type: string - type: object - version: 0.2.0 From fa70b1c1322207c0611d60c98498f907cf0cc6f5 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 21 Aug 2023 14:30:45 +0200 Subject: [PATCH 266/601] Update GitHub Actions dependencies --- .github/workflows/release.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4d238ac..56547a7 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.1.0 + uses: sigstore/cosign-installer@v3.1.1 - name: Log into container registry uses: redhat-actions/podman-login@v1.6 @@ -106,7 +106,7 @@ jobs: actions: read id-token: write packages: write - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.7.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.8.0 with: image: ${{ needs.build.outputs.image-name }} digest: ${{ needs.build.outputs.image-digest }} From 382a75fd6118502b3a12d39e25519681342ce277 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 21 Aug 2023 15:45:54 +0200 Subject: [PATCH 267/601] Update Engineering Platform metadata and add version 0.10.0 (#234) Co-authored-by: github-actions --- .../0.10.0.yml | 292 ++++++++++++++++++ 1 file changed, 292 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0.yml new file mode 100644 index 0000000..72e1358 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.10.0.yml @@ -0,0 +1,292 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.10.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-08-21T13:42:34Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:36f12636efc8a742bb85448a94af7ccec4d2da47bc3507180e23c9a1780d182a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + additionalProperties: false + description: Configuration for Flux related packages. + properties: + source_controller: + default: {} + description: Configuration for the FluxCD Source Controller package. + nullable: true + type: object + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: supply-chain-cosign-key-pair + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: supply-chain-git-credentials + description: The name of the Secret holding the credentials + to access the Git server. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish and consume OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: supply-chain-registry-credentials + description: The name of the Secret holding the credentials + to access the OCI registry. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish and consume OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: full + description: 'The platform profile to install. Options: `full`, `serving`.' + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, + `advanced`.' + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.10.0 From 8a7ae07db263574f4f9e5431858350a28b6dce77 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 21 Aug 2023 16:19:05 +0200 Subject: [PATCH 268/601] Update Argo CD metadata and add version 2.8.0 (#235) Co-authored-by: github-actions --- .../argo-cd.packages.kadras.io/2.8.0.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.8.0.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.8.0.yml b/repo/packages/argo-cd.packages.kadras.io/2.8.0.yml new file mode 100644 index 0000000..bfa3f1f --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.8.0.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.8.0 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases + releasedAt: "2023-08-21T14:16:14Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-argo-cd@sha256:235b2cf375d48c08dfdcd037a8cdf63cee5ea2ffa6b1b830f777bdc9d55df5e8 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.8.0 From 1adf4041db2bc2224f8c44ca375b5574cf85980c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 22 Aug 2023 15:38:51 +0200 Subject: [PATCH 269/601] Update Kyverno metadata and add version 1.10.3 (#236) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.10.3.yml | 31 +++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.10.3.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.10.3.yml b/repo/packages/kyverno.packages.kadras.io/1.10.3.yml new file mode 100644 index 0000000..38aa33c --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.10.3.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.10.3 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2023-08-22T13:33:51Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:a515d5139f402f1f74c96173cc6cb1840cde4cfbac5ec81c4470d7054d846b8d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 1.10.3 From eb2a8f975ea4a580c75603609372ed430508bf8b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 22 Aug 2023 15:45:58 +0200 Subject: [PATCH 270/601] Prepare release 0.12.0 --- .github/workflows/release.yml | 2 +- .../argo-cd.packages.kadras.io/2.6.7.yml | 45 --- .../0.10.0-RC4.yml | 292 ------------------ .../1.9.2+kadras.1.yml | 31 -- 4 files changed, 1 insertion(+), 369 deletions(-) delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.6.7.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC4.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.9.2+kadras.1.yml diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 56547a7..69a9ddb 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.12.0-RC4 + VERSION: 0.12.0 jobs: build: diff --git a/repo/packages/argo-cd.packages.kadras.io/2.6.7.yml b/repo/packages/argo-cd.packages.kadras.io/2.6.7.yml deleted file mode 100644 index 1da5f3e..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.6.7.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.6.7 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases - releasedAt: "2023-04-13T20:46:52Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-argo-cd@sha256:3c17becac8f60bdc2e2b407e70ef7ea84ad3577e5269581db5ce62e217ff8676 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.6.7 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC4.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC4.yml deleted file mode 100644 index 26a23c7..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.10.0-RC4.yml +++ /dev/null @@ -1,292 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.10.0-RC4 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-08-20T16:30:46Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:36f12636efc8a742bb85448a94af7ccec4d2da47bc3507180e23c9a1780d182a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: supply-chain-cosign-key-pair - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: supply-chain-git-credentials - description: The name of the Secret holding the credentials - to access the Git server. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish and consume OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: supply-chain-registry-credentials - description: The name of the Secret holding the credentials - to access the OCI registry. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish and consume OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: full - description: 'The platform profile to install. Options: `full`, `serving`.' - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, - `advanced`.' - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.10.0-RC4 diff --git a/repo/packages/kyverno.packages.kadras.io/1.9.2+kadras.1.yml b/repo/packages/kyverno.packages.kadras.io/1.9.2+kadras.1.yml deleted file mode 100644 index e859323..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.9.2+kadras.1.yml +++ /dev/null @@ -1,31 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.9.2+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2023-04-16T09:19:36Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:7f54379d62c115ee75228558d0f3377826c1deacdbdabcd897748b1b6ce58382 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 1.9.2+kadras.1 From db9af6328d4ee7e910b27b8708d44e73b48aaa13 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 26 Aug 2023 17:00:50 +0200 Subject: [PATCH 271/601] Update Flux Source Controller metadata and add version 1.1.0 (#240) Co-authored-by: github-actions --- .../1.1.0.yml | 128 ++++++++++++++++++ .../metadata.yml | 22 +++ 2 files changed, 150 insertions(+) create mode 100644 repo/packages/flux-source-controller.packages.kadras.io/1.1.0.yml create mode 100644 repo/packages/flux-source-controller.packages.kadras.io/metadata.yml diff --git a/repo/packages/flux-source-controller.packages.kadras.io/1.1.0.yml b/repo/packages/flux-source-controller.packages.kadras.io/1.1.0.yml new file mode 100644 index 0000000..dd37d36 --- /dev/null +++ b/repo/packages/flux-source-controller.packages.kadras.io/1.1.0.yml @@ -0,0 +1,128 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux-source-controller.packages.kadras.io.1.1.0 +spec: + licenses: + - Apache 2.0 + refName: flux-source-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux-source-controller/releases + releasedAt: "2023-08-26T14:58:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux-source-controller@sha256:fcb0af1a66f03a80bb36dd666400b8e25ee707619edf1247513635dc83bb8bc9 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + leader_election: + additionalProperties: false + description: Leader election configuration. + properties: + lease_duration: + default: 35s + description: Interval at which non-leader candidates will wait to force + acquire leadership. + type: string + release_on_cancel: + default: "true" + description: Defines if the leader should step down voluntarily on controller + manager shutdown. + type: string + renew_deadline: + default: 30s + description: Duration that the leading controller manager will retry + refreshing leadership before giving up. + type: string + retry_period: + default: 5s + description: Duration the LeaderElector clients should wait between + tries of actions. + type: string + type: object + logging: + additionalProperties: false + description: Logging configuration. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + namespace: + default: flux-system + description: The namespace where to install Flux Source Controller. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + resources: + additionalProperties: false + description: Resource configuration for the source-controller Deployment. + properties: + limits: + additionalProperties: false + description: Resource limits configuration for the `source-controller` + Deployment. + properties: + cpu: + default: 1000m + description: CPU limits configuration for the `source-controller` + Deployment. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the `source-controller` + Deployment. + type: string + type: object + type: object + service_port: + default: 80 + description: Port configuration for the `source-controller` Service. + type: integer + type: object + version: 1.1.0 diff --git a/repo/packages/flux-source-controller.packages.kadras.io/metadata.yml b/repo/packages/flux-source-controller.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..4692f59 --- /dev/null +++ b/repo/packages/flux-source-controller.packages.kadras.io/metadata.yml @@ -0,0 +1,22 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: flux-source-controller.packages.kadras.io +spec: + categories: + - gitops + displayName: flux-source-controller + iconSVGBase64: PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHJvbGU9ImltZyIgdmlld0JveD0iNDguMDAgLTIuMjUgMjYyLjUwIDM2NC4wMCI+PGRlZnM+PHN0eWxlPi5jbHMtMXtmaWxsOiMzMjZjZTV9LmNscy0ze2ZpbGw6bm9uZX08L3N0eWxlPjwvZGVmcz48cGF0aCBkPSJNNTkuNzIzOTMgOTcuNzc4NDdhMTAuMTgyNTEgMTAuMTgyNTEgMCAwIDEgMC0xNy4wNzM5M2wxMTQuMDcwMy03NC4xNjAyM2ExMC4xODI1OCAxMC4xODI1OCAwIDAgMSAxMS4xMDAyNCAwbDExNC4wNzAyOSA3NC4xNjAyM2ExMC4xODI1IDEwLjE4MjUgMCAwIDEgMCAxNy4wNzM5NGwtMTE0LjA3MDI5IDc0LjE2MDIxYTEwLjE4MjU0IDEwLjE4MjU0IDAgMCAxLTExLjEwMDI0IDB6IiBjbGFzcz0iY2xzLTEiLz48cGF0aCBmaWxsPSIjYzFkMmY3IiBkPSJNMTk3LjM1NTY1IDExMC44NjZoNy45MTI3N2E2LjAwMzI2IDYuMDAzMjYgMCAwIDAgNS4xOTkwOC05LjAwNWwtMjUuOTIzODEtNDQuOTAyYTYuMDAzNTUgNi4wMDM1NSAwIDAgMC0xMC4zOTgzOCAwbC0yNS45MjQgNDQuOTAyYTYuMDAzMjYgNi4wMDMyNiAwIDAgMCA1LjE5OTA1IDkuMDA1aDcuOTEzYTYuMDAzNCA2LjAwMzQgMCAwIDEgNi4wMDM0MSA2LjAwMzR2NTEuMjU2M2w1LjMxMDM3IDMuNDUyNTJhMTIuMjg3NDMgMTIuMjg3NDMgMCAwIDAgMTMuMzk0NDUgMGw1LjMxMDYyLTMuNDUyNTJ2LTUxLjI1NjI4YTYuMDAzNCA2LjAwMzQgMCAwIDEgNi4wMDM0LTYuMDAzNDF6Ii8+PHBhdGggZD0iTTE3My43OTM0OCAzNTMuMjcxMDhhMTAuMTI4MjggMTAuMTI4MjggMCAwIDAgMy40NTY0MyAxLjQwMmMtMi4xNzU0OS0xLjIzMTItNC4zODcyNy0yLjM3NDI5LTYuNjIyNjktMy40NjAzNnptLTYuNDU2NjctMTYxLjE5NTQ2bC0xMS4zMTU3IDcuMzU2NjFhMTEwLjk5MyAxMTAuOTkzIDAgMCAwIDExLjMxNTcxIDYuNTk5N3ptMjQuMDE1MzcgMjMuNzE2MDdjOS43Mzg1OCAzLjExNTA1IDE5LjgxMzE3IDUuNjQ4NTEgMzAuMTA5NzMgOC4xODY1NSAxMC45MjAzMiAyLjY5MTgyIDIxLjk3MzU1IDUuNDI3MTcgMzIuODE3OTIgOS4wMDgzOWwtMzUuNDE2MDYtMjMuMDI0ODJhMjE1Ljg4MTMzIDIxNS44ODEzMyAwIDAgMS0yNy41MTE2MS05LjQxMDA3em0wIDYyLjE5MTU5di41ODU3N2MwIDIuNTY5MjktMi42ODc4NyA0LjY1MTk1LTYuMDAzMzggNC42NTE5NWgtMTIuMDA4NTVjLTMuMzE1NDkgMC02LjAwMzM4LTIuMDgyNjYtNi4wMDMzOC00LjY1MTk1di02LjYwNDczYy0yNC45MDUzOC02LjQwMjA5LTQ5Ljg3Mjk0LTE0LjQ4NTA2LTcwLjg1OTQ1LTMzLjgyMTFMODEuOTQ4MTkgMjQ3LjU4OWMyMi40Njc2MSAyMi4wNTA5IDUwLjI3ODkzIDI4LjkzMjkxIDc5LjcxNDQxIDM2LjE4ODYgMjcuMTc4NTIgNi42OTg1NiA1NS4xODA1MSAxMy42NTE0NCA3OC42ODU1NyAzMy40NDIyMmwxNC42NzkwNy05LjU0MzM0Yy0xOC41MzE0Mi0xNi41MDQzMS00MC40MDk2Mi0yMy42ODc3OC02My42NzUwNi0yOS42OTMyem0tOTguMDM3NTYgMjIuOTY2MzlsMzguOTA4MjkgMjUuMjk1MjVjMjAuMDY0MzggNS4xMTMzNiA0MC4yMDAyOSAxMS4yNDc3MyA1OC4zMTEgMjMuMzYwNDRsMTQuOTAwMjMtOS42ODdjLTE5Ljc1MTgtMTMuNjcyNC00Mi41NTA1LTE5LjMxMzQtNjYuNDE4ODktMjUuMTk3LTE1LjI4NzA0LTMuNzY3NzktMzAuODM0NzktNy42MTY2LTQ1LjcwMDYzLTEzLjc3MTY5em03NC4wMjIxOS04Mi4yNTQxM2ExMjQuMzE5OSAxMjQuMzE5OSAwIDAgMS0yMS41MzM5Mi0xMi42MjAwNmwtMTQuODA1MzEgOS42MjUyMWExMjQuNTQwNTcgMTI0LjU0MDU3IDAgMCAwIDM2LjMzOTIzIDE4LjcwOHptNTEuNDEwMDYgMTYuMjk0MTJjLTkuMTA2Mi0yLjI0NDc0LTE4LjMwMzYyLTQuNTIzODgtMjcuMzk0NjktNy4yOTg1M3YxMy42ODIwOXE1LjA1MSAxLjI4NTMgMTAuMTc2NzIgMi41MzgxN2MyOS45MzQzOCA3LjM3ODE4IDYwLjg4NzkgMTUuMDA4ODUgODUuNzA3NjcgMzkuODI4NjEuNjA5NzkuNjA5NzkgMS4xNjI2MSAxLjIzOTg5IDEuNzUyIDEuODU3MTVsOS45NzQyNy02LjQ4NDQ1YTEwLjEwNDI1IDEwLjEwNDI1IDAgMCAwIDMuNDc1MjktMy43OTkyOGMtMS4wNjY0NC0xLjE3MjUyLTIuMTQ0LTIuMzQxMzItMy4yODg3NS0zLjQ4NjEyLTIyLjU4NTEzLTIyLjU4NTMtNTAuNjY5MzgtMjkuNTA4NTYtODAuNDAyNTEtMzYuODM3NjR6bS0xOS45MzI5NSAxOS45MzI5OHEtMy43MjIxNy0uOTE3NDctNy40NjE2OC0xLjg1NDg0djEzLjIwOTc0YzI1LjgxNjc2IDYuNTYxODEgNTEuODAyNjMgMTQuNjg4NDMgNzMuNDU1MSAzNS4wNDA2OWwxNC41MjExNC05LjQ0MDU1Yy0uMDM4NTQtLjAzODc1LS4wNzI1Ni0uMDc5MTYtLjExMTMxLS4xMTc5Mi0yMi41ODU0Ni0yMi41ODUyNC01MC42Njk3NS0yOS41MDg0OC04MC40MDMyNS0zNi44MzcxMnptLTMxLjQ3NzExLTguNTg2ODFjLTE2LjI4LTUuMjc4MTMtMzIuMTE3NzctMTIuMzk2ODItNDYuMzQ0LTI0LjEzMDgxbC0xNC42ODE3NiA5LjU0NTFjMTcuODcwMjMgMTUuNTU3MjcgMzguNzg0NCAyMi42NzI2NiA2MS4wMjU3MiAyOC41MDA2OHoiIGNsYXNzPSJjbHMtMyIvPjxwYXRoIGQ9Ik03My4yNDA0OSAyNTQuOTU5NzJjLS4zNDgtLjM0OC0uNjU4NS0uNzA5NDktLjk5OTY3LTEuMDU5NzZsLTEyLjUxNDk1IDguMTM2NDhhMTAuMTY1NDggMTAuMTY1NDggMCAwIDAtMS42NDQyOCAxLjM5NjhjMS4wNTMzNiAxLjE1Njc3IDIuMTE1NjEgMi4zMTAyNCAzLjI0NTQ0IDMuNDQgMjIuNTg1MiAyMi41ODUxOSA1MC42Njk2OCAyOS41MDgzOCA4MC40MDMyMiAzNi44MzY4OCAyNS4zNDI1IDYuMjQ2OTEgNTEuNDAxMTMgMTIuNzE2NjEgNzMuODY0NTQgMjkuNjAyNTNsMTQuODA1NzQtOS42MjU2MmMtMjAuODY0MjQtMTYuNDE5OTMtNDUuNTMwMjEtMjIuNTA4OTEtNzEuNDUyODctMjguODk4LTI5LjkzMzg1LTcuMzc4ODgtNjAuODg3MzgtMTUuMDA5NDQtODUuNzA3MTctMzkuODI5MzF6IiBjbGFzcz0iY2xzLTMiLz48cGF0aCBkPSJNMjE4Ljg2Mzc3IDIwOS45NjE4bC0yNy41MTE1OS0xNy44ODZ2OC40NzU5YTIxNS44OCAyMTUuODggMCAwIDAgMjcuNTExNTkgOS40MTAxem0tMjcuNTExNTkgNS44Mjk4OXYxMS44OTkzOGM5LjA5MTA4IDIuNzc0NzEgMTguMjg4NDkgNS4wNTM4OCAyNy4zOTQ2OSA3LjI5ODUzIDI5LjczMzExIDcuMzI5MDkgNTcuODE3MzggMTQuMjUyMzIgODAuNDAyNjEgMzYuODM3NzMgMS4xNDQ3NCAxLjE0NDc0IDIuMjIyMzIgMi4zMTM1NCAzLjI4ODc1IDMuNDg2MTFhMTAuMTkzMjcgMTAuMTkzMjcgMCAwIDAtMy40NzUzLTEzLjI3NzExbC00NC42ODMxLTI5LjA0OTc2Yy0xMC44NDQzNy0zLjU4MTIxLTIxLjg5NzY4LTYuMzE2NTYtMzIuODE3OTQtOS4wMDgzOC0xMC4yOTY1Ni0yLjUzNzk5LTIwLjM3MTEzLTUuMDcxNDUtMzAuMTA5NzEtOC4xODY1em0tMjQuMDE1MzctOS43NTk2OWExMTAuOTkyOTIgMTEwLjk5MjkyIDAgMCAxLTExLjMxNTcxLTYuNTk5NjlsLTEwLjIxODIxIDYuNjQzMmExMjQuMzE5MzIgMTI0LjMxOTMyIDAgMCAwIDIxLjUzMzkyIDEyLjYyMDA3em0zNC4xOTIxMiAzNy44Nzk0MXEtNS4xMjUyOC0xLjI2MzUyLTEwLjE3NjczLTIuNTM4MTZ2MTEuNjk0NnEzLjczNjg2LjkzOCA3LjQ2MTY4IDEuODU0ODVjMjkuNzMzNTIgNy4zMjg2MyA1Ny44MTc4IDE0LjI1MTg3IDgwLjQwMzE4IDM2LjgzNzA5LjAzODc2LjAzODc2LjA3Mjc3LjA3OTE2LjExMTMyLjExNzkybDkuNjYwMjMtNi4yODA1MWMtLjU4OTQ1LS42MTcyNi0xLjE0MjI1LTEuMjQ3MzMtMS43NTItMS44NTcxNS0yNC44MTk3OC0yNC44MTk3OS01NS43NzMzLTMyLjQ1MDQ4LTg1LjcwNzY4LTM5LjgyODY0em0tMzQuMTkyMTItOS41MDI3MmExMjQuNTQwNTcgMTI0LjU0MDU3IDAgMCAxLTM2LjMzOTIzLTE4LjcwOGwtMTAuMDA0NzMgNi41MDQzNmMxNC4yMjYxMiAxMS43MzQgMzAuMDYzOTMgMTguODUyNjggNDYuMzQ0IDI0LjEzMDh6bTAgMjUuODQyMDNjLTIyLjI0MTMyLTUuODI4LTQzLjE1NTUtMTIuOTQzNDEtNjEuMDI1NzItMjguNTAwNmwtOS44MzM4IDYuMzkzMTVjMjAuOTg2NTIgMTkuMzM2IDQ1Ljk1NDA3IDI3LjQxODkzIDcwLjg1OTQ3IDMzLjgyMTF6bTI0LjAxNTM3IDE3LjczMjU2YzIzLjI2NTQ2IDYuMDA1MzkgNDUuMTQzNjcgMTMuMTg4ODYgNjMuNjc1MDYgMjkuNjkzMTJsOS43OC02LjM1ODIzYy0yMS42NTI0OS0yMC4zNTIyNS00Ny42MzgzNS0yOC40Nzg5My03My40NTUwOS0zNS4wNDA2OHpNODEuOTQ4MTMgMjQ3LjU4OWwtOS43MDcyOSA2LjMxMWMuMzQxMTcuMzUwMzIuNjUxNjYuNzExNzguOTk5NjcgMS4wNTk3NiAyNC44MTk3NyAyNC44MTk3OSA1NS43NzMyOSAzMi40NTA0MyA4NS43MDcwNiAzOS44MjkyNSAyNS45MjI2NiA2LjM4OTA5IDUwLjU4ODYzIDEyLjQ3ODA3IDcxLjQ1Mjg4IDI4Ljg5OGw5Ljk0NzcyLTYuNDY3MjRjLTIzLjUwNTA2LTE5Ljc5MDc4LTUxLjUwNy0yNi43NDM2NS03OC42ODU1Ny0zMy40NDIyMi0yOS40MzU0OC03LjI1NTY5LTU3LjI0NjgtMTQuMTM3Ny03OS43MTQ0Ny0zNi4xODg1NXpNNjEuMzI3IDI2Ni44NzMyMWMtMS4xMjk4My0xLjEyOTgzLTIuMTkyMDktMi4yODMyOC0zLjI0NTQ1LTMuNDRhMTAuMTU0NCAxMC4xNTQ0IDAgMCAwIDEuNjQ0MjggMTUuNjc5NTdsMzMuNTg4NyAyMS44MzY5NGMxNC44NjU4MyA2LjE1NTA5IDMwLjQxMzU5IDEwLjAwMzkgNDUuNzAwNTggMTMuNzcxNjYgMjMuODY4NCA1Ljg4MzU3IDQ2LjY2NzA4IDExLjUyNDY0IDY2LjQxODkgMjUuMTk3bDEwLjE2MDYtNi42MDU3Yy0yMi40NjMzMi0xNi44ODU4Ny00OC41MjItMjMuMzU1NjItNzMuODY0NDctMjkuNjAyNTMtMjkuNzMzNDMtNy4zMjg1MS01Ny44MTc5MS0xNC4yNTE3NS04MC40MDMxNC0zNi44MzY5NHptMTA5LjMwMDI0IDg0LjMzOTQ4YzIuMjM1NCAxLjA4NjEgNC40NDcxOCAyLjIyOTE5IDYuNjIyNjkgMy40NjAzNmExMC4xNjAxMiAxMC4xNjAxMiAwIDAgMCA3LjY0NTQzLTEuNDAybDUuNjM4NTgtMy42NjU3N2MtMTguMTEwNjUtMTIuMTEyNjYtMzguMjQ2NTMtMTguMjQ3LTU4LjMxMDk1LTIzLjM2MDQ0eiIgY2xhc3M9ImNscy0xIi8+PC9zdmc+ + longDescription: The Flux Source Controller is a Kubernetes operator specialised + in artifacts acquisition from external sources such as Git, Helm repositories + and S3 buckets. It implements the source.toolkit.fluxcd.io API and is a core component + of the GitOps toolkit. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: The Flux Source Controller is a Kubernetes operator specialised + in artifacts acquisition from external sources such as Git, Helm repositories + and S3 buckets. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-flux-source-controller + for community support. From 5fd1422e4ed9df5724c82793ce96c199a0e6915f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 26 Aug 2023 18:20:33 +0200 Subject: [PATCH 272/601] Update Flux metadata and add version 2.1.0 (#241) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.1.0.yml | 100 ++++++++++++++++++ .../flux.packages.kadras.io/metadata.yml | 22 ++++ 2 files changed, 122 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.1.0.yml create mode 100644 repo/packages/flux.packages.kadras.io/metadata.yml diff --git a/repo/packages/flux.packages.kadras.io/2.1.0.yml b/repo/packages/flux.packages.kadras.io/2.1.0.yml new file mode 100644 index 0000000..d2bf9d9 --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.1.0.yml @@ -0,0 +1,100 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.1.0 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2023-08-26T16:18:51Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:cdce7eec11d377235b4598ca459b56a15cb16667e5cee34438ca98da77f9cbb5 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + components: + additionalProperties: false + description: Settings for which Flux components to deploy besides Source + Controller. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: false + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.1.0 diff --git a/repo/packages/flux.packages.kadras.io/metadata.yml b/repo/packages/flux.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..06bd653 --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/metadata.yml @@ -0,0 +1,22 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: flux.packages.kadras.io +spec: + categories: + - gitops + displayName: flux + iconSVGBase64: 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 + longDescription: Flux is a tool for keeping Kubernetes clusters in sync with sources + of configuration (like Git repositories and OCI artifacts), and automating updates + to configuration when there is new code to deploy. It's constructed with the GitOps + Toolkit, a set of composable APIs and specialized tools for building continuous + deployment on top of Kubernetes. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: Flux is a continuous deployment solution for Kubernetes powered + by the GitOps Toolkit. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-flux + for community support. From e0eddf0236bbb6c6823a1fbc3d05835b36875291 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 26 Aug 2023 18:22:35 +0200 Subject: [PATCH 273/601] Remove deprecated packages --- README.md | 2 +- .../1.1.0.yml | 128 ------------------ .../metadata.yml | 22 --- .../1.0.1+kadras.1.yml | 128 ------------------ .../metadata.yml | 22 --- 5 files changed, 1 insertion(+), 301 deletions(-) delete mode 100644 repo/packages/flux-source-controller.packages.kadras.io/1.1.0.yml delete mode 100644 repo/packages/flux-source-controller.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1+kadras.1.yml delete mode 100644 repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml diff --git a/README.md b/README.md index 456b375..3b89077 100644 --- a/README.md +++ b/README.md @@ -23,7 +23,7 @@ This repository contains the following Carvel packages. | [cert-manager-issuers](https://github.com/kadras-io/cert-manager-issuers) | A collection of issuers for Cert Manager, used by the Kadras platform to support TLS via a private CA or Let's Encrypt. | | [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | | [engineering-platform](https://github.com/kadras-io/engineering-platform) | A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes. | -| [fluxcd-source-controller](https://github.com/kadras-io/package-for-fluxcd-source-controller) | A source management component from the Flux GitOps Toolkit to provide a common interface for artifacts acquisition. | +| [flux](https://github.com/kadras-io/package-for-flux) | A continuous deployment solution for Kubernetes, powered by the GitOps Toolkit. | | [knative-eventing](https://github.com/kadras-io/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | | [knative-serving](https://github.com/kadras-io/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | | [kpack](https://github.com/kadras-io/package-for-kpack) | A Kubernetes-native implementation of Cloud Native Buildpacks to build source code into OCI images from within your cluster. | diff --git a/repo/packages/flux-source-controller.packages.kadras.io/1.1.0.yml b/repo/packages/flux-source-controller.packages.kadras.io/1.1.0.yml deleted file mode 100644 index dd37d36..0000000 --- a/repo/packages/flux-source-controller.packages.kadras.io/1.1.0.yml +++ /dev/null @@ -1,128 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux-source-controller.packages.kadras.io.1.1.0 -spec: - licenses: - - Apache 2.0 - refName: flux-source-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux-source-controller/releases - releasedAt: "2023-08-26T14:58:37Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux-source-controller@sha256:fcb0af1a66f03a80bb36dd666400b8e25ee707619edf1247513635dc83bb8bc9 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - leader_election: - additionalProperties: false - description: Leader election configuration. - properties: - lease_duration: - default: 35s - description: Interval at which non-leader candidates will wait to force - acquire leadership. - type: string - release_on_cancel: - default: "true" - description: Defines if the leader should step down voluntarily on controller - manager shutdown. - type: string - renew_deadline: - default: 30s - description: Duration that the leading controller manager will retry - refreshing leadership before giving up. - type: string - retry_period: - default: 5s - description: Duration the LeaderElector clients should wait between - tries of actions. - type: string - type: object - logging: - additionalProperties: false - description: Logging configuration. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - namespace: - default: flux-system - description: The namespace where to install Flux Source Controller. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment. - properties: - limits: - additionalProperties: false - description: Resource limits configuration for the `source-controller` - Deployment. - properties: - cpu: - default: 1000m - description: CPU limits configuration for the `source-controller` - Deployment. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the `source-controller` - Deployment. - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the `source-controller` Service. - type: integer - type: object - version: 1.1.0 diff --git a/repo/packages/flux-source-controller.packages.kadras.io/metadata.yml b/repo/packages/flux-source-controller.packages.kadras.io/metadata.yml deleted file mode 100644 index 4692f59..0000000 --- a/repo/packages/flux-source-controller.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,22 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: flux-source-controller.packages.kadras.io -spec: - categories: - - gitops - displayName: flux-source-controller - iconSVGBase64: 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 - longDescription: The Flux Source Controller is a Kubernetes operator specialised - in artifacts acquisition from external sources such as Git, Helm repositories - and S3 buckets. It implements the source.toolkit.fluxcd.io API and is a core component - of the GitOps toolkit. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: The Flux Source Controller is a Kubernetes operator specialised - in artifacts acquisition from external sources such as Git, Helm repositories - and S3 buckets. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-flux-source-controller - for community support. diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1+kadras.1.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1+kadras.1.yml deleted file mode 100644 index 4ce6e85..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/1.0.1+kadras.1.yml +++ /dev/null @@ -1,128 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io.1.0.1+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: fluxcd-source-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-fluxcd-source-controller/releases - releasedAt: "2023-08-20T14:59:00Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-fluxcd-source-controller@sha256:5d9d9d1a2b1350e67081448d98763097c82a96f9a5b1203a304e07e8d0627547 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - leader_election: - additionalProperties: false - description: Leader election configuration. - properties: - lease_duration: - default: 35s - description: Interval at which non-leader candidates will wait to force - acquire leadership. - type: string - release_on_cancel: - default: "true" - description: Defines if the leader should step down voluntarily on controller - manager shutdown. - type: string - renew_deadline: - default: 30s - description: Duration that the leading controller manager will retry - refreshing leadership before giving up. - type: string - retry_period: - default: 5s - description: Duration the LeaderElector clients should wait between - tries of actions. - type: string - type: object - logging: - additionalProperties: false - description: Logging configuration. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - namespace: - default: flux-source-system - description: The namespace where to install FluxCD Source Controller. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - resources: - additionalProperties: false - description: Resource configuration for the source-controller Deployment. - properties: - limits: - additionalProperties: false - description: Resource limits configuration for the `source-controller` - Deployment. - properties: - cpu: - default: 1000m - description: CPU limits configuration for the `source-controller` - Deployment. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the `source-controller` - Deployment. - type: string - type: object - type: object - service_port: - default: 80 - description: Port configuration for the `source-controller` Service. - type: integer - type: object - version: 1.0.1+kadras.1 diff --git a/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml b/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml deleted file mode 100644 index 825628f..0000000 --- a/repo/packages/fluxcd-source-controller.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,22 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: fluxcd-source-controller.packages.kadras.io -spec: - categories: - - gitops - displayName: fluxcd-source-controller - iconSVGBase64: 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 - longDescription: The FluxCD Source Controller is a Kubernetes operator specialised - in artifacts acquisition from external sources such as Git, Helm repositories - and S3 buckets. It implements the source.toolkit.fluxcd.io API and is a core component - of the GitOps toolkit. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: The FluxCD Source Controller is a Kubernetes operator specialised - in artifacts acquisition from external sources such as Git, Helm repositories - and S3 buckets. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-fluxcd-source-controller - for community support. From 6b91472adfa7ea8f96adfcc4b2441b73765763b6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 26 Aug 2023 19:22:14 +0200 Subject: [PATCH 274/601] Update Cartographer metadata and add version 0.8.0 (#242) Co-authored-by: github-actions --- .../cartographer.packages.kadras.io/0.8.0.yml | 148 ++++++++++++++++++ 1 file changed, 148 insertions(+) create mode 100644 repo/packages/cartographer.packages.kadras.io/0.8.0.yml diff --git a/repo/packages/cartographer.packages.kadras.io/0.8.0.yml b/repo/packages/cartographer.packages.kadras.io/0.8.0.yml new file mode 100644 index 0000000..d41ab22 --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.8.0.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer.packages.kadras.io.0.8.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases + releasedAt: "2023-08-26T17:20:15Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cartographer@sha256:c4349d3a1a8358a37d232d696fb1d71296cf58150a7daccb19c346321ae8bbd1 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cartographer: + additionalProperties: false + description: Settings for the Cartographer component. + properties: + concurrency: + additionalProperties: false + description: Concurrency configuration for the Cartographer controller. + properties: + max_deliveries: + default: 2 + description: Maximum concurrent Deliveries processed by the Cartographer + controller. + type: integer + max_runnables: + default: 2 + description: Maximum concurrent Runnables processed by the Cartographer + controller. + type: integer + max_workloads: + default: 2 + description: Maximum concurrent Workloads processed by the Cartographer + controller. + type: integer + type: object + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "1" + description: CPU limits configuration for the Cartographer controller. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the Cartographer + controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU requests configuration for the Cartographer + controller. + type: string + memory: + default: 512Mi + description: Memory requests configuration for the Cartographer + controller. + type: string + type: object + type: object + type: object + conventions: + additionalProperties: false + description: Settings for the Cartographer Conventions component. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to authenticate the Cartographer Conventions + controller when deployed on AWS. + nullable: true + type: string + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer Conventions + controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU limits configuration for the Cartographer Conventions + controller. + type: string + memory: + default: 256Mi + description: Memory limits configuration for the Cartographer + Conventions controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU requests configuration for the Cartographer + Conventions controller. + type: string + memory: + default: 20Mi + description: Memory requests configuration for the Cartographer + Conventions controller. + type: string + type: object + type: object + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + level: + default: info + description: 'Log verbosity level. Options: `debug`, `info`, `error`.' + type: string + type: object + type: object + version: 0.8.0 From ba02a5ec049bb722304c5ef80960252cbce15803 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 3 Sep 2023 12:36:08 +0200 Subject: [PATCH 275/601] Update Kyverno metadata and add version 1.10.3+kadras.1 (#252) Co-authored-by: github-actions --- .../1.10.3+kadras.1.yml | 170 ++++++++++++++++++ .../kyverno.packages.kadras.io/metadata.yml | 1 + 2 files changed, 171 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.10.3+kadras.1.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.10.3+kadras.1.yml b/repo/packages/kyverno.packages.kadras.io/1.10.3+kadras.1.yml new file mode 100644 index 0000000..557afb3 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.10.3+kadras.1.yml @@ -0,0 +1,170 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.10.3+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2023-09-03T10:27:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:19278627ef8c69a190467d990f84bb7f9843243143a0863dfe0ea000ee77ba1e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.10.3+kadras.1 diff --git a/repo/packages/kyverno.packages.kadras.io/metadata.yml b/repo/packages/kyverno.packages.kadras.io/metadata.yml index 78193d4..7ef45e8 100644 --- a/repo/packages/kyverno.packages.kadras.io/metadata.yml +++ b/repo/packages/kyverno.packages.kadras.io/metadata.yml @@ -8,6 +8,7 @@ spec: - policy-management - policies displayName: kyverno + iconSVGBase64: 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 longDescription: Kyverno is a policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans. maintainers: From a7e5013a5c8e7bf5553b0ffe5291b1ae2a0cc447 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 3 Sep 2023 14:08:27 +0200 Subject: [PATCH 276/601] Update Flux metadata and add version 2.1.0+kadras.1 (#253) Co-authored-by: github-actions --- .../2.1.0+kadras.1.yml | 99 +++++++++++++++++++ 1 file changed, 99 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.1.0+kadras.1.yml diff --git a/repo/packages/flux.packages.kadras.io/2.1.0+kadras.1.yml b/repo/packages/flux.packages.kadras.io/2.1.0+kadras.1.yml new file mode 100644 index 0000000..82d63ce --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.1.0+kadras.1.yml @@ -0,0 +1,99 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.1.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2023-09-03T11:49:11Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:97859e3c50036cc31ec1407119dce63c186f6285df490b979d929f1f69cac6c9 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: true + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: true + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.1.0+kadras.1 From 17f03dc1f15a41690b146df41b47fa5f773d2196 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 3 Sep 2023 15:09:31 +0200 Subject: [PATCH 277/601] Update Cartographer metadata and add version 0.8.0+kadras.1 (#254) Co-authored-by: github-actions --- .../0.8.0+kadras.1.yml | 151 ++++++++++++++++++ 1 file changed, 151 insertions(+) create mode 100644 repo/packages/cartographer.packages.kadras.io/0.8.0+kadras.1.yml diff --git a/repo/packages/cartographer.packages.kadras.io/0.8.0+kadras.1.yml b/repo/packages/cartographer.packages.kadras.io/0.8.0+kadras.1.yml new file mode 100644 index 0000000..d15f1f5 --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.8.0+kadras.1.yml @@ -0,0 +1,151 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer.packages.kadras.io.0.8.0+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: cartographer.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases + releasedAt: "2023-09-03T13:07:33Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cartographer@sha256:e53bf0407c398709cb51ef538425b50b09f63620e4425d7acf7f1aba334b73cc + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cartographer: + additionalProperties: false + description: Settings for the Cartographer component. + properties: + concurrency: + additionalProperties: false + description: Concurrency configuration for the Cartographer controller. + properties: + max_deliveries: + default: 2 + description: Maximum concurrent Deliveries processed by the Cartographer + controller. + type: integer + max_runnables: + default: 2 + description: Maximum concurrent Runnables processed by the Cartographer + controller. + type: integer + max_workloads: + default: 2 + description: Maximum concurrent Workloads processed by the Cartographer + controller. + type: integer + type: object + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "1" + description: CPU limits configuration for the Cartographer controller. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the Cartographer + controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU requests configuration for the Cartographer + controller. + type: string + memory: + default: 512Mi + description: Memory requests configuration for the Cartographer + controller. + type: string + type: object + type: object + type: object + conventions: + additionalProperties: false + description: Settings for the Cartographer Conventions component. + properties: + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer Conventions + controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU limits configuration for the Cartographer Conventions + controller. + type: string + memory: + default: 256Mi + description: Memory limits configuration for the Cartographer + Conventions controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU requests configuration for the Cartographer + Conventions controller. + type: string + memory: + default: 20Mi + description: Memory requests configuration for the Cartographer + Conventions controller. + type: string + type: object + type: object + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + level: + default: info + description: 'Log verbosity level. Options: `debug`, `info`, `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Cartographer optional components to deploy. + properties: + cartographer_conventions: + default: true + description: Whether to deploy the Cartographer Conventions component. + type: boolean + type: object + type: object + version: 0.8.0+kadras.1 From e5ef4b44f7937e9a39ba3d3e90ca59dae1941e85 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 3 Sep 2023 17:30:49 +0200 Subject: [PATCH 278/601] Update Flux metadata and add version 2.1.0+kadras.2 (#255) Co-authored-by: github-actions --- .../2.1.0+kadras.2.yml | 99 +++++++++++++++++++ 1 file changed, 99 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.1.0+kadras.2.yml diff --git a/repo/packages/flux.packages.kadras.io/2.1.0+kadras.2.yml b/repo/packages/flux.packages.kadras.io/2.1.0+kadras.2.yml new file mode 100644 index 0000000..65ac6b5 --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.1.0+kadras.2.yml @@ -0,0 +1,99 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.1.0+kadras.2 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2023-09-03T15:26:28Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:b89537f920c43d74f9958362539c0d12ce3f706ccd92b2a0c08bbfbda99fc499 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.1.0+kadras.2 From 7c9c99912a06d7ea04e1b29c4fdd3a206e1bef8b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 5 Sep 2023 22:02:02 +0200 Subject: [PATCH 279/601] Update Cartographer Blueprints metadata and add version 0.7.0 (#256) Co-authored-by: github-actions --- .../0.7.0.yml | 43 +++++++++++++++++++ 1 file changed, 43 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.7.0.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.0.yml new file mode 100644 index 0000000..0410a20 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.0.yml @@ -0,0 +1,43 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.7.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-09-05T19:46:14Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:6cd4e0308dc19052e6441060093adb383b1c9300e71280e74b93061233defdae + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints to esclude from being created in the cluster. + items: + default: "" + type: string + type: array + tekton_catalog_namespace: + default: tekton-catalog + description: The namespace where the Tekton Catalog package has been installed. + type: string + type: object + version: 0.7.0 From 86890f4047bf223cd2e0656aa2010d2cac5741b2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 5 Sep 2023 22:03:16 +0200 Subject: [PATCH 280/601] Update Cartographer Supply Chains metadata and add version 0.7.0 (#257) Co-authored-by: github-actions --- .../0.7.0.yml | 155 ++++++++++++++++++ 1 file changed, 155 insertions(+) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.0.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.0.yml new file mode 100644 index 0000000..5b9b690 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.0.yml @@ -0,0 +1,155 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.7.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-09-05T20:01:11Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:a395c7dbaf25c8c1d014a44df929261b072718301836567d5e85f0f2cec01a25 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + external_delivery: + default: false + description: Whether a deliverable is manually applied to an external Kubernetes + cluster. + type: boolean + git_credentials_secret: + default: "" + description: The Secret containing authentication credentials for Git repositories. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chain. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + description: Settings for the Git repository used for the GitOps workflows. + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + registry_credentials_secret: + default: "" + description: The Secret containing authentication credentials for the OCI + registry. + type: string + service_account: + default: default + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' + type: string + type: object + version: 0.7.0 From 2592763d028923f69351e34a166e306cbc4bb0ea Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 6 Sep 2023 21:38:12 +0200 Subject: [PATCH 281/601] Update Cartographer Blueprints metadata and add version 0.7.1 (#258) Co-authored-by: github-actions --- .../0.7.1.yml | 43 +++++++++++++++++++ 1 file changed, 43 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.7.1.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.1.yml new file mode 100644 index 0000000..003c6e6 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.1.yml @@ -0,0 +1,43 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.7.1 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-09-06T19:36:11Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:77837b0e2ff90f6da631b6e34c9b3fc5d6bfdd1c30517b6c427e42218892cf1a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints to esclude from being created in the cluster. + items: + default: "" + type: string + type: array + tekton_catalog_namespace: + default: tekton-catalog + description: The namespace where the Tekton Catalog package has been installed. + type: string + type: object + version: 0.7.1 From e440a492a70747d78e042028e3010844330a88eb Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 6 Sep 2023 21:43:25 +0200 Subject: [PATCH 282/601] Update Kadras RBAC metadata and add version 0.1.0 (#259) Co-authored-by: github-actions --- .../kadras-rbac.packages.kadras.io/0.1.0.yml | 31 +++++++++++++++++++ .../metadata.yml | 18 +++++++++++ 2 files changed, 49 insertions(+) create mode 100644 repo/packages/kadras-rbac.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/kadras-rbac.packages.kadras.io/metadata.yml diff --git a/repo/packages/kadras-rbac.packages.kadras.io/0.1.0.yml b/repo/packages/kadras-rbac.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..ed61e7c --- /dev/null +++ b/repo/packages/kadras-rbac.packages.kadras.io/0.1.0.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kadras-rbac.packages.kadras.io.0.1.0 +spec: + licenses: + - Apache 2.0 + refName: kadras-rbac.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-rbac/releases + releasedAt: "2023-09-06T19:41:01Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-rbac@sha256:0f4701043371f3863c20fd4d5c51bce4d77b082488677bb51728f4abe7017103 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.1.0 diff --git a/repo/packages/kadras-rbac.packages.kadras.io/metadata.yml b/repo/packages/kadras-rbac.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..e62afbb --- /dev/null +++ b/repo/packages/kadras-rbac.packages.kadras.io/metadata.yml @@ -0,0 +1,18 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: kadras-rbac.packages.kadras.io +spec: + categories: + - rbac + displayName: kadras-rbac + longDescription: Default roles and RBAC configuration for the Kadras Engineering + Platform, supporting users and service accounts. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: Default roles and RBAC configuration for the Kadras Engineering + Platform. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/kadras-rbac + for community support. From cb74c0e441eddd01856a39aff9d55152d81edf75 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 6 Sep 2023 22:30:44 +0200 Subject: [PATCH 283/601] Update Spring Boot Conventions metadata and add version 0.3.1 (#260) Co-authored-by: github-actions --- .../0.3.1.yml | 67 +++++++++++++++++++ 1 file changed, 67 insertions(+) create mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.3.1.yml diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.1.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.1.yml new file mode 100644 index 0000000..084d38d --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.1.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io.0.3.1 +spec: + licenses: + - Apache 2.0 + refName: spring-boot-conventions.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases + releasedAt: "2023-09-06T20:27:16Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:0f8fab76ecbe85548938a2b7ea650ed93562914881d336a5dedb53298e18a5f2 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: spring-boot-conventions + description: The namespace where to install Spring Boot Conventions + type: string + resources: + additionalProperties: false + description: Resource configuration for the Convention Server + properties: + limits: + additionalProperties: false + description: Resource limits + properties: + cpu: + default: 100m + description: CPU limits + type: string + memory: + default: 256Mi + description: Memory limits + type: string + type: object + requests: + additionalProperties: false + description: Resource requests + properties: + cpu: + default: 100m + description: CPU requests + type: string + memory: + default: 20Mi + description: Memory requests + type: string + type: object + type: object + type: object + version: 0.3.1 From 729081a0cdd068619154b37e0e3c142ae33831d3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 17:56:16 +0200 Subject: [PATCH 284/601] Update Cartographer Blueprints metadata and add version 0.7.3 (#262) Co-authored-by: github-actions --- .../0.7.3.yml | 43 +++++++++++++++++++ 1 file changed, 43 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.7.3.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.3.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.3.yml new file mode 100644 index 0000000..ec0950b --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.3.yml @@ -0,0 +1,43 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.7.3 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-09-08T15:52:49Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:d27f16913ff43039c3474eb9cf681e9b8073a51502e0377ec90856aea002b28f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints to esclude from being created in the cluster. + items: + default: "" + type: string + type: array + tekton_catalog_namespace: + default: tekton-catalog + description: The namespace where the Tekton Catalog package has been installed. + type: string + type: object + version: 0.7.3 From a22b5961f9dff57d3ec7e77ab9892d0523476719 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 18:08:34 +0200 Subject: [PATCH 285/601] Update Cartographer Supply Chains metadata and add version 0.7.1 (#263) Co-authored-by: github-actions --- .../0.7.1.yml | 155 ++++++++++++++++++ 1 file changed, 155 insertions(+) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.1.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.1.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.1.yml new file mode 100644 index 0000000..b621d16 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.1.yml @@ -0,0 +1,155 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.7.1 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-09-08T16:01:09Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:b6443d240c05043b1e9486276c04b31d7c548e73031dac135ca457d563780563 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + external_delivery: + default: false + description: Whether a deliverable is manually applied to an external Kubernetes + cluster. + type: boolean + git_credentials_secret: + default: "" + description: The Secret containing authentication credentials for Git repositories. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chain. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + description: Settings for the Git repository used for the GitOps workflows. + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + registry_credentials_secret: + default: "" + description: The Secret containing authentication credentials for the OCI + registry. + type: string + service_account: + default: supply-chain + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' + type: string + type: object + version: 0.7.1 From 574a5efa61e079004e6f55c8d6e1784249667ea0 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 18:10:56 +0200 Subject: [PATCH 286/601] Update RBAC Configurer metadata and add version 0.2.1 (#264) Co-authored-by: github-actions --- .../0.2.1.yml | 31 +++++++++++++++++++ .../metadata.yml | 18 +++++++++++ 2 files changed, 49 insertions(+) create mode 100644 repo/packages/rbac-configurer.packages.kadras.io/0.2.1.yml create mode 100644 repo/packages/rbac-configurer.packages.kadras.io/metadata.yml diff --git a/repo/packages/rbac-configurer.packages.kadras.io/0.2.1.yml b/repo/packages/rbac-configurer.packages.kadras.io/0.2.1.yml new file mode 100644 index 0000000..859b647 --- /dev/null +++ b/repo/packages/rbac-configurer.packages.kadras.io/0.2.1.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: rbac-configurer.packages.kadras.io.0.2.1 +spec: + licenses: + - Apache 2.0 + refName: rbac-configurer.packages.kadras.io + releaseNotes: https://github.com/kadras-io/rbac-configurer/releases + releasedAt: "2023-09-08T16:07:10Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/rbac-configurer@sha256:3421d6fb80f732536d46401ef5e43e1e476b332f94660fb04d59ef4021df3f7d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.2.1 diff --git a/repo/packages/rbac-configurer.packages.kadras.io/metadata.yml b/repo/packages/rbac-configurer.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..76cf3f5 --- /dev/null +++ b/repo/packages/rbac-configurer.packages.kadras.io/metadata.yml @@ -0,0 +1,18 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: rbac-configurer.packages.kadras.io +spec: + categories: + - rbac + displayName: rbac-configurer + longDescription: Default roles and RBAC configuration for the Kadras Engineering + Platform, supporting users and service accounts. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: Default roles and RBAC configuration for the Kadras Engineering + Platform. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/rbac-configurer + for community support. From f7030ecc9f947fde3cfc7513e44075f617ae407f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 18:26:14 +0200 Subject: [PATCH 287/601] Update secretgen-controller metadata and add version 0.14.10 (#265) Co-authored-by: github-actions --- .../0.14.10.yml | 35 +++++++++++++++++++ .../metadata.yml | 1 + 2 files changed, 36 insertions(+) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.14.10.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.14.10.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.14.10.yml new file mode 100644 index 0000000..6d97deb --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.14.10.yml @@ -0,0 +1,35 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.14.10 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases + releasedAt: "2023-09-08T16:24:06Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:c3cee558d707a0557795f7aa19fe5d2c847d8111cfb06edc081b8d9e5b724271 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.14.10 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml b/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml index 226534a..f805679 100644 --- a/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml +++ b/repo/packages/secretgen-controller.packages.kadras.io/metadata.yml @@ -7,6 +7,7 @@ spec: categories: - secrets management displayName: secretgen-controller + iconSVGBase64: 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 longDescription: A cloud-native solution to generate and share Secrets, passwords, keys, and certificates. maintainers: From 2dda99f5f12f9ba029b5354286160ab9d0675718 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 18:35:08 +0200 Subject: [PATCH 288/601] Update Workspace Provisioner metadata and add version 0.3.0 (#266) Co-authored-by: github-actions --- .../0.3.0.yml | 114 ++++++++++++++++++ 1 file changed, 114 insertions(+) create mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/0.3.0.yml diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/0.3.0.yml b/repo/packages/workspace-provisioner.packages.kadras.io/0.3.0.yml new file mode 100644 index 0000000..32bc1cc --- /dev/null +++ b/repo/packages/workspace-provisioner.packages.kadras.io/0.3.0.yml @@ -0,0 +1,114 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: workspace-provisioner.packages.kadras.io.0.3.0 +spec: + licenses: + - Apache 2.0 + refName: workspace-provisioner.packages.kadras.io + releaseNotes: https://github.com/kadras-io/workspace-provisioner/releases + releasedAt: "2023-09-08T16:33:23Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/workspace-provisioner@sha256:b852990e1cf32796e852880ed1d5eccbbef709f2f58d5fd3e342540667633ac3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Cosign key + pair. + type: string + type: object + type: object + git: + additionalProperties: false + description: Configuration to access the Git repositories used in the GitOps + workflows. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Git credentials. + properties: + name: + default: "" + description: The name of the Secret holding the Git credentials. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Git credentials. + type: string + type: object + server: + default: https://github.com + description: The Git server hosting the Git repositories used in the + GitOps workflows. + type: string + type: object + namespaces: + default: [] + description: Configuration for the namespaces the platform will provision + and manage. + items: + additionalProperties: false + description: Details about the namespace to configure. + properties: + name: + default: "" + type: string + type: object + type: array + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the workspace will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the OCI registry. + properties: + name: + default: "" + description: The name of the Secret holding the credentials to access + the OCI registry. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + type: object + service_account: + default: supply-chain + description: The `ServiceAccount` to be configured with credentials and + roles in each workspace. + type: string + type: object + version: 0.3.0 From 559c410438efb24a7662bbf59b109320cc09fd93 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 18:53:04 +0200 Subject: [PATCH 289/601] Update Buildpacks Catalog metadata and add version 0.9.2 (#267) Co-authored-by: github-actions --- .../0.9.2.yml | 47 +++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.2.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.2.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.2.yml new file mode 100644 index 0000000..203065f --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.2.yml @@ -0,0 +1,47 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.9.2 +spec: + capacityRequirementsDescription: Container registry with at least 1GB available + space used by kpack to create builder images. + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-09-08T16:51:19Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:0160ce06bb486bd82f6649b6992a2e8b378737dc33a7d564bbc941cf5daf6f11 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.9.2 From 1c54974923131a394ad88aa98e351d8a067e8505 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 19:15:34 +0200 Subject: [PATCH 290/601] Update Argo CD metadata and add version 2.8.3 (#268) Co-authored-by: github-actions --- .../argo-cd.packages.kadras.io/2.8.3.yml | 45 +++++++++++++++++++ .../argo-cd.packages.kadras.io/metadata.yml | 1 + 2 files changed, 46 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.8.3.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.8.3.yml b/repo/packages/argo-cd.packages.kadras.io/2.8.3.yml new file mode 100644 index 0000000..46fc041 --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.8.3.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.8.3 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases + releasedAt: "2023-09-08T17:13:47Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-argo-cd@sha256:325c630476b659477b15422de5c8fbeb285c6e7fed73e21a281346cc9c72c603 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.8.3 diff --git a/repo/packages/argo-cd.packages.kadras.io/metadata.yml b/repo/packages/argo-cd.packages.kadras.io/metadata.yml index 6203ed3..c20b3df 100644 --- a/repo/packages/argo-cd.packages.kadras.io/metadata.yml +++ b/repo/packages/argo-cd.packages.kadras.io/metadata.yml @@ -8,6 +8,7 @@ spec: - ci/cd - gitops displayName: argo-cd + iconSVGBase64: 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 longDescription: Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. maintainers: - name: Thomas Vitale From fe37822c214c7c377cc9a69a2698913e197c1c7c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 19:19:07 +0200 Subject: [PATCH 291/601] Update cert-manager metadata and add version 1.12.4 (#269) Co-authored-by: github-actions --- .../1.12.4.yml | 145 ++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 146 insertions(+), 1 deletion(-) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.4.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.4.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.4.yml new file mode 100644 index 0000000..9b75df4 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.12.4.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.12.4 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-09-08T17:17:01Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:8fbdaedcf58719c2f175c4ce237721bfe908b5d4afc55425ef28b98f4c9590e2 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + probes: + additionalProperties: false + description: Settings for the cert-manager controller probes. + properties: + enabled: + default: false + description: 'Whether to enable to optional probes on the cert-manager + controller. It''s recommended not to enable this unless you encounter + issues with the controller Pods not restarting correctly. More + information: https://github.com/cert-manager/cert-manager/pull/5962.' + type: boolean + type: object + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.12.4 diff --git a/repo/packages/cert-manager.packages.kadras.io/metadata.yml b/repo/packages/cert-manager.packages.kadras.io/metadata.yml index 2727aa2..ea7c04c 100644 --- a/repo/packages/cert-manager.packages.kadras.io/metadata.yml +++ b/repo/packages/cert-manager.packages.kadras.io/metadata.yml @@ -9,7 +9,7 @@ spec: - security - tls displayName: cert-manager - iconSVGBase64: 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 + iconSVGBase64: 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 longDescription: Adds certificates and certificate issuers as resource types in Kubernetes clusters, and simplifies the process of obtaining, renewing and using those certificates. It can issue certificates from a variety of supported sources. From 55eda6d509bc19b40f5d67eacb4355499b8dfb02 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 19:26:05 +0200 Subject: [PATCH 292/601] Update Knative Eventing metadata and add version 1.11.2 (#270) Co-authored-by: github-actions --- .../1.11.2.yml | 45 +++++++++++++++++++ .../metadata.yml | 1 + 2 files changed, 46 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.11.2.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.11.2.yml b/repo/packages/knative-eventing.packages.kadras.io/1.11.2.yml new file mode 100644 index 0000000..95973e5 --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.11.2.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.11.2 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases + releasedAt: "2023-09-08T17:21:45Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:c986465e6ce93e815351e40444cd5ae76a4e630c42ce064b6b88e7c2fe1aac6e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.11.2 diff --git a/repo/packages/knative-eventing.packages.kadras.io/metadata.yml b/repo/packages/knative-eventing.packages.kadras.io/metadata.yml index 34a5f8b..f7a6251 100644 --- a/repo/packages/knative-eventing.packages.kadras.io/metadata.yml +++ b/repo/packages/knative-eventing.packages.kadras.io/metadata.yml @@ -8,6 +8,7 @@ spec: - eventing - cloudevents displayName: knative-eventing + iconSVGBase64: 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 longDescription: Knative Eventing provides tools for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. maintainers: From f2d421acb65bee993ce258c1708cac84f8c89c40 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 19:43:33 +0200 Subject: [PATCH 293/601] Update Contour metadata and add version 1.26.0 (#271) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.26.0.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.26.0.yml diff --git a/repo/packages/contour.packages.kadras.io/1.26.0.yml b/repo/packages/contour.packages.kadras.io/1.26.0.yml new file mode 100644 index 0000000..3915a40 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.26.0.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.26.0 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-09-08T17:41:46Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:58b5f179ca6db405242b95761b3f99a16d3fabc7ec45c5141323eaa37f79e091 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service in + case the `infrastructure_provider` doesn't enforce one already. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy + in case the `infrastructure_provider` doesn't enforce one already. + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + dnsPolicy: + default: ClusterFirst + description: The DNS policy for the Envoy pods. + type: string + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.26.0 From d2183955117b489494d8eaf55f3186552f4c445e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 21:24:35 +0200 Subject: [PATCH 294/601] Update Tekton Pipelines metadata and add version 0.51.0 (#272) Co-authored-by: github-actions --- .../0.51.0.yml | 556 ++++++++++++++++++ 1 file changed, 556 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.51.0.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.51.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.51.0.yml new file mode 100644 index 0000000..08857c2 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.51.0.yml @@ -0,0 +1,556 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.51.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-09-08T19:22:53Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:e4b474a4bfe30020bc345f6330fcd8440dd7692803a775127305f358145038e9 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-resolver-type: + default: "" + description: The default resolver type to be used in the cluster. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-events: + additionalProperties: false + description: Events configuration stored in the `config-events` ConfigMap. + properties: + sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, and + CustomRun. If no sink is specified, no CloudEvent is generated. + type: string + type: object + config-leader-election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + events: + additionalProperties: false + description: Settings for the `tekton-events-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-events-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + artifact_hub_url: + default: https://artifacthub.io/ + description: The Artifact Hub API used by the Hub Resolver to resolve + remote pipelines and tasks. + type: string + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + coschedule: + default: workspaces + description: 'Setting this flag will determine how PipelineRun Pods + are scheduled with Affinity Assistant. Options: `workspaces`, `pipelineruns`, + `isolate-pipelinerun`, `disabled`.' + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: beta + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-provenance-in-status: + default: "true" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiability: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + require-git-ssh-secret-known-hosts: + default: "true" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + results-from: + default: termination-message + description: Setting this flag will determine how Tekton pipelines will + handle extracting results from the task. Acceptable values are `termination-message` + or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus + should still be considered an alpha feature. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + set-security-context: + default: "false" + description: Setting this flag to `true` will limit privileges for containers + injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces + with `restricted` pod security standards. Not all Kubernetes implementations + support this option. + type: string + trusted-resources-verification-no-match-policy: + default: ignore + description: This flag affects the behavior of taskruns and pipelineruns + in cases where no VerificationPolicies match them. If it is set to + `fail`, TaskRuns and PipelineRuns will fail verification if no matching + policies are found. If it is set to `warn`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and an error + will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and no error + will be logged. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + enable: + default: false + description: Setting this flag to `true` enables the trace exporter. + type: boolean + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + endpoint: + default: "" + description: The endpoint where the distributed tracing backend + accepts OpenTelemetry traces using the Jaeger protocol. + type: string + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.51.0 From ec9bf34ae11ccb111c6a2541df1550f6e9d14f1d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 21:34:17 +0200 Subject: [PATCH 295/601] Update Tekton Catalog metadata and add version 0.2.2 (#273) Co-authored-by: github-actions --- .../0.2.2.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.2.2.yml diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.2.2.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.2.2.yml new file mode 100644 index 0000000..147cb6d --- /dev/null +++ b/repo/packages/tekton-catalog.packages.kadras.io/0.2.2.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-catalog.packages.kadras.io.0.2.2 +spec: + licenses: + - Apache 2.0 + refName: tekton-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/tekton-catalog/releases + releasedAt: "2023-09-08T19:32:17Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/tekton-catalog@sha256:1a8e4c9fe0b54ea3df5e92a843344053123819e921be9dbe667cecc892ba6058 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: tekton-catalog + description: The namespace where to deploy the Tekton Catalog. + type: string + type: object + version: 0.2.2 From aa09afec99a499eb27566c6a7aa2ef22ddf733ed Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 22:24:51 +0200 Subject: [PATCH 296/601] Update cert-manager metadata and add version 1.12.4+kadras.1 (#274) Co-authored-by: github-actions --- .../1.12.4+kadras.1.yml | 145 ++++++++++++++++++ 1 file changed, 145 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.4+kadras.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.4+kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.4+kadras.1.yml new file mode 100644 index 0000000..8a4b842 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.12.4+kadras.1.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.12.4+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-09-08T20:21:42Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:34a240ef3cde2a45fdfec344a61ec4d29e9ced803873be7c824c6428ea087dc5 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + probes: + additionalProperties: false + description: Settings for the cert-manager controller probes. + properties: + enabled: + default: false + description: 'Whether to enable to optional probes on the cert-manager + controller. It''s recommended not to enable this unless you encounter + issues with the controller Pods not restarting correctly. More + information: https://github.com/cert-manager/cert-manager/pull/5962.' + type: boolean + type: object + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.12.4+kadras.1 From 89ea94095004a07adf48e0a83b8f294c0f4fba84 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 22:26:59 +0200 Subject: [PATCH 297/601] Update kpack metadata and add version 0.12.0 (#275) Co-authored-by: github-actions --- .../kpack.packages.kadras.io/0.12.0.yml | 156 ++++++++++++++++++ 1 file changed, 156 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.12.0.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.12.0.yml b/repo/packages/kpack.packages.kadras.io/0.12.0.yml new file mode 100644 index 0000000..3a55631 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.12.0.yml @@ -0,0 +1,156 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.12.0 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2023-09-08T20:25:24Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:0c08da7a32445c7a9a08ab1584e2d1641b6311772036c1f5bbaa35831cd33735 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + create_export: + default: false + description: Whether to create a SecretExport resource to export + the Secret from the source namespace to the kpack namespace. Not + needed when installing kpack as part of the Kadras Enginnering + Platform. + type: boolean + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy (e.g. Kubernetes + API address). + type: string + type: object + type: object + version: 0.12.0 From a3284869b6e01cc66842faa740a745793a22aeb7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 23:28:08 +0200 Subject: [PATCH 298/601] Update Cartographer Blueprints metadata and add version 0.7.4 (#276) Co-authored-by: github-actions --- .../0.7.4.yml | 43 +++++++++++++++++++ 1 file changed, 43 insertions(+) create mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.7.4.yml diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.4.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.4.yml new file mode 100644 index 0000000..331cb38 --- /dev/null +++ b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.4.yml @@ -0,0 +1,43 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-blueprints.packages.kadras.io.0.7.4 +spec: + licenses: + - Apache 2.0 + refName: cartographer-blueprints.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases + releasedAt: "2023-09-08T21:26:01Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-blueprints@sha256:9d672e20a170cbcbe7322476e9cbbbf23c3b0fe0a4d99d8a35f74cccb72c384e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + excluded_blueprints: + default: [] + description: A list of blueprints to esclude from being created in the cluster. + items: + default: "" + type: string + type: array + tekton_catalog_namespace: + default: tekton-catalog + description: The namespace where the Tekton Catalog package has been installed. + type: string + type: object + version: 0.7.4 From ab249e54d120602c255f2b813afb0c506e8ad80d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 8 Sep 2023 23:56:29 +0200 Subject: [PATCH 299/601] Update Cartographer Supply Chains metadata and add version 0.7.2 (#277) Co-authored-by: github-actions --- .../0.7.2.yml | 155 ++++++++++++++++++ 1 file changed, 155 insertions(+) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.2.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.2.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.2.yml new file mode 100644 index 0000000..683143c --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.2.yml @@ -0,0 +1,155 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.7.2 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-09-08T21:45:27Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:dd7382949effbf7bbba14651c3e94966a52cc8cdc5e1b4852b4cac4bbe31161e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + external_delivery: + default: false + description: Whether a deliverable is manually applied to an external Kubernetes + cluster. + type: boolean + git_credentials_secret: + default: "" + description: The Secret containing authentication credentials for Git repositories. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chain. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + description: Settings for the Git repository used for the GitOps workflows. + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + registry_credentials_secret: + default: "" + description: The Secret containing authentication credentials for the OCI + registry. + type: string + service_account: + default: supply-chain + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' + type: string + type: object + version: 0.7.2 From 74c862ff83f02e8353a0eec021065473be3225ca Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 9 Sep 2023 00:16:26 +0200 Subject: [PATCH 300/601] Clean deprecated packages --- .../argo-cd.packages.kadras.io/2.8.0.yml | 45 -- .../0.9.1.yml | 47 -- .../0.6.1.yml | 44 -- .../0.7.0.yml | 43 -- .../0.7.1.yml | 43 -- .../0.7.3.yml | 43 -- .../0.6.0.yml | 145 ----- .../0.7.0.yml | 155 ----- .../0.7.1.yml | 155 ----- .../cartographer.packages.kadras.io/0.7.3.yml | 82 --- .../cartographer.packages.kadras.io/0.8.0.yml | 148 ----- .../1.12.3.yml | 145 ----- .../1.12.4.yml | 145 ----- .../contour.packages.kadras.io/1.25.2.yml | 211 ------- .../2.1.0+kadras.1.yml | 99 ---- .../flux.packages.kadras.io/2.1.0.yml | 100 ---- .../1.11.0.yml | 45 -- .../0.11.2+kadras.1.yml | 156 ----- .../kyverno.packages.kadras.io/1.10.3.yml | 31 - .../0.14.8.yml | 35 -- .../0.3.0.yml | 67 --- .../0.2.1.yml | 36 -- .../0.49.0.yml | 551 ------------------ .../0.2.1.yml | 114 ---- 24 files changed, 2685 deletions(-) delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.8.0.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.1.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.6.1.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.7.0.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.7.1.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.7.3.yml delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.6.0.yml delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.0.yml delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.1.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.7.3.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.8.0.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.3.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.4.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.25.2.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.1.0+kadras.1.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.1.0.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.11.0.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.11.2+kadras.1.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.10.3.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.14.8.yml delete mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.3.0.yml delete mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.2.1.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.49.0.yml delete mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/0.2.1.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.8.0.yml b/repo/packages/argo-cd.packages.kadras.io/2.8.0.yml deleted file mode 100644 index bfa3f1f..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.8.0.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.8.0 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases - releasedAt: "2023-08-21T14:16:14Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-argo-cd@sha256:235b2cf375d48c08dfdcd037a8cdf63cee5ea2ffa6b1b830f777bdc9d55df5e8 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.8.0 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.1.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.1.yml deleted file mode 100644 index b528c89..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.1.yml +++ /dev/null @@ -1,47 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.9.1 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-08-20T13:59:48Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:d9343cb559cde1673296b2168abd8b420f4ef9a1ad8cb2225db9042446cdd517 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.9.1 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.1.yml deleted file mode 100644 index 2036a02..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.6.1.yml +++ /dev/null @@ -1,44 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.6.1 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases - releasedAt: "2023-08-20T15:00:54Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:6ae5d8fcc698e545479e203f74c55625d39067076e75b5cfba4e5a19cb20ca98 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints and manifests to esclude from being created - in the cluster. - items: - default: "" - type: string - type: array - tekton_catalog_namespace: - default: tekton-catalog - description: The namespace where the Tekton Catalog package has been installed. - type: string - type: object - version: 0.6.1 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.0.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.0.yml deleted file mode 100644 index 0410a20..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.0.yml +++ /dev/null @@ -1,43 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.7.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases - releasedAt: "2023-09-05T19:46:14Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:6cd4e0308dc19052e6441060093adb383b1c9300e71280e74b93061233defdae - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints to esclude from being created in the cluster. - items: - default: "" - type: string - type: array - tekton_catalog_namespace: - default: tekton-catalog - description: The namespace where the Tekton Catalog package has been installed. - type: string - type: object - version: 0.7.0 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.1.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.1.yml deleted file mode 100644 index 003c6e6..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.1.yml +++ /dev/null @@ -1,43 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.7.1 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases - releasedAt: "2023-09-06T19:36:11Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:77837b0e2ff90f6da631b6e34c9b3fc5d6bfdd1c30517b6c427e42218892cf1a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints to esclude from being created in the cluster. - items: - default: "" - type: string - type: array - tekton_catalog_namespace: - default: tekton-catalog - description: The namespace where the Tekton Catalog package has been installed. - type: string - type: object - version: 0.7.1 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.3.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.3.yml deleted file mode 100644 index ec0950b..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.3.yml +++ /dev/null @@ -1,43 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.7.3 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases - releasedAt: "2023-09-08T15:52:49Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:d27f16913ff43039c3474eb9cf681e9b8073a51502e0377ec90856aea002b28f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints to esclude from being created in the cluster. - items: - default: "" - type: string - type: array - tekton_catalog_namespace: - default: tekton-catalog - description: The namespace where the Tekton Catalog package has been installed. - type: string - type: object - version: 0.7.3 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.6.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.6.0.yml deleted file mode 100644 index 2564a10..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.6.0.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.6.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases - releasedAt: "2023-08-19T12:58:45Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:77ee5b2d1ecbeffb0c230594ed3770a2c733abb23edc4d096b6e1613eaf0656e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cluster_builder: - default: default - description: The default `ClusterBuilder` used by kpack. - type: string - git_credentials_secret: - default: "" - description: The Secret containing authentication credentials for Git repositories. - type: string - gitops: - additionalProperties: false - description: Settings for using a GitOps strategy with the supply chain. - properties: - commit: - additionalProperties: false - properties: - message: - default: Update from Cartographer - description: The commit message to use when pushing configuration - changes to Git. - type: string - type: object - pull_request: - additionalProperties: false - description: Settings for using a GitOps approach based on pull requests. - properties: - body: - default: Generated from Cartographer - description: The message body of the pull request. - type: string - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated. - type: string - server_kind: - default: github - description: The type of Git server where to open the pull request. - example: github - type: string - x-example-description: Open a pull request on GitHub - title: - default: Update from Cartographer - description: The title of the pull request. - type: string - type: object - repository: - additionalProperties: false - description: Settings for the Git repository used for the GitOps workflows. - properties: - name: - default: "" - description: The name of the Git repository. - type: string - owner: - default: "" - description: The owner of the Git repository. - type: string - type: object - server_address: - default: https://github.com - description: The location of the server hosting the specified Git repository. - type: string - strategy: - default: none - description: Whether to commit configuration changes to Git directly - (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps - strategy is applied. - type: string - target_branch: - default: main - description: The target branch where to push configuration changes. - type: string - user: - additionalProperties: false - properties: - email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository. - type: string - name: - default: cartographer - description: The name of the user interacting with the Git repository. - type: string - type: object - type: object - registry: - additionalProperties: false - description: Settings for the OCI Registry used by the supply chain. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the supply chain - will publish and consume OCI images. - type: string - server: - default: "" - description: The server of the OCI Registry where the supply chain will - publish and consume OCI images. - type: string - type: object - service_account: - default: default - description: The default `ServiceAccount` used by the supply chain. - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' - type: string - type: object - version: 0.6.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.0.yml deleted file mode 100644 index 5b9b690..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.0.yml +++ /dev/null @@ -1,155 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.7.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases - releasedAt: "2023-09-05T20:01:11Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:a395c7dbaf25c8c1d014a44df929261b072718301836567d5e85f0f2cec01a25 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cluster_builder: - default: default - description: The default `ClusterBuilder` used by kpack. - type: string - external_delivery: - default: false - description: Whether a deliverable is manually applied to an external Kubernetes - cluster. - type: boolean - git_credentials_secret: - default: "" - description: The Secret containing authentication credentials for Git repositories. - type: string - gitops: - additionalProperties: false - description: Settings for using a GitOps strategy with the supply chain. - properties: - commit: - additionalProperties: false - properties: - message: - default: Update from Cartographer - description: The commit message to use when pushing configuration - changes to Git. - type: string - type: object - pull_request: - additionalProperties: false - description: Settings for using a GitOps approach based on pull requests. - properties: - body: - default: Generated from Cartographer - description: The message body of the pull request. - type: string - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated. - type: string - server_kind: - default: github - description: The type of Git server where to open the pull request. - example: github - type: string - x-example-description: Open a pull request on GitHub - title: - default: Update from Cartographer - description: The title of the pull request. - type: string - type: object - repository: - additionalProperties: false - description: Settings for the Git repository used for the GitOps workflows. - properties: - name: - default: "" - description: The name of the Git repository. - type: string - owner: - default: "" - description: The owner of the Git repository. - type: string - type: object - server_address: - default: https://github.com - description: The location of the server hosting the specified Git repository. - type: string - strategy: - default: none - description: Whether to commit configuration changes to Git directly - (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps - strategy is applied. - type: string - target_branch: - default: main - description: The target branch where to push configuration changes. - type: string - user: - additionalProperties: false - properties: - email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository. - type: string - name: - default: cartographer - description: The name of the user interacting with the Git repository. - type: string - type: object - type: object - registry: - additionalProperties: false - description: Settings for the OCI Registry used by the supply chain. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the supply chain - will publish and consume OCI images. - type: string - server: - default: "" - description: The server of the OCI Registry where the supply chain will - publish and consume OCI images. - type: string - type: object - registry_credentials_secret: - default: "" - description: The Secret containing authentication credentials for the OCI - registry. - type: string - service_account: - default: default - description: The default `ServiceAccount` used by the supply chain. - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' - type: string - type: object - version: 0.7.0 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.1.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.1.yml deleted file mode 100644 index b621d16..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.1.yml +++ /dev/null @@ -1,155 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.7.1 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases - releasedAt: "2023-09-08T16:01:09Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:b6443d240c05043b1e9486276c04b31d7c548e73031dac135ca457d563780563 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cluster_builder: - default: default - description: The default `ClusterBuilder` used by kpack. - type: string - external_delivery: - default: false - description: Whether a deliverable is manually applied to an external Kubernetes - cluster. - type: boolean - git_credentials_secret: - default: "" - description: The Secret containing authentication credentials for Git repositories. - type: string - gitops: - additionalProperties: false - description: Settings for using a GitOps strategy with the supply chain. - properties: - commit: - additionalProperties: false - properties: - message: - default: Update from Cartographer - description: The commit message to use when pushing configuration - changes to Git. - type: string - type: object - pull_request: - additionalProperties: false - description: Settings for using a GitOps approach based on pull requests. - properties: - body: - default: Generated from Cartographer - description: The message body of the pull request. - type: string - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated. - type: string - server_kind: - default: github - description: The type of Git server where to open the pull request. - example: github - type: string - x-example-description: Open a pull request on GitHub - title: - default: Update from Cartographer - description: The title of the pull request. - type: string - type: object - repository: - additionalProperties: false - description: Settings for the Git repository used for the GitOps workflows. - properties: - name: - default: "" - description: The name of the Git repository. - type: string - owner: - default: "" - description: The owner of the Git repository. - type: string - type: object - server_address: - default: https://github.com - description: The location of the server hosting the specified Git repository. - type: string - strategy: - default: none - description: Whether to commit configuration changes to Git directly - (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps - strategy is applied. - type: string - target_branch: - default: main - description: The target branch where to push configuration changes. - type: string - user: - additionalProperties: false - properties: - email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository. - type: string - name: - default: cartographer - description: The name of the user interacting with the Git repository. - type: string - type: object - type: object - registry: - additionalProperties: false - description: Settings for the OCI Registry used by the supply chain. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the supply chain - will publish and consume OCI images. - type: string - server: - default: "" - description: The server of the OCI Registry where the supply chain will - publish and consume OCI images. - type: string - type: object - registry_credentials_secret: - default: "" - description: The Secret containing authentication credentials for the OCI - registry. - type: string - service_account: - default: supply-chain - description: The default `ServiceAccount` used by the supply chain. - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' - type: string - type: object - version: 0.7.1 diff --git a/repo/packages/cartographer.packages.kadras.io/0.7.3.yml b/repo/packages/cartographer.packages.kadras.io/0.7.3.yml deleted file mode 100644 index aac54da..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.7.3.yml +++ /dev/null @@ -1,82 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer.packages.kadras.io.0.7.3 -spec: - licenses: - - Apache 2.0 - refName: cartographer.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases - releasedAt: "2023-08-14T13:40:27Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cartographer@sha256:c121c2ed1e36f0d9ac774a1c0289135a0f262412d8125bbb3c7c14ecbd35e60a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cartographer: - additionalProperties: false - description: Settings for the Cartographer component. - properties: - concurrency: - additionalProperties: false - description: Concurrency configuration for the Cartographer controller. - properties: - max_deliveries: - default: 2 - description: Maximum concurrent Deliveries processed by the Cartographer - controller. - type: integer - max_runnables: - default: 2 - description: Maximum concurrent Runnables processed by the Cartographer - controller. - type: integer - max_workloads: - default: 2 - description: Maximum concurrent Workloads processed by the Cartographer - controller. - type: integer - type: object - resources: - default: {} - description: CPU and memory configuration for the Cartographer controller. - nullable: true - type: object - conventions: - additionalProperties: false - description: Settings for the Cartographer Conventions component. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to authenticate the Cartographer Conventions - controller when deployed on AWS. - nullable: true - type: string - resources: - default: {} - description: CPU and memory configuration for the Cartographer Conventions - controller. - nullable: true - type: object - type: object - version: 0.7.3 diff --git a/repo/packages/cartographer.packages.kadras.io/0.8.0.yml b/repo/packages/cartographer.packages.kadras.io/0.8.0.yml deleted file mode 100644 index d41ab22..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.8.0.yml +++ /dev/null @@ -1,148 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer.packages.kadras.io.0.8.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases - releasedAt: "2023-08-26T17:20:15Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cartographer@sha256:c4349d3a1a8358a37d232d696fb1d71296cf58150a7daccb19c346321ae8bbd1 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cartographer: - additionalProperties: false - description: Settings for the Cartographer component. - properties: - concurrency: - additionalProperties: false - description: Concurrency configuration for the Cartographer controller. - properties: - max_deliveries: - default: 2 - description: Maximum concurrent Deliveries processed by the Cartographer - controller. - type: integer - max_runnables: - default: 2 - description: Maximum concurrent Runnables processed by the Cartographer - controller. - type: integer - max_workloads: - default: 2 - description: Maximum concurrent Workloads processed by the Cartographer - controller. - type: integer - type: object - resources: - additionalProperties: false - description: CPU and memory configuration for the Cartographer controller. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "1" - description: CPU limits configuration for the Cartographer controller. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the Cartographer - controller. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU requests configuration for the Cartographer - controller. - type: string - memory: - default: 512Mi - description: Memory requests configuration for the Cartographer - controller. - type: string - type: object - type: object - type: object - conventions: - additionalProperties: false - description: Settings for the Cartographer Conventions component. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to authenticate the Cartographer Conventions - controller when deployed on AWS. - nullable: true - type: string - resources: - additionalProperties: false - description: CPU and memory configuration for the Cartographer Conventions - controller. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 100m - description: CPU limits configuration for the Cartographer Conventions - controller. - type: string - memory: - default: 256Mi - description: Memory limits configuration for the Cartographer - Conventions controller. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 100m - description: CPU requests configuration for the Cartographer - Conventions controller. - type: string - memory: - default: 20Mi - description: Memory requests configuration for the Cartographer - Conventions controller. - type: string - type: object - type: object - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - level: - default: info - description: 'Log verbosity level. Options: `debug`, `info`, `error`.' - type: string - type: object - type: object - version: 0.8.0 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.3.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.3.yml deleted file mode 100644 index 96cf9d3..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.12.3.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.12.3 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-08-12T12:26:43Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:aa0d68e8d667c277a805e2709c598f02d8e571658e247fe312fb674eb6f7f285 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - probes: - additionalProperties: false - description: Settings for the cert-manager controller probes. - properties: - enabled: - default: false - description: 'Whether to enable to optional probes on the cert-manager - controller. It''s recommended not to enable this unless you encounter - issues with the controller Pods not restarting correctly. More - information: https://github.com/cert-manager/cert-manager/pull/5962.' - type: boolean - type: object - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.12.3 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.4.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.4.yml deleted file mode 100644 index 9b75df4..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.12.4.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.12.4 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-09-08T17:17:01Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:8fbdaedcf58719c2f175c4ce237721bfe908b5d4afc55425ef28b98f4c9590e2 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - probes: - additionalProperties: false - description: Settings for the cert-manager controller probes. - properties: - enabled: - default: false - description: 'Whether to enable to optional probes on the cert-manager - controller. It''s recommended not to enable this unless you encounter - issues with the controller Pods not restarting correctly. More - information: https://github.com/cert-manager/cert-manager/pull/5962.' - type: boolean - type: object - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.12.4 diff --git a/repo/packages/contour.packages.kadras.io/1.25.2.yml b/repo/packages/contour.packages.kadras.io/1.25.2.yml deleted file mode 100644 index 8709619..0000000 --- a/repo/packages/contour.packages.kadras.io/1.25.2.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.25.2 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-08-12T12:58:35Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:c4ee4463c056ca14f6f0357d9054d38b9dc08045886df96be85156b9ebc8bde4 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service in - case the `infrastructure_provider` doesn't enforce one already. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy - in case the `infrastructure_provider` doesn't enforce one already. - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - dnsPolicy: - default: ClusterFirst - description: The DNS policy for the Envoy pods. - type: string - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.25.2 diff --git a/repo/packages/flux.packages.kadras.io/2.1.0+kadras.1.yml b/repo/packages/flux.packages.kadras.io/2.1.0+kadras.1.yml deleted file mode 100644 index 82d63ce..0000000 --- a/repo/packages/flux.packages.kadras.io/2.1.0+kadras.1.yml +++ /dev/null @@ -1,99 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.1.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2023-09-03T11:49:11Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:97859e3c50036cc31ec1407119dce63c186f6285df490b979d929f1f69cac6c9 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: true - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: true - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.1.0+kadras.1 diff --git a/repo/packages/flux.packages.kadras.io/2.1.0.yml b/repo/packages/flux.packages.kadras.io/2.1.0.yml deleted file mode 100644 index d2bf9d9..0000000 --- a/repo/packages/flux.packages.kadras.io/2.1.0.yml +++ /dev/null @@ -1,100 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.1.0 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2023-08-26T16:18:51Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:cdce7eec11d377235b4598ca459b56a15cb16667e5cee34438ca98da77f9cbb5 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - components: - additionalProperties: false - description: Settings for which Flux components to deploy besides Source - Controller. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: false - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.1.0 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.11.0.yml b/repo/packages/knative-eventing.packages.kadras.io/1.11.0.yml deleted file mode 100644 index f9d5eac..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.11.0.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.11.0 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases - releasedAt: "2023-08-13T13:13:13Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:97675b2afa4ed6ab3246b7e5813f51cce628c20b42726ad9954137cbef7475df - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.11.0 diff --git a/repo/packages/kpack.packages.kadras.io/0.11.2+kadras.1.yml b/repo/packages/kpack.packages.kadras.io/0.11.2+kadras.1.yml deleted file mode 100644 index dbcf2f4..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.11.2+kadras.1.yml +++ /dev/null @@ -1,156 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.11.2+kadras.1 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kpack/releases - releasedAt: "2023-08-13T13:27:32Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kpack@sha256:6f3b6a14935723afbe69a85d27b55dc280d413495deabf09a12b46f15be4a592 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'PEM-encoded certificate data that kpack controller will use - to trust TLS connections based on a custom CA with a container registry. - Note: This will not be injected into builds, you need to use the cert - injection webhook with the `kpack.io/build` label value.' - type: string - config: - additionalProperties: false - description: Settings for kpack. - properties: - injected_sidecar_support: - default: false - description: Enable support for injected sidecars. - type: boolean - type: object - controller: - additionalProperties: false - description: Settings for the the kpack controller. - properties: - resources: - additionalProperties: false - description: Resource configuration for the kpack-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory limits configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `500Mi`. - type: string - type: object - requests: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory requests configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `100Mi`. - type: string - type: object - type: object - type: object - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to access the default container repository - if the registry is on AWS. - nullable: true - type: string - credentials: - additionalProperties: false - description: Read/write credentials to access the default container - repository. - nullable: true - properties: - password: - default: "" - description: 'Token to access the default container repository. - Note: Use contents of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the default container repository. - Note: Use `_json_key` for GCR.' - type: string - type: object - name: - default: "" - description: The default repository to use for builder images and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the default container repository. - nullable: true - properties: - create_export: - default: false - description: Whether to create a SecretExport resource to export - the Secret from the source namespace to the kpack namespace. Not - needed when installing kpack as part of the Kadras Enginnering - Platform. - type: boolean - name: - default: "" - description: The name of the Secret holding the credentials to access - the default container repository. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the default container repository. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy (e.g. Kubernetes - API address). - type: string - type: object - type: object - version: 0.11.2+kadras.1 diff --git a/repo/packages/kyverno.packages.kadras.io/1.10.3.yml b/repo/packages/kyverno.packages.kadras.io/1.10.3.yml deleted file mode 100644 index 38aa33c..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.10.3.yml +++ /dev/null @@ -1,31 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.10.3 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2023-08-22T13:33:51Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:a515d5139f402f1f74c96173cc6cb1840cde4cfbac5ec81c4470d7054d846b8d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 1.10.3 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.14.8.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.14.8.yml deleted file mode 100644 index 2c4efd5..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.14.8.yml +++ /dev/null @@ -1,35 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.14.8 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases - releasedAt: "2023-06-25T10:33:11Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:43c9bc9ceab211bc8e2320a50b155c98daa9a13149688f558b5c85a498a64271 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.14.8 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.0.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.0.yml deleted file mode 100644 index 15dd413..0000000 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.0.yml +++ /dev/null @@ -1,67 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: spring-boot-conventions.packages.kadras.io.0.3.0 -spec: - licenses: - - Apache 2.0 - refName: spring-boot-conventions.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases - releasedAt: "2023-08-20T12:40:04Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:c528edbd4696b6b79a05ae521cb4acb0cf1a5491a550c77e9c3dff88adf242d5 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: spring-boot-conventions - description: The namespace where to install Spring Boot Conventions - type: string - resources: - additionalProperties: false - description: Resource configuration for the Convention Server - properties: - limits: - additionalProperties: false - description: Resource limits - properties: - cpu: - default: 100m - description: CPU limits - type: string - memory: - default: 256Mi - description: Memory limits - type: string - type: object - requests: - additionalProperties: false - description: Resource requests - properties: - cpu: - default: 100m - description: CPU requests - type: string - memory: - default: 20Mi - description: Memory requests - type: string - type: object - type: object - type: object - version: 0.3.0 diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.2.1.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.2.1.yml deleted file mode 100644 index 9a4b25b..0000000 --- a/repo/packages/tekton-catalog.packages.kadras.io/0.2.1.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-catalog.packages.kadras.io.0.2.1 -spec: - licenses: - - Apache 2.0 - refName: tekton-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/tekton-catalog/releases - releasedAt: "2023-08-13T14:04:09Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/tekton-catalog@sha256:01d79cb39f7f341a6932406f513b2b6a126a9b7e97b83c2277c75b26f703fea9 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: tekton-catalog - description: The namespace where to deploy the Tekton Catalog. - type: string - type: object - version: 0.2.1 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.49.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.49.0.yml deleted file mode 100644 index 57b8b46..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.49.0.yml +++ /dev/null @@ -1,551 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.49.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-07-09T15:32:22Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:997cea4bc49873bc0d91521fb5c7e68f74a01472d223dfa1612c2f82296b0c74 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config-defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - default-affinity-assistant-pod-template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - default-cloud-events-sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, CustomRun, - and Run lifeycle events. If no sink is specified, no CloudEvent is - generated. - type: string - default-forbidden-env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - default-managed-by-label-value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - default-max-matrix-combinations-count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - default-pod-template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - default-resolver-type: - default: "" - description: The default resolver type to be used in the cluster. - type: string - default-service-account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - default-task-run-workspace-binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - default-timeout-minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - config-leader-election: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel.controller: - default: info - description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` - Deployments. - type: string - loglevel.webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - zap-logger-config: - default: | - { - "level": "info", - "development": false, - "sampling": { - "initial": 100, - "thereafter": 100 - }, - "outputPaths": ["stdout"], - "errorOutputPaths": ["stderr"], - "encoding": "json", - "encoderConfig": { - "timeKey": "timestamp", - "levelKey": "severity", - "nameKey": "logger", - "callerKey": "caller", - "messageKey": "message", - "stacktraceKey": "stacktrace", - "lineEnding": "", - "levelEncoder": "", - "timeEncoder": "iso8601", - "durationEncoder": "", - "callerEncoder": "" - } - } - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - config-observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics.allow-stackdriver-custom-metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver using - 'global' resource type and custom metric type. Ignore if `backend_destination` - is not `stackdriver`. - type: string - metrics.backend-destination: - default: prometheus - description: The destination for the metrics produced by the Tekton - components. - type: string - metrics.pipelinerun.duration-type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram value - isn’t available when the `pipelinerun` level is selected. - type: string - metrics.pipelinerun.level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling which labels - are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), - (namespace).' - type: string - metrics.stackdriver-project-id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the cluster's - project if this field is not provided. - type: string - metrics.taskrun.duration-type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram value - isn’t available when the `taskrun` level is selected. - type: string - metrics.taskrun.level: - default: task - description: 'Level for the TaskRun metrics controlling which labels - are included: (taskrun, task, namespace), (task, namespace), (namespace).' - type: string - type: object - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - events: - additionalProperties: false - description: Settings for the `tekton-events-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-events-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - artifact_hub_url: - default: https://artifacthub.io/ - description: The Artifact Hub API used by the Hub Resolver to resolve - remote pipelines and tasks. - type: string - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - type: object - type: object - feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await-sidecar-readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - disable-affinity-assistant: - default: "false" - description: Setting this flag to `true` will prevent Tekton to create - an Affinity Assistant for every TaskRun sharing a PVC workspace. - type: string - disable-creds-init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable-api-fields: - default: beta - description: Setting this flag will determine which gated features are - enabled. - type: string - enable-provenance-in-status: - default: "true" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable-tekton-oci-bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce-nonfalsifiablity: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - require-git-ssh-secret-known-hosts: - default: "true" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - results-from: - default: termination-message - description: Setting this flag will determine how Tekton pipelines will - handle extracting results from the task. Acceptable values are `termination-message` - or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus - should still be considered an alpha feature. - type: string - running-in-environment-with-injected-sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send-cloudevents-for-runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - set-security-context: - default: "false" - description: Setting this flag to `true` will limit privileges for containers - injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces - with `restricted` pod security standards. Not all Kubernetes implementations - support this option. - type: string - trusted-resources-verification-no-match-policy: - default: ignore - description: This flag affects the behavior of taskruns and pipelineruns - in cases where no VerificationPolicies match them. If it is set to - `fail`, TaskRuns and PipelineRuns will fail verification if no matching - policies are found. If it is set to `warn`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and an error - will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and no error - will be logged. - type: string - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - enable: - default: false - description: Setting this flag to `true` enables the trace exporter. - type: boolean - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - endpoint: - default: "" - description: The endpoint where the distributed tracing backend - accepts OpenTelemetry traces using the Jaeger protocol. - type: string - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundleresolver-config: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default-kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default-service-account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster-resolver-config: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - git-resolver-config: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api-token-secret-key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api-token-secret-name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api-token-secret-namespace: - default: default - description: The namespace containing the API token secret. - type: string - default-org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default-revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default-url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch-timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm-type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server-url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hubresolver-config: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default-artifact-hub-pipeline-catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default-artifact-hub-task-catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-tekton-hub-catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default-type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - resolvers-feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable-bundles-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable-cluster-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable-git-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable-hub-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.49.0 diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/0.2.1.yml b/repo/packages/workspace-provisioner.packages.kadras.io/0.2.1.yml deleted file mode 100644 index 8ac1b51..0000000 --- a/repo/packages/workspace-provisioner.packages.kadras.io/0.2.1.yml +++ /dev/null @@ -1,114 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: workspace-provisioner.packages.kadras.io.0.2.1 -spec: - licenses: - - Apache 2.0 - refName: workspace-provisioner.packages.kadras.io - releaseNotes: https://github.com/kadras-io/workspace-provisioner/releases - releasedAt: "2023-08-20T14:07:00Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/workspace-provisioner@sha256:f3ae24dd72f9ac6194738683e8d5e0cc95c2c8d7e7b87e431bdd4f67f828f2a3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Cosign key - pair. - type: string - type: object - type: object - git: - additionalProperties: false - description: Configuration to access the Git repositories used in the GitOps - workflows. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Git credentials. - properties: - name: - default: "" - description: The name of the Secret holding the Git credentials. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Git credentials. - type: string - type: object - server: - default: https://github.com - description: The Git server hosting the Git repositories used in the - GitOps workflows. - type: string - type: object - namespaces: - default: [] - description: Configuration for the namespaces the platform will provision - and manage. - items: - additionalProperties: false - description: Details about the namespace to configure. - properties: - name: - default: "" - type: string - type: object - type: array - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the workspace will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the OCI registry. - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - the OCI registry. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - type: object - service_account: - default: default - description: The `ServiceAccount` to be configured with credentials and - roles in each workspace. - type: string - type: object - version: 0.2.1 From 7f2cf4c09f3cfd1d8695a289ac59fd1455f51376 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 9 Sep 2023 00:22:32 +0200 Subject: [PATCH 301/601] Update docs --- .github/ISSUE_TEMPLATE/bug-report.md | 1 + README.md | 8 ++------ 2 files changed, 3 insertions(+), 6 deletions(-) diff --git a/.github/ISSUE_TEMPLATE/bug-report.md b/.github/ISSUE_TEMPLATE/bug-report.md index 596f0bf..0f20905 100644 --- a/.github/ISSUE_TEMPLATE/bug-report.md +++ b/.github/ISSUE_TEMPLATE/bug-report.md @@ -24,3 +24,4 @@ assignees: '' * Kubernetes version (execute `kubectl version`): * kctrl version (execute `kctrl version`): * kapp-controller version (execute `kubectl get deployment -n kapp-controller kapp-controller -o yaml` and the annotation is `kbld.k14s.io/images`): +* package repo version (execute `kctrl package repo get -r kadras-packages -n `): diff --git a/README.md b/README.md index 3b89077..37ac123 100644 --- a/README.md +++ b/README.md @@ -17,7 +17,6 @@ This repository contains the following Carvel packages. | [buildpacks-catalog](https://github.com/kadras-io/buildpacks-catalog) | A curated set of buildpacks, stacks, and builders to use with kpack, a Kubernetes-native implementation of Cloud Native Buildpacks. | | [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. | | [cartographer-blueprints](https://github.com/kadras-io/cartographer-blueprints) | Cartographer reusable blueprints to build Kubernetes-native paved paths to production. | -| [cartographer-delivery](https://github.com/kadras-io/cartographer-delivery) | Cartographer delivery chains to deploy workloads to a Kubernetes cluster based on GitOps or RegistryOps. | | [cartographer-supply-chains](https://github.com/kadras-io/cartographer-supply-chains) | Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | | [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates. | | [cert-manager-issuers](https://github.com/kadras-io/cert-manager-issuers) | A collection of issuers for Cert Manager, used by the Kadras platform to support TLS via a private CA or Let's Encrypt. | @@ -29,6 +28,7 @@ This repository contains the following Carvel packages. | [kpack](https://github.com/kadras-io/package-for-kpack) | A Kubernetes-native implementation of Cloud Native Buildpacks to build source code into OCI images from within your cluster. | | [kyverno](https://github.com/kadras-io/package-for-kyverno) | A policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans. | | [metrics-server](https://github.com/kadras-io/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | +| [rbac-configurer](https://github.com/kadras-io/rbac-configurer) | Provides default roles and RBAC configuration for the Kadras Engineering Platform. | | [secretgen-controller](https://github.com/carvel-dev/secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. | | [spring-boot-conventions](https://github.com/kadras-io/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | | [tekton-catalog](https://github.com/kadras-io/tekton-catalog) | A set of Tekton pipelines and tasks used by the Kadras platform to support testing, scanning, delivering and deploying applications. | @@ -39,7 +39,7 @@ This repository contains the following Carvel packages. ### Prerequisites -* Kubernetes 1.25+ +* Kubernetes 1.26+ * Carvel [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI. * Carvel [kapp-controller](https://carvel.dev/kapp-controller) deployed in your Kubernetes cluster. You can install it with Carvel [`kapp`](https://carvel.dev/kapp/docs/latest/install) (recommended choice) or `kubectl`. @@ -91,7 +91,3 @@ The security process for reporting vulnerabilities is described in [SECURITY.md] ## 🖊️  License This project is licensed under the **Apache License 2.0**. See [LICENSE](LICENSE) for more information. - -## 🙏  Acknowledgments - -This package repository is inspired by the one used in the [Tanzu Community Edition](https://github.com/vmware-tanzu/community-edition) project before its retirement. From 4c6ac21fbcec833f604a682d8d3cad6e50d69e83 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 9 Sep 2023 00:24:33 +0200 Subject: [PATCH 302/601] Bump GHA dependencies --- .github/workflows/release.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 69a9ddb..1281928 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,7 +19,7 @@ jobs: image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code - uses: actions/checkout@v3.5.3 + uses: actions/checkout@v4.0.0 - name: Set up Carvel uses: carvel-dev/setup-action@v1.3.0 @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.1.1 + uses: sigstore/cosign-installer@v3.1.2 - name: Log into container registry uses: redhat-actions/podman-login@v1.6 @@ -106,7 +106,7 @@ jobs: actions: read id-token: write packages: write - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.8.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v1.9.0 with: image: ${{ needs.build.outputs.image-name }} digest: ${{ needs.build.outputs.image-digest }} From fcc8d5d92d748cf78b36434d31a5f11e8528cb6e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 9 Sep 2023 00:52:00 +0200 Subject: [PATCH 303/601] Update Engineering Platform metadata and add version 0.11.0-RC1 (#278) Co-authored-by: github-actions --- .../0.11.0-RC1.yml | 302 ++++++++++++++++++ 1 file changed, 302 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.11.0-RC1.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.11.0-RC1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.11.0-RC1.yml new file mode 100644 index 0000000..ce753a6 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.11.0-RC1.yml @@ -0,0 +1,302 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.11.0-RC1 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-09-08T22:49:45Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:b4f577178effdb3e3f815e47792e6abe26532239526c2d0a11150bc3db2a1e86 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `dev`, `build`, `run`.' + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, + `advanced`.' + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.11.0-RC1 From fc466480d00e89d7dce1d7367eadd3043e9dff12 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 9 Sep 2023 00:53:08 +0200 Subject: [PATCH 304/601] Bump repo to 0.12.0-RC1 --- .github/workflows/release.yml | 2 +- .../0.10.0.yml | 292 ------------------ 2 files changed, 1 insertion(+), 293 deletions(-) delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.10.0.yml diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 1281928..0c2ea8d 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.12.0 + VERSION: 0.12.0-RC1 jobs: build: diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.10.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.10.0.yml deleted file mode 100644 index 72e1358..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.10.0.yml +++ /dev/null @@ -1,292 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.10.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-08-21T13:42:34Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:36f12636efc8a742bb85448a94af7ccec4d2da47bc3507180e23c9a1780d182a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - additionalProperties: false - description: Configuration for Flux related packages. - properties: - source_controller: - default: {} - description: Configuration for the FluxCD Source Controller package. - nullable: true - type: object - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: supply-chain-cosign-key-pair - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: supply-chain-git-credentials - description: The name of the Secret holding the credentials - to access the Git server. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish and consume OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: supply-chain-registry-credentials - description: The name of the Secret holding the credentials - to access the OCI registry. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish and consume OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: full - description: 'The platform profile to install. Options: `full`, `serving`.' - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, - `advanced`.' - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.10.0 From edda9406cc364e390e6efa6722b2ce76c7332fc0 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 9 Sep 2023 00:58:38 +0200 Subject: [PATCH 305/601] Bump repo to 0.13.0-RC1 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 0c2ea8d..efe4ec6 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.12.0-RC1 + VERSION: 0.13.0-RC1 jobs: build: From f9c5cb1083b0d26b676706d35f80a979774aab69 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 19 Sep 2023 18:35:55 +0200 Subject: [PATCH 306/601] Update Engineering Platform metadata and add version 0.11.0 (#280) Co-authored-by: github-actions --- .../0.11.0.yml | 302 ++++++++++++++++++ 1 file changed, 302 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.11.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.11.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.11.0.yml new file mode 100644 index 0000000..48cc5eb --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.11.0.yml @@ -0,0 +1,302 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.11.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-09-19T16:19:43Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:b4f577178effdb3e3f815e47792e6abe26532239526c2d0a11150bc3db2a1e86 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + blueprints: + default: {} + description: Configuration for the Cartographer Blueprints package. + nullable: true + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + delivery: + default: {} + description: Configuration for the Cartographer Delivery package. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `dev`, `build`, `run`.' + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, + `advanced`.' + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.11.0 From 6c40652d04e86ba93fd1ef39c4f6cde538e5ec2b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 19 Sep 2023 18:37:05 +0200 Subject: [PATCH 307/601] Bump package to 0.13.0 --- .github/workflows/release.yml | 2 +- .../0.11.0-RC1.yml | 302 ------------------ 2 files changed, 1 insertion(+), 303 deletions(-) delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.11.0-RC1.yml diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index efe4ec6..c5fa8dd 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.13.0-RC1 + VERSION: 0.13.0 jobs: build: diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.11.0-RC1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.11.0-RC1.yml deleted file mode 100644 index ce753a6..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.11.0-RC1.yml +++ /dev/null @@ -1,302 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.11.0-RC1 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-09-08T22:49:45Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:b4f577178effdb3e3f815e47792e6abe26532239526c2d0a11150bc3db2a1e86 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `dev`, `build`, `run`.' - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, - `advanced`.' - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.11.0-RC1 From 605e834ee1ce279234390d191d15affb1fbb2b52 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 19 Sep 2023 18:44:05 +0200 Subject: [PATCH 308/601] Cleanup deprecated packages --- .../0.5.0.yml | 42 ------------------- .../metadata.yml | 17 -------- .../kadras-rbac.packages.kadras.io/0.1.0.yml | 31 -------------- .../metadata.yml | 18 -------- 4 files changed, 108 deletions(-) delete mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/0.5.0.yml delete mode 100644 repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/kadras-rbac.packages.kadras.io/0.1.0.yml delete mode 100644 repo/packages/kadras-rbac.packages.kadras.io/metadata.yml diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/0.5.0.yml b/repo/packages/cartographer-delivery.packages.kadras.io/0.5.0.yml deleted file mode 100644 index 1d11fec..0000000 --- a/repo/packages/cartographer-delivery.packages.kadras.io/0.5.0.yml +++ /dev/null @@ -1,42 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-delivery.packages.kadras.io.0.5.0 -spec: - refName: cartographer-delivery.packages.kadras.io - releasedAt: "2023-08-19T13:05:25Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-delivery@sha256:236e9fc286f347b1de82fe55038ebd6415e22811fa004e912817f79951b6b660 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - delivery_chain: - default: basic - description: 'The type of delivery chain to use when deploying workloads. - Options: `basic`.' - type: string - git_credentials_secret: - default: "" - description: The Secret containing authentication credentials for Git repositories. - type: string - service_account: - default: default - description: The default `ServiceAccount` used by the delivery chain. - type: string - type: object - version: 0.5.0 diff --git a/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml b/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml deleted file mode 100644 index 564c7f1..0000000 --- a/repo/packages/cartographer-delivery.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,17 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: cartographer-delivery.packages.kadras.io -spec: - categories: - - ci/cd - - gitops - - deployment - displayName: cartographer-delivery - longDescription: A basic Cartographer delivery chain to deploy workloads either - using a GitOps or RegistryOps approach. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: Deployment with GitOps/RegistryOps. diff --git a/repo/packages/kadras-rbac.packages.kadras.io/0.1.0.yml b/repo/packages/kadras-rbac.packages.kadras.io/0.1.0.yml deleted file mode 100644 index ed61e7c..0000000 --- a/repo/packages/kadras-rbac.packages.kadras.io/0.1.0.yml +++ /dev/null @@ -1,31 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kadras-rbac.packages.kadras.io.0.1.0 -spec: - licenses: - - Apache 2.0 - refName: kadras-rbac.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-rbac/releases - releasedAt: "2023-09-06T19:41:01Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-rbac@sha256:0f4701043371f3863c20fd4d5c51bce4d77b082488677bb51728f4abe7017103 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.1.0 diff --git a/repo/packages/kadras-rbac.packages.kadras.io/metadata.yml b/repo/packages/kadras-rbac.packages.kadras.io/metadata.yml deleted file mode 100644 index e62afbb..0000000 --- a/repo/packages/kadras-rbac.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,18 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: kadras-rbac.packages.kadras.io -spec: - categories: - - rbac - displayName: kadras-rbac - longDescription: Default roles and RBAC configuration for the Kadras Engineering - Platform, supporting users and service accounts. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: Default roles and RBAC configuration for the Kadras Engineering - Platform. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/kadras-rbac - for community support. From 5f0c4102f3e4ddb8cdce1bcacc4626745806d7b3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Oct 2023 17:39:09 +0200 Subject: [PATCH 309/601] Update secretgen-controller metadata and add version 0.15.0 (#290) Co-authored-by: github-actions --- .../0.15.0.yml | 35 +++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.15.0.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.15.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.15.0.yml new file mode 100644 index 0000000..eb49d96 --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.15.0.yml @@ -0,0 +1,35 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.15.0 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases + releasedAt: "2023-10-12T15:28:52Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:e0ae0508b07ecf1e9b2bbb89feaa59dec09e550d75d7644748a07e22a8e3e753 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.15.0 From 1a36f195253e067c25dc8b05a334b6cd9fcbefa9 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Oct 2023 17:39:21 +0200 Subject: [PATCH 310/601] Update Tekton Pipelines metadata and add version 0.52.0 (#289) Co-authored-by: github-actions --- .../0.52.0.yml | 571 ++++++++++++++++++ 1 file changed, 571 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.52.0.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.52.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.52.0.yml new file mode 100644 index 0000000..3522214 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.52.0.yml @@ -0,0 +1,571 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.52.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-10-11T20:51:21Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:af6fccbaf8b7f83294f4f7ef10db9752d9c62ed339d92aad6d9a27a6003f0d49 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-resolver-type: + default: "" + description: The default resolver type to be used in the cluster. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-events: + additionalProperties: false + description: Events configuration stored in the `config-events` ConfigMap. + properties: + sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, and + CustomRun. If no sink is specified, no CloudEvent is generated. + type: string + type: object + config-leader-election: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + config-tracing: + additionalProperties: false + description: Tracing configuration stored in the `config-tracing` ConfigMap. + properties: + enabled: + default: "false" + description: Enable sending traces to defined endpoint by setting this + to `true`. + type: string + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces using the Jaeger protocol. + example: http://tempo.observability.svc.cluster.local:14268/api/traces + type: string + x-example-description: Grafana Tempo tracing backend + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + events: + additionalProperties: false + description: Settings for the `tekton-events-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-events-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + artifact_hub_url: + default: https://artifacthub.io/ + description: The Artifact Hub API used by the Hub Resolver to resolve + remote pipelines and tasks. + type: string + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + coschedule: + default: workspaces + description: 'Setting this flag will determine how PipelineRun Pods + are scheduled with Affinity Assistant. Options: `workspaces`, `pipelineruns`, + `isolate-pipelinerun`, `disabled`.' + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: beta + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-provenance-in-status: + default: "true" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiability: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + max-result-size: + default: "4096" + description: Setting this flag will determine the upper limit of each + task result. This flag is optional and only associated with the previous + flag, `results-from`. When `results-from` is set to `sidecar-logs`, + this flag can be used to configure the upper limit of a task result. + type: string + require-git-ssh-secret-known-hosts: + default: "true" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + results-from: + default: termination-message + description: Setting this flag will determine how Tekton pipelines will + handle extracting results from the task. Acceptable values are `termination-message` + or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus + should still be considered an alpha feature. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + set-security-context: + default: "false" + description: Setting this flag to `true` will limit privileges for containers + injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces + with `restricted` pod security standards. Not all Kubernetes implementations + support this option. + type: string + trusted-resources-verification-no-match-policy: + default: ignore + description: This flag affects the behavior of taskruns and pipelineruns + in cases where no VerificationPolicies match them. If it is set to + `fail`, TaskRuns and PipelineRuns will fail verification if no matching + policies are found. If it is set to `warn`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and an error + will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and no error + will be logged. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.52.0 From a32cb6d193611ed209635c215a517318d9a150dc Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Oct 2023 17:44:04 +0200 Subject: [PATCH 311/601] Update kpack metadata and add version 0.12.2 (#291) Co-authored-by: github-actions --- .../kpack.packages.kadras.io/0.12.2.yml | 156 ++++++++++++++++++ 1 file changed, 156 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.12.2.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.12.2.yml b/repo/packages/kpack.packages.kadras.io/0.12.2.yml new file mode 100644 index 0000000..7dcc967 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.12.2.yml @@ -0,0 +1,156 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.12.2 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2023-10-12T15:42:02Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:b32514f89c851fa29da7db20e1cc1461c01e2d9032cc4ed920654531df788408 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + create_export: + default: false + description: Whether to create a SecretExport resource to export + the Secret from the source namespace to the kpack namespace. Not + needed when installing kpack as part of the Kadras Enginnering + Platform. + type: boolean + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy (e.g. Kubernetes + API address). + type: string + type: object + type: object + version: 0.12.2 From 9458865c3d69ef7183a66705cd0ce29488dea55e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Oct 2023 18:01:34 +0200 Subject: [PATCH 312/601] Update Flux metadata and add version 2.1.2 (#292) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.1.2.yml | 99 +++++++++++++++++++ 1 file changed, 99 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.1.2.yml diff --git a/repo/packages/flux.packages.kadras.io/2.1.2.yml b/repo/packages/flux.packages.kadras.io/2.1.2.yml new file mode 100644 index 0000000..cab288b --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.1.2.yml @@ -0,0 +1,99 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.1.2 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2023-10-12T15:58:53Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:7578712bdbea14abe4f743294fbf0d0dd7e0bc456ae016ac3ac797ebf20ea855 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.1.2 From e52d47d141e7cd9c1a6b1c45591abb2480c9dd0f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Oct 2023 18:23:33 +0200 Subject: [PATCH 313/601] Update cert-manager metadata and add version 1.13.1 (#293) Co-authored-by: github-actions --- .../1.13.1.yml | 145 ++++++++++++++++++ 1 file changed, 145 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.13.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.13.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.13.1.yml new file mode 100644 index 0000000..9767d3e --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.13.1.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.13.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-10-12T16:20:40Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:a02c1c707b5d6c1feac4a96c3ab66bb2951c90bdc4d0921948eb3fe384b2876d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + probes: + additionalProperties: false + description: Settings for the cert-manager controller probes. + properties: + enabled: + default: false + description: 'Whether to enable to optional probes on the cert-manager + controller. It''s recommended not to enable this unless you encounter + issues with the controller Pods not restarting correctly. More + information: https://github.com/cert-manager/cert-manager/pull/5962.' + type: boolean + type: object + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.13.1 From c303689d9725d342b9a333a14b05880f5bc62c3e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Oct 2023 18:28:32 +0200 Subject: [PATCH 314/601] Update Knative Serving metadata and add version 1.11.1 (#284) Co-authored-by: github-actions --- .../1.11.1.yml | 278 ++++++++++++++++++ .../metadata.yml | 1 + 2 files changed, 279 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.11.1.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.11.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.11.1.yml new file mode 100644 index 0000000..b9449ba --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.11.1.yml @@ -0,0 +1,278 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.11.1 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-09-19T20:37:46Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:d8b5f539b1485e5051f0786d008128c9fc2d3454341dc040ab87bc891912049f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.11.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/metadata.yml b/repo/packages/knative-serving.packages.kadras.io/metadata.yml index 09d0f87..26e208c 100644 --- a/repo/packages/knative-serving.packages.kadras.io/metadata.yml +++ b/repo/packages/knative-serving.packages.kadras.io/metadata.yml @@ -8,6 +8,7 @@ spec: - serverless - deployment displayName: knative-serving + iconSVGBase64: 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 longDescription: Knative Serving builds on Kubernetes to define and control the deployment of applications and functions as serverless containers. maintainers: From c9d9b3f415efc6b65e8b191c6fa7781f5aeb1f0f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Oct 2023 18:43:57 +0200 Subject: [PATCH 315/601] Update Knative Eventing metadata and add version 1.11.4 (#294) Co-authored-by: github-actions --- .../1.11.4.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.11.4.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.11.4.yml b/repo/packages/knative-eventing.packages.kadras.io/1.11.4.yml new file mode 100644 index 0000000..d839d0a --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.11.4.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.11.4 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases + releasedAt: "2023-10-12T16:41:56Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:d0cb686617fb905e212ffe17a12bda4f2d3675cad965bb91915c4bf307c9924f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.11.4 From 81123f147f25cf713c87cbd14c3536e138bdeb11 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Oct 2023 18:49:09 +0200 Subject: [PATCH 316/601] Update Argo CD metadata and add version 2.8.4 (#283) Co-authored-by: github-actions --- .../argo-cd.packages.kadras.io/2.8.4.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.8.4.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.8.4.yml b/repo/packages/argo-cd.packages.kadras.io/2.8.4.yml new file mode 100644 index 0000000..74fc670 --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.8.4.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.8.4 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases + releasedAt: "2023-09-19T20:29:47Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-argo-cd@sha256:d5c2c13c582f5f1235fbda917c588e552a2d5dba6d47d7f4c40398195e098a4b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.8.4 From c6c531c1278c95de4a936a2b691987034702d2b2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 12 Oct 2023 18:51:51 +0200 Subject: [PATCH 317/601] Update Cartographer metadata and add version 0.8.2 (#295) Co-authored-by: github-actions --- .../cartographer.packages.kadras.io/0.8.2.yml | 151 ++++++++++++++++++ 1 file changed, 151 insertions(+) create mode 100644 repo/packages/cartographer.packages.kadras.io/0.8.2.yml diff --git a/repo/packages/cartographer.packages.kadras.io/0.8.2.yml b/repo/packages/cartographer.packages.kadras.io/0.8.2.yml new file mode 100644 index 0000000..297a2c3 --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.8.2.yml @@ -0,0 +1,151 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer.packages.kadras.io.0.8.2 +spec: + licenses: + - Apache 2.0 + refName: cartographer.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases + releasedAt: "2023-10-12T16:49:25Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cartographer@sha256:5dacaf1822d45e2ad2efcc3d58c9afdaa81132df0d60d2e12da0e2b53dc66cab + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cartographer: + additionalProperties: false + description: Settings for the Cartographer component. + properties: + concurrency: + additionalProperties: false + description: Concurrency configuration for the Cartographer controller. + properties: + max_deliveries: + default: 2 + description: Maximum concurrent Deliveries processed by the Cartographer + controller. + type: integer + max_runnables: + default: 2 + description: Maximum concurrent Runnables processed by the Cartographer + controller. + type: integer + max_workloads: + default: 2 + description: Maximum concurrent Workloads processed by the Cartographer + controller. + type: integer + type: object + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "1" + description: CPU limits configuration for the Cartographer controller. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the Cartographer + controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU requests configuration for the Cartographer + controller. + type: string + memory: + default: 512Mi + description: Memory requests configuration for the Cartographer + controller. + type: string + type: object + type: object + type: object + conventions: + additionalProperties: false + description: Settings for the Cartographer Conventions component. + properties: + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer Conventions + controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU limits configuration for the Cartographer Conventions + controller. + type: string + memory: + default: 256Mi + description: Memory limits configuration for the Cartographer + Conventions controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU requests configuration for the Cartographer + Conventions controller. + type: string + memory: + default: 20Mi + description: Memory requests configuration for the Cartographer + Conventions controller. + type: string + type: object + type: object + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + level: + default: info + description: 'Log verbosity level. Options: `debug`, `info`, `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Cartographer optional components to deploy. + properties: + cartographer_conventions: + default: true + description: Whether to deploy the Cartographer Conventions component. + type: boolean + type: object + type: object + version: 0.8.2 From 3a8757cb4477ac89330e25d9d57fdac0823d6b28 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 13 Oct 2023 20:47:57 +0200 Subject: [PATCH 318/601] Update Buildpacks Catalog metadata and add version 0.9.4 (#296) Co-authored-by: github-actions --- .../0.9.4.yml | 47 +++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.4.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.4.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.4.yml new file mode 100644 index 0000000..fa804ad --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.4.yml @@ -0,0 +1,47 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.9.4 +spec: + capacityRequirementsDescription: Container registry with at least 1GB available + space used by kpack to create builder images. + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-10-13T17:43:55Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:0402c07aa24cd17c3de8bb4976a4d74f0e1db403a56493ac1e11f4c728f937ec + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.9.4 From 856a6799904d45bffa0d267341ce0bf0c4d01913 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 13 Oct 2023 21:02:33 +0200 Subject: [PATCH 319/601] Update Tekton Catalog metadata and add version 0.2.3 (#297) Co-authored-by: github-actions --- .../0.2.3.yml | 36 +++++++++++++++++++ 1 file changed, 36 insertions(+) create mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.2.3.yml diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.2.3.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.2.3.yml new file mode 100644 index 0000000..ddabde8 --- /dev/null +++ b/repo/packages/tekton-catalog.packages.kadras.io/0.2.3.yml @@ -0,0 +1,36 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-catalog.packages.kadras.io.0.2.3 +spec: + licenses: + - Apache 2.0 + refName: tekton-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/tekton-catalog/releases + releasedAt: "2023-10-13T18:59:40Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/tekton-catalog@sha256:d829bb143c0f6336986d7022daa4397b7ab946acd2ec78812cad1c343e9bb3bd + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: tekton-catalog + description: The namespace where to deploy the Tekton Catalog. + type: string + type: object + version: 0.2.3 From 65be4bcdb66edde817d4ab2d81f49604796cda2c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 13 Oct 2023 22:50:13 +0200 Subject: [PATCH 320/601] Remove deprecated packages --- README.md | 1 - .../argo-cd.packages.kadras.io/2.8.3.yml | 45 -- .../0.9.2.yml | 47 -- .../0.7.4.yml | 43 -- .../metadata.yml | 19 - .../0.8.0+kadras.1.yml | 151 ----- .../1.12.4+kadras.1.yml | 145 ----- .../2.1.0+kadras.2.yml | 99 ---- .../1.11.2.yml | 45 -- .../1.11.0.yml | 278 --------- .../kpack.packages.kadras.io/0.12.0.yml | 156 ----- .../0.14.10.yml | 35 -- .../0.2.2.yml | 36 -- .../0.51.0.yml | 556 ------------------ 14 files changed, 1656 deletions(-) delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.8.3.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.2.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/0.7.4.yml delete mode 100644 repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.8.0+kadras.1.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.12.4+kadras.1.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.1.0+kadras.2.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.11.2.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.11.0.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.12.0.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.14.10.yml delete mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.2.2.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.51.0.yml diff --git a/README.md b/README.md index 37ac123..b978250 100644 --- a/README.md +++ b/README.md @@ -16,7 +16,6 @@ This repository contains the following Carvel packages. | [argo-cd](https://github.com/kadras-io/package-for-argo-cd) | A declarative and GitOps continuous delivery tool for Kubernetes. | | [buildpacks-catalog](https://github.com/kadras-io/buildpacks-catalog) | A curated set of buildpacks, stacks, and builders to use with kpack, a Kubernetes-native implementation of Cloud Native Buildpacks. | | [cartographer](https://github.com/vmware-tanzu/package-for-cartographer) | A framework to build paved paths to production using your favourite cloud-native tools. | -| [cartographer-blueprints](https://github.com/kadras-io/cartographer-blueprints) | Cartographer reusable blueprints to build Kubernetes-native paved paths to production. | | [cartographer-supply-chains](https://github.com/kadras-io/cartographer-supply-chains) | Cartographer supply chains to build golden paths to production for applications and functions, from source code to delivery in a Kubernetes cluster. | | [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates. | | [cert-manager-issuers](https://github.com/kadras-io/cert-manager-issuers) | A collection of issuers for Cert Manager, used by the Kadras platform to support TLS via a private CA or Let's Encrypt. | diff --git a/repo/packages/argo-cd.packages.kadras.io/2.8.3.yml b/repo/packages/argo-cd.packages.kadras.io/2.8.3.yml deleted file mode 100644 index 46fc041..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.8.3.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.8.3 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases - releasedAt: "2023-09-08T17:13:47Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-argo-cd@sha256:325c630476b659477b15422de5c8fbeb285c6e7fed73e21a281346cc9c72c603 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.8.3 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.2.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.2.yml deleted file mode 100644 index 203065f..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.2.yml +++ /dev/null @@ -1,47 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.9.2 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-09-08T16:51:19Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:0160ce06bb486bd82f6649b6992a2e8b378737dc33a7d564bbc941cf5daf6f11 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.9.2 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.4.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.4.yml deleted file mode 100644 index 331cb38..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/0.7.4.yml +++ /dev/null @@ -1,43 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io.0.7.4 -spec: - licenses: - - Apache 2.0 - refName: cartographer-blueprints.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-blueprints/releases - releasedAt: "2023-09-08T21:26:01Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-blueprints@sha256:9d672e20a170cbcbe7322476e9cbbbf23c3b0fe0a4d99d8a35f74cccb72c384e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - excluded_blueprints: - default: [] - description: A list of blueprints to esclude from being created in the cluster. - items: - default: "" - type: string - type: array - tekton_catalog_namespace: - default: tekton-catalog - description: The namespace where the Tekton Catalog package has been installed. - type: string - type: object - version: 0.7.4 diff --git a/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml b/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml deleted file mode 100644 index 709582d..0000000 --- a/repo/packages/cartographer-blueprints.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,19 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: cartographer-blueprints.packages.kadras.io -spec: - categories: - - ci/cd - - golden paths - - developer experience - displayName: cartographer-blueprints - longDescription: A set of reusable blueprints to build paved paths to production - on Kubernetes using Cartographer. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: A set of reusable blueprints for Cartographer. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/cartographer-blueprints - for community support. diff --git a/repo/packages/cartographer.packages.kadras.io/0.8.0+kadras.1.yml b/repo/packages/cartographer.packages.kadras.io/0.8.0+kadras.1.yml deleted file mode 100644 index d15f1f5..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.8.0+kadras.1.yml +++ /dev/null @@ -1,151 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer.packages.kadras.io.0.8.0+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: cartographer.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases - releasedAt: "2023-09-03T13:07:33Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cartographer@sha256:e53bf0407c398709cb51ef538425b50b09f63620e4425d7acf7f1aba334b73cc - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cartographer: - additionalProperties: false - description: Settings for the Cartographer component. - properties: - concurrency: - additionalProperties: false - description: Concurrency configuration for the Cartographer controller. - properties: - max_deliveries: - default: 2 - description: Maximum concurrent Deliveries processed by the Cartographer - controller. - type: integer - max_runnables: - default: 2 - description: Maximum concurrent Runnables processed by the Cartographer - controller. - type: integer - max_workloads: - default: 2 - description: Maximum concurrent Workloads processed by the Cartographer - controller. - type: integer - type: object - resources: - additionalProperties: false - description: CPU and memory configuration for the Cartographer controller. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "1" - description: CPU limits configuration for the Cartographer controller. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the Cartographer - controller. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU requests configuration for the Cartographer - controller. - type: string - memory: - default: 512Mi - description: Memory requests configuration for the Cartographer - controller. - type: string - type: object - type: object - type: object - conventions: - additionalProperties: false - description: Settings for the Cartographer Conventions component. - properties: - resources: - additionalProperties: false - description: CPU and memory configuration for the Cartographer Conventions - controller. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 100m - description: CPU limits configuration for the Cartographer Conventions - controller. - type: string - memory: - default: 256Mi - description: Memory limits configuration for the Cartographer - Conventions controller. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 100m - description: CPU requests configuration for the Cartographer - Conventions controller. - type: string - memory: - default: 20Mi - description: Memory requests configuration for the Cartographer - Conventions controller. - type: string - type: object - type: object - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - level: - default: info - description: 'Log verbosity level. Options: `debug`, `info`, `error`.' - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Cartographer optional components to deploy. - properties: - cartographer_conventions: - default: true - description: Whether to deploy the Cartographer Conventions component. - type: boolean - type: object - type: object - version: 0.8.0+kadras.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.12.4+kadras.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.12.4+kadras.1.yml deleted file mode 100644 index 8a4b842..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.12.4+kadras.1.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.12.4+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-09-08T20:21:42Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:34a240ef3cde2a45fdfec344a61ec4d29e9ced803873be7c824c6428ea087dc5 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - probes: - additionalProperties: false - description: Settings for the cert-manager controller probes. - properties: - enabled: - default: false - description: 'Whether to enable to optional probes on the cert-manager - controller. It''s recommended not to enable this unless you encounter - issues with the controller Pods not restarting correctly. More - information: https://github.com/cert-manager/cert-manager/pull/5962.' - type: boolean - type: object - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.12.4+kadras.1 diff --git a/repo/packages/flux.packages.kadras.io/2.1.0+kadras.2.yml b/repo/packages/flux.packages.kadras.io/2.1.0+kadras.2.yml deleted file mode 100644 index 65ac6b5..0000000 --- a/repo/packages/flux.packages.kadras.io/2.1.0+kadras.2.yml +++ /dev/null @@ -1,99 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.1.0+kadras.2 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2023-09-03T15:26:28Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:b89537f920c43d74f9958362539c0d12ce3f706ccd92b2a0c08bbfbda99fc499 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.1.0+kadras.2 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.11.2.yml b/repo/packages/knative-eventing.packages.kadras.io/1.11.2.yml deleted file mode 100644 index 95973e5..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.11.2.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.11.2 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases - releasedAt: "2023-09-08T17:21:45Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:c986465e6ce93e815351e40444cd5ae76a4e630c42ce064b6b88e7c2fe1aac6e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.11.2 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.11.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.11.0.yml deleted file mode 100644 index 5975c45..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.11.0.yml +++ /dev/null @@ -1,278 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.11.0 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-08-13T07:00:12Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:a2c058653438bfeaeb2696b23a63258f5bea1a29a956621f0cf8bc7cfce098da - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.11.0 diff --git a/repo/packages/kpack.packages.kadras.io/0.12.0.yml b/repo/packages/kpack.packages.kadras.io/0.12.0.yml deleted file mode 100644 index 3a55631..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.12.0.yml +++ /dev/null @@ -1,156 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.12.0 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kpack/releases - releasedAt: "2023-09-08T20:25:24Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kpack@sha256:0c08da7a32445c7a9a08ab1584e2d1641b6311772036c1f5bbaa35831cd33735 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'PEM-encoded certificate data that kpack controller will use - to trust TLS connections based on a custom CA with a container registry. - Note: This will not be injected into builds, you need to use the cert - injection webhook with the `kpack.io/build` label value.' - type: string - config: - additionalProperties: false - description: Settings for kpack. - properties: - injected_sidecar_support: - default: false - description: Enable support for injected sidecars. - type: boolean - type: object - controller: - additionalProperties: false - description: Settings for the the kpack controller. - properties: - resources: - additionalProperties: false - description: Resource configuration for the kpack-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory limits configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `500Mi`. - type: string - type: object - requests: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory requests configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `100Mi`. - type: string - type: object - type: object - type: object - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to access the default container repository - if the registry is on AWS. - nullable: true - type: string - credentials: - additionalProperties: false - description: Read/write credentials to access the default container - repository. - nullable: true - properties: - password: - default: "" - description: 'Token to access the default container repository. - Note: Use contents of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the default container repository. - Note: Use `_json_key` for GCR.' - type: string - type: object - name: - default: "" - description: The default repository to use for builder images and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the default container repository. - nullable: true - properties: - create_export: - default: false - description: Whether to create a SecretExport resource to export - the Secret from the source namespace to the kpack namespace. Not - needed when installing kpack as part of the Kadras Enginnering - Platform. - type: boolean - name: - default: "" - description: The name of the Secret holding the credentials to access - the default container repository. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the default container repository. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy (e.g. Kubernetes - API address). - type: string - type: object - type: object - version: 0.12.0 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.14.10.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.14.10.yml deleted file mode 100644 index 6d97deb..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.14.10.yml +++ /dev/null @@ -1,35 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.14.10 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases - releasedAt: "2023-09-08T16:24:06Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:c3cee558d707a0557795f7aa19fe5d2c847d8111cfb06edc081b8d9e5b724271 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.14.10 diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.2.2.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.2.2.yml deleted file mode 100644 index 147cb6d..0000000 --- a/repo/packages/tekton-catalog.packages.kadras.io/0.2.2.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-catalog.packages.kadras.io.0.2.2 -spec: - licenses: - - Apache 2.0 - refName: tekton-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/tekton-catalog/releases - releasedAt: "2023-09-08T19:32:17Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/tekton-catalog@sha256:1a8e4c9fe0b54ea3df5e92a843344053123819e921be9dbe667cecc892ba6058 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: tekton-catalog - description: The namespace where to deploy the Tekton Catalog. - type: string - type: object - version: 0.2.2 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.51.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.51.0.yml deleted file mode 100644 index 08857c2..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.51.0.yml +++ /dev/null @@ -1,556 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.51.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-09-08T19:22:53Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:e4b474a4bfe30020bc345f6330fcd8440dd7692803a775127305f358145038e9 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config-defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - default-affinity-assistant-pod-template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - default-forbidden-env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - default-managed-by-label-value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - default-max-matrix-combinations-count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - default-pod-template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - default-resolver-type: - default: "" - description: The default resolver type to be used in the cluster. - type: string - default-service-account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - default-task-run-workspace-binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - default-timeout-minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - config-events: - additionalProperties: false - description: Events configuration stored in the `config-events` ConfigMap. - properties: - sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, and - CustomRun. If no sink is specified, no CloudEvent is generated. - type: string - type: object - config-leader-election: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel.controller: - default: info - description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` - Deployments. - type: string - loglevel.webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - zap-logger-config: - default: | - { - "level": "info", - "development": false, - "sampling": { - "initial": 100, - "thereafter": 100 - }, - "outputPaths": ["stdout"], - "errorOutputPaths": ["stderr"], - "encoding": "json", - "encoderConfig": { - "timeKey": "timestamp", - "levelKey": "severity", - "nameKey": "logger", - "callerKey": "caller", - "messageKey": "message", - "stacktraceKey": "stacktrace", - "lineEnding": "", - "levelEncoder": "", - "timeEncoder": "iso8601", - "durationEncoder": "", - "callerEncoder": "" - } - } - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - config-observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics.allow-stackdriver-custom-metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver using - 'global' resource type and custom metric type. Ignore if `backend_destination` - is not `stackdriver`. - type: string - metrics.backend-destination: - default: prometheus - description: The destination for the metrics produced by the Tekton - components. - type: string - metrics.pipelinerun.duration-type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram value - isn’t available when the `pipelinerun` level is selected. - type: string - metrics.pipelinerun.level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling which labels - are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), - (namespace).' - type: string - metrics.stackdriver-project-id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the cluster's - project if this field is not provided. - type: string - metrics.taskrun.duration-type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram value - isn’t available when the `taskrun` level is selected. - type: string - metrics.taskrun.level: - default: task - description: 'Level for the TaskRun metrics controlling which labels - are included: (taskrun, task, namespace), (task, namespace), (namespace).' - type: string - type: object - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - events: - additionalProperties: false - description: Settings for the `tekton-events-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-events-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - artifact_hub_url: - default: https://artifacthub.io/ - description: The Artifact Hub API used by the Hub Resolver to resolve - remote pipelines and tasks. - type: string - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - type: object - type: object - feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await-sidecar-readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - coschedule: - default: workspaces - description: 'Setting this flag will determine how PipelineRun Pods - are scheduled with Affinity Assistant. Options: `workspaces`, `pipelineruns`, - `isolate-pipelinerun`, `disabled`.' - type: string - disable-creds-init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable-api-fields: - default: beta - description: Setting this flag will determine which gated features are - enabled. - type: string - enable-provenance-in-status: - default: "true" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable-tekton-oci-bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce-nonfalsifiability: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - require-git-ssh-secret-known-hosts: - default: "true" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - results-from: - default: termination-message - description: Setting this flag will determine how Tekton pipelines will - handle extracting results from the task. Acceptable values are `termination-message` - or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus - should still be considered an alpha feature. - type: string - running-in-environment-with-injected-sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send-cloudevents-for-runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - set-security-context: - default: "false" - description: Setting this flag to `true` will limit privileges for containers - injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces - with `restricted` pod security standards. Not all Kubernetes implementations - support this option. - type: string - trusted-resources-verification-no-match-policy: - default: ignore - description: This flag affects the behavior of taskruns and pipelineruns - in cases where no VerificationPolicies match them. If it is set to - `fail`, TaskRuns and PipelineRuns will fail verification if no matching - policies are found. If it is set to `warn`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and an error - will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and no error - will be logged. - type: string - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - enable: - default: false - description: Setting this flag to `true` enables the trace exporter. - type: boolean - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - endpoint: - default: "" - description: The endpoint where the distributed tracing backend - accepts OpenTelemetry traces using the Jaeger protocol. - type: string - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundleresolver-config: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default-kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default-service-account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster-resolver-config: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - git-resolver-config: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api-token-secret-key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api-token-secret-name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api-token-secret-namespace: - default: default - description: The namespace containing the API token secret. - type: string - default-org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default-revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default-url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch-timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm-type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server-url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hubresolver-config: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default-artifact-hub-pipeline-catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default-artifact-hub-task-catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-tekton-hub-catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default-type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - resolvers-feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable-bundles-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable-cluster-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable-git-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable-hub-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.51.0 From baad608655bcc927ee9b1da76248b6ed88fc1efd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 13 Oct 2023 22:50:50 +0200 Subject: [PATCH 321/601] Update Cartographer Supply Chains metadata and add version 0.8.0 (#298) Co-authored-by: github-actions --- .../0.8.0.yml | 167 ++++++++++++++++++ 1 file changed, 167 insertions(+) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.8.0.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.8.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.8.0.yml new file mode 100644 index 0000000..2547b36 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.8.0.yml @@ -0,0 +1,167 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.8.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-10-13T20:45:16Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:e915a76c5eecb60daaf5bee090d2812c3c73c37f78cfa6b588a5a2f7babc9e87 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + excluded_blueprints: + default: [] + description: A list of blueprints (supply chains or templates) to esclude + from being created in the cluster. + items: + default: "" + type: string + type: array + external_delivery: + default: false + description: Whether the application should delivered and deployed automatically + on the current Kubernetes cluster or manually to an external cluster. + type: boolean + git_credentials_secret: + default: "" + description: The Secret containing authentication credentials for Git repositories. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chains. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + description: Settings for the Git repository used for the GitOps workflows. + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + registry_credentials_secret: + default: "" + description: The Secret containing authentication credentials for the OCI + registry. + type: string + service_account: + default: supply-chain + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chains to deploy. Options: `basic`, `advanced`.' + type: string + tekton_catalog_namespace: + default: tekton-catalog + description: The namespace where the Tekton Catalog package has been installed. + type: string + type: object + version: 0.8.0 From 484fe49099de2785f906b9aad4d6fd7ae0ca43b1 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 13 Oct 2023 22:51:36 +0200 Subject: [PATCH 322/601] Remove deprecated packages --- .../0.7.2.yml | 155 ------------------ 1 file changed, 155 deletions(-) delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.2.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.2.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.2.yml deleted file mode 100644 index 683143c..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.7.2.yml +++ /dev/null @@ -1,155 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.7.2 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases - releasedAt: "2023-09-08T21:45:27Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:dd7382949effbf7bbba14651c3e94966a52cc8cdc5e1b4852b4cac4bbe31161e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cluster_builder: - default: default - description: The default `ClusterBuilder` used by kpack. - type: string - external_delivery: - default: false - description: Whether a deliverable is manually applied to an external Kubernetes - cluster. - type: boolean - git_credentials_secret: - default: "" - description: The Secret containing authentication credentials for Git repositories. - type: string - gitops: - additionalProperties: false - description: Settings for using a GitOps strategy with the supply chain. - properties: - commit: - additionalProperties: false - properties: - message: - default: Update from Cartographer - description: The commit message to use when pushing configuration - changes to Git. - type: string - type: object - pull_request: - additionalProperties: false - description: Settings for using a GitOps approach based on pull requests. - properties: - body: - default: Generated from Cartographer - description: The message body of the pull request. - type: string - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated. - type: string - server_kind: - default: github - description: The type of Git server where to open the pull request. - example: github - type: string - x-example-description: Open a pull request on GitHub - title: - default: Update from Cartographer - description: The title of the pull request. - type: string - type: object - repository: - additionalProperties: false - description: Settings for the Git repository used for the GitOps workflows. - properties: - name: - default: "" - description: The name of the Git repository. - type: string - owner: - default: "" - description: The owner of the Git repository. - type: string - type: object - server_address: - default: https://github.com - description: The location of the server hosting the specified Git repository. - type: string - strategy: - default: none - description: Whether to commit configuration changes to Git directly - (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps - strategy is applied. - type: string - target_branch: - default: main - description: The target branch where to push configuration changes. - type: string - user: - additionalProperties: false - properties: - email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository. - type: string - name: - default: cartographer - description: The name of the user interacting with the Git repository. - type: string - type: object - type: object - registry: - additionalProperties: false - description: Settings for the OCI Registry used by the supply chain. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the supply chain - will publish and consume OCI images. - type: string - server: - default: "" - description: The server of the OCI Registry where the supply chain will - publish and consume OCI images. - type: string - type: object - registry_credentials_secret: - default: "" - description: The Secret containing authentication credentials for the OCI - registry. - type: string - service_account: - default: supply-chain - description: The default `ServiceAccount` used by the supply chain. - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, `advanced`.' - type: string - type: object - version: 0.7.2 From 301ecd3721d282bd27089aab6ad3bf74a3000abb Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 13 Oct 2023 23:06:46 +0200 Subject: [PATCH 323/601] Update Engineering Platform metadata and add version 0.12.0 (#299) Co-authored-by: github-actions --- .../0.12.0.yml | 294 ++++++++++++++++++ 1 file changed, 294 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.12.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.12.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.12.0.yml new file mode 100644 index 0000000..7f5e271 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.12.0.yml @@ -0,0 +1,294 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.12.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-10-13T21:01:50Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:24fd52ebe4ee769198d8db07595aa9967fb5dca8f22cad2a1146625994eecf29 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `dev`, `build`, `run`.' + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, + `advanced`.' + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + catalog: + default: {} + description: Configuration for the Tekton Catalog package. + nullable: true + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.12.0 From 1b2e8076255eefa4f9e58f900e3ec3a1e76f938a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 13 Oct 2023 23:07:13 +0200 Subject: [PATCH 324/601] Remove deprecated dependencies --- .../0.11.0.yml | 302 ------------------ 1 file changed, 302 deletions(-) delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.11.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.11.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.11.0.yml deleted file mode 100644 index 48cc5eb..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.11.0.yml +++ /dev/null @@ -1,302 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.11.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-09-19T16:19:43Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:b4f577178effdb3e3f815e47792e6abe26532239526c2d0a11150bc3db2a1e86 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - blueprints: - default: {} - description: Configuration for the Cartographer Blueprints package. - nullable: true - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - delivery: - default: {} - description: Configuration for the Cartographer Delivery package. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `dev`, `build`, `run`.' - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, - `advanced`.' - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.11.0 From 360d6c54118c975a625464118e5e2487b2b70b86 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 13 Oct 2023 23:07:29 +0200 Subject: [PATCH 325/601] Bump package to 0.14.0 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index c5fa8dd..b65646a 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.13.0 + VERSION: 0.14.0 jobs: build: From d6ab4c05e7562caf50e9a05273b8581429785ec1 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 09:10:19 +0100 Subject: [PATCH 326/601] Update Kyverno metadata and add version 1.10.4 (#300) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.10.4.yml | 170 ++++++++++++++++++ 1 file changed, 170 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.10.4.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.10.4.yml b/repo/packages/kyverno.packages.kadras.io/1.10.4.yml new file mode 100644 index 0000000..b329eb8 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.10.4.yml @@ -0,0 +1,170 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.10.4 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2023-11-11T08:08:19Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:e2faab0fb010f51250b268d3ec6a44cf135083e4d135a3e132de090e46ec00dd + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.10.4 From 427dc0f6a0d35463e7286fd359b3cb9abf8b848d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 09:21:41 +0100 Subject: [PATCH 327/601] Update Contour metadata and add version 1.27.0 (#302) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.27.0.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.27.0.yml diff --git a/repo/packages/contour.packages.kadras.io/1.27.0.yml b/repo/packages/contour.packages.kadras.io/1.27.0.yml new file mode 100644 index 0000000..99d3a53 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.27.0.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.27.0 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2023-11-11T08:19:36Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:ce220ef94525ca883c7ed0492b2125e1ff0c4931ee4578c1b628d26d0ee90d95 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service in + case the `infrastructure_provider` doesn't enforce one already. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy + in case the `infrastructure_provider` doesn't enforce one already. + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + dnsPolicy: + default: ClusterFirst + description: The DNS policy for the Envoy pods. + type: string + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.27.0 From 29e3b82bef50a0f6bbdd585e90d922dce4269acb Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 09:36:25 +0100 Subject: [PATCH 328/601] Update Argo CD metadata and add version 2.9.0 (#303) Co-authored-by: github-actions --- .../argo-cd.packages.kadras.io/2.9.0.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.9.0.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.9.0.yml b/repo/packages/argo-cd.packages.kadras.io/2.9.0.yml new file mode 100644 index 0000000..67b5d5e --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.9.0.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.9.0 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases + releasedAt: "2023-11-11T08:33:47Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-argo-cd@sha256:f267063fdfdb79b455f29dcc04ac2f808a783370170ee1ac4943dceb5e3e27a3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.9.0 From 042554a71f3f6598b202478023aed25cc7b4a8e4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 14:49:10 +0100 Subject: [PATCH 329/601] Update secretgen-controller metadata and add version 0.15.1 (#304) Co-authored-by: github-actions --- .../0.15.1.yml | 35 +++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.15.1.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.15.1.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.15.1.yml new file mode 100644 index 0000000..e502ca1 --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.15.1.yml @@ -0,0 +1,35 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.15.1 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases + releasedAt: "2023-11-11T13:47:19Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:65dc381af4a8da10bd3f3fc192b7da7c6b750e732db7f6b5e3244669d539f866 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.15.1 From f39e06b9ffe068afe5bcd1948d4a22e32a3393ee Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 14:51:25 +0100 Subject: [PATCH 330/601] Update Tekton Pipelines metadata and add version 0.53.0 (#305) Co-authored-by: github-actions --- .../0.53.0.yml | 684 ++++++++++++++++++ 1 file changed, 684 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.53.0.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.53.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.53.0.yml new file mode 100644 index 0000000..e5f6ad7 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.53.0.yml @@ -0,0 +1,684 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.53.0 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-11-11T13:49:25Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:db2fab6fe0de203fc15fb2bd43ee6a2c96d5a218d2258ec8c948b76344b81f66 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-resolver-type: + default: "" + description: The default resolver type to be used in the cluster. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-events: + additionalProperties: false + description: Events configuration stored in the `config-events` ConfigMap. + properties: + sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, and + CustomRun. If no sink is specified, no CloudEvent is generated. + type: string + type: object + config-leader-election-controller: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-controller` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-leader-election-events: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-events` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-leader-election-resolvers: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-resolvers` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-leader-election-webhook: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-webhook` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.count.enable-reason: + default: "false" + description: Whether to include the reason as part of the count metrics + for failed PipelineRuns and TaskRuns. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + config-tracing: + additionalProperties: false + description: Tracing configuration stored in the `config-tracing` ConfigMap. + properties: + enabled: + default: "false" + description: Enable sending traces to defined endpoint by setting this + to `true`. + type: string + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces using the Jaeger protocol. + example: http://tempo.observability.svc.cluster.local:14268/api/traces + type: string + x-example-description: Grafana Tempo tracing backend + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + events: + additionalProperties: false + description: Settings for the `tekton-events-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-events-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + artifact_hub_url: + default: https://artifacthub.io/ + description: The Artifact Hub API used by the Hub Resolver to resolve + remote pipelines and tasks. + type: string + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + tekton_hub_url: + default: https://api.hub.tekton.dev/ + description: The Tekton Hub API used by the Hub Resolver to resolve + remote pipelines and tasks. + type: string + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + coschedule: + default: workspaces + description: 'Setting this flag will determine how PipelineRun Pods + are scheduled with Affinity Assistant. Options: `workspaces`, `pipelineruns`, + `isolate-pipelinerun`, `disabled`.' + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: beta + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-cel-in-whenexpression: + default: "false" + description: Setting this flag to `true` will enable the CEL evaluation + in WhenExpression. + type: string + enable-provenance-in-status: + default: "true" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-step-actions: + default: "false" + description: 'Setting this flag to `true` will enable the use of StepActions + in Steps. This feature is in preview mode and not implemented yet. + Please check #7259 for updates.' + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiability: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + keep-pod-on-cancel: + default: "false" + description: Setting this flag to `true` will keep pod on cancellation + allowing examination of the logs on the pods from cancelled taskruns. + type: string + max-result-size: + default: "4096" + description: Setting this flag will determine the upper limit of each + task result. This flag is optional and only associated with the previous + flag, `results-from`. When `results-from` is set to `sidecar-logs`, + this flag can be used to configure the upper limit of a task result. + type: string + require-git-ssh-secret-known-hosts: + default: "true" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + results-from: + default: termination-message + description: Setting this flag will determine how Tekton pipelines will + handle extracting results from the task. Acceptable values are `termination-message` + or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus + should still be considered an alpha feature. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + set-security-context: + default: "false" + description: Setting this flag to `true` will limit privileges for containers + injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces + with `restricted` pod security standards. Not all Kubernetes implementations + support this option. + type: string + trusted-resources-verification-no-match-policy: + default: ignore + description: This flag affects the behavior of taskruns and pipelineruns + in cases where no VerificationPolicies match them. If it is set to + `fail`, TaskRuns and PipelineRuns will fail verification if no matching + policies are found. If it is set to `warn`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and an error + will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and no error + will be logged. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.53.0 From ef2d6bbe4207b9fe9de3dc78ecfcd02c3cc28d2a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 15:21:16 +0100 Subject: [PATCH 331/601] Update cert-manager metadata and add version 1.13.2 (#306) Co-authored-by: github-actions --- .../1.13.2.yml | 145 ++++++++++++++++++ 1 file changed, 145 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.13.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.13.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.13.2.yml new file mode 100644 index 0000000..71e804d --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.13.2.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.13.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-11-11T14:18:17Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:4849188358ffd47531d51dd2156589f16bf82cf75875d3972ea4f6f8ec87d269 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + probes: + additionalProperties: false + description: Settings for the cert-manager controller probes. + properties: + enabled: + default: false + description: 'Whether to enable to optional probes on the cert-manager + controller. It''s recommended not to enable this unless you encounter + issues with the controller Pods not restarting correctly. More + information: https://github.com/cert-manager/cert-manager/pull/5962.' + type: boolean + type: object + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.13.2 From d22fa5c3aa2063fb0c804fecd15c07c09de3308b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 15:26:52 +0100 Subject: [PATCH 332/601] Update Knative Serving metadata and add version 1.12.0 (#307) Co-authored-by: github-actions --- .../1.12.0.yml | 278 ++++++++++++++++++ 1 file changed, 278 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.12.0.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.12.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.12.0.yml new file mode 100644 index 0000000..96ec843 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.12.0.yml @@ -0,0 +1,278 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.12.0 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-11-11T14:24:12Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:0d01c53ac67801d397f0ba98b12f59e39a480133257b6d0595771b41def5282c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.12.0 From a7a0a0670a52138f6e3b2066133fed1ccd81b60e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 15:32:39 +0100 Subject: [PATCH 333/601] Update Knative Eventing metadata and add version 1.12.0 (#308) Co-authored-by: github-actions --- .../1.12.0.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.12.0.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.12.0.yml b/repo/packages/knative-eventing.packages.kadras.io/1.12.0.yml new file mode 100644 index 0000000..2a3e97d --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.12.0.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.12.0 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases + releasedAt: "2023-11-11T14:30:52Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:74056e9eb681bf791eb8ce7637a79c1c0a26295afbeb98b25e70343d9cbf4d91 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.12.0 From f79698541add215d2dd227d71c7924b02391b0f2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 15:43:53 +0100 Subject: [PATCH 334/601] Update Cartographer metadata and add version 0.8.5 (#309) Co-authored-by: github-actions --- .../cartographer.packages.kadras.io/0.8.5.yml | 151 ++++++++++++++++++ 1 file changed, 151 insertions(+) create mode 100644 repo/packages/cartographer.packages.kadras.io/0.8.5.yml diff --git a/repo/packages/cartographer.packages.kadras.io/0.8.5.yml b/repo/packages/cartographer.packages.kadras.io/0.8.5.yml new file mode 100644 index 0000000..f203a1c --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.8.5.yml @@ -0,0 +1,151 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer.packages.kadras.io.0.8.5 +spec: + licenses: + - Apache 2.0 + refName: cartographer.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases + releasedAt: "2023-11-11T14:41:05Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cartographer@sha256:287c3086e4fc8b7f213e4b1b4f70568298a4967c98f880a0fac9c51c2eab4df3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cartographer: + additionalProperties: false + description: Settings for the Cartographer component. + properties: + concurrency: + additionalProperties: false + description: Concurrency configuration for the Cartographer controller. + properties: + max_deliveries: + default: 2 + description: Maximum concurrent Deliveries processed by the Cartographer + controller. + type: integer + max_runnables: + default: 2 + description: Maximum concurrent Runnables processed by the Cartographer + controller. + type: integer + max_workloads: + default: 2 + description: Maximum concurrent Workloads processed by the Cartographer + controller. + type: integer + type: object + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "1" + description: CPU limits configuration for the Cartographer controller. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the Cartographer + controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU requests configuration for the Cartographer + controller. + type: string + memory: + default: 512Mi + description: Memory requests configuration for the Cartographer + controller. + type: string + type: object + type: object + type: object + conventions: + additionalProperties: false + description: Settings for the Cartographer Conventions component. + properties: + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer Conventions + controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU limits configuration for the Cartographer Conventions + controller. + type: string + memory: + default: 256Mi + description: Memory limits configuration for the Cartographer + Conventions controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU requests configuration for the Cartographer + Conventions controller. + type: string + memory: + default: 20Mi + description: Memory requests configuration for the Cartographer + Conventions controller. + type: string + type: object + type: object + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + level: + default: info + description: 'Log verbosity level. Options: `debug`, `info`, `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Cartographer optional components to deploy. + properties: + cartographer_conventions: + default: true + description: Whether to deploy the Cartographer Conventions component. + type: boolean + type: object + type: object + version: 0.8.5 From c81ea3e06a56e3593c322954a8f4ab89e6c8eb51 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 16:12:16 +0100 Subject: [PATCH 335/601] Update Cartographer Supply Chains metadata and add version 0.9.0 (#310) Co-authored-by: github-actions --- .../0.9.0.yml | 163 ++++++++++++++++++ 1 file changed, 163 insertions(+) create mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.9.0.yml diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.9.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.9.0.yml new file mode 100644 index 0000000..8ac0953 --- /dev/null +++ b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.9.0.yml @@ -0,0 +1,163 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer-supply-chains.packages.kadras.io.0.9.0 +spec: + licenses: + - Apache 2.0 + refName: cartographer-supply-chains.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases + releasedAt: "2023-11-11T15:07:41Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:3347df65ec46759a36f0cc65354a98a9c9f18e5a9bfd72e5d8f6bbad7a78a510 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cluster_builder: + default: default + description: The default `ClusterBuilder` used by kpack. + type: string + excluded_blueprints: + default: [] + description: A list of blueprints (supply chains or templates) to esclude + from being created in the cluster. + items: + default: "" + type: string + type: array + external_delivery: + default: false + description: Whether the application should delivered and deployed automatically + on the current Kubernetes cluster or manually to an external cluster. + type: boolean + git_credentials_secret: + default: "" + description: The Secret containing authentication credentials for Git repositories. + type: string + gitops: + additionalProperties: false + description: Settings for using a GitOps strategy with the supply chains. + properties: + commit: + additionalProperties: false + properties: + message: + default: Update from Cartographer + description: The commit message to use when pushing configuration + changes to Git. + type: string + type: object + pull_request: + additionalProperties: false + description: Settings for using a GitOps approach based on pull requests. + properties: + body: + default: Generated from Cartographer + description: The message body of the pull request. + type: string + commit_branch: + default: "" + description: The branch to use to open a pull request. If empty, + a random name is generated. + type: string + server_kind: + default: github + description: The type of Git server where to open the pull request. + example: github + type: string + x-example-description: Open a pull request on GitHub + title: + default: Update from Cartographer + description: The title of the pull request. + type: string + type: object + repository: + additionalProperties: false + description: Settings for the Git repository used for the GitOps workflows. + properties: + name: + default: "" + description: The name of the Git repository. + type: string + owner: + default: "" + description: The owner of the Git repository. + type: string + type: object + server_address: + default: https://github.com + description: The location of the server hosting the specified Git repository. + type: string + strategy: + default: none + description: Whether to commit configuration changes to Git directly + (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps + strategy is applied. + type: string + target_branch: + default: main + description: The target branch where to push configuration changes. + type: string + user: + additionalProperties: false + properties: + email: + default: cartographer@kadras.io + description: The email of the user interacting with the Git repository. + type: string + name: + default: cartographer + description: The name of the user interacting with the Git repository. + type: string + type: object + type: object + registry: + additionalProperties: false + description: Settings for the OCI Registry used by the supply chain. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the supply chain + will publish and consume OCI images. + type: string + server: + default: "" + description: The server of the OCI Registry where the supply chain will + publish and consume OCI images. + type: string + type: object + registry_credentials_secret: + default: "" + description: The Secret containing authentication credentials for the OCI + registry. + type: string + service_account: + default: supply-chain + description: The default `ServiceAccount` used by the supply chain. + type: string + supply_chain: + default: basic + description: 'The type of supply chains to deploy. Options: `basic`, `advanced`.' + type: string + type: object + version: 0.9.0 From 87e322f92a09082343957b7f60d458146def1b55 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 16:25:42 +0100 Subject: [PATCH 336/601] Update Buildpacks Catalog metadata and add version 0.9.5 (#312) Co-authored-by: github-actions --- .../0.9.5.yml | 47 +++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.5.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.5.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.5.yml new file mode 100644 index 0000000..984bb41 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.5.yml @@ -0,0 +1,47 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.9.5 +spec: + capacityRequirementsDescription: Container registry with at least 1GB available + space used by kpack to create builder images. + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2023-11-11T15:23:21Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:a9cb6c7a81f230e1fdf5aaca82eb36f97460e3679ee5a45c3ccbb5b14ab1a04a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.9.5 From 31b5ef040a4e38be541346e9fb0b50cdaf2d6106 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 16:25:51 +0100 Subject: [PATCH 337/601] Update Spring Boot Conventions metadata and add version 0.3.2 (#311) Co-authored-by: github-actions --- .../0.3.2.yml | 67 +++++++++++++++++++ 1 file changed, 67 insertions(+) create mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.3.2.yml diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.2.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.2.yml new file mode 100644 index 0000000..9ed4653 --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.2.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io.0.3.2 +spec: + licenses: + - Apache 2.0 + refName: spring-boot-conventions.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases + releasedAt: "2023-11-11T15:23:26Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:3142ac17c4c8677af95c7a423db1eb10222197c39a32d4546b7e8090d4c79f94 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: spring-boot-conventions + description: The namespace where to install Spring Boot Conventions + type: string + resources: + additionalProperties: false + description: Resource configuration for the Convention Server + properties: + limits: + additionalProperties: false + description: Resource limits + properties: + cpu: + default: 100m + description: CPU limits + type: string + memory: + default: 256Mi + description: Memory limits + type: string + type: object + requests: + additionalProperties: false + description: Resource requests + properties: + cpu: + default: 100m + description: CPU requests + type: string + memory: + default: 20Mi + description: Memory requests + type: string + type: object + type: object + type: object + version: 0.3.2 From c7391b306fc112ba014b2088142c52bc78c9b8fa Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 18:42:04 +0100 Subject: [PATCH 338/601] Update Engineering Platform metadata and add version 0.12.1 (#313) Co-authored-by: github-actions --- .../0.12.1.yml | 290 ++++++++++++++++++ 1 file changed, 290 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.12.1.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.12.1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.12.1.yml new file mode 100644 index 0000000..3ff9832 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.12.1.yml @@ -0,0 +1,290 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.12.1 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-11-11T17:38:55Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:a8f5d658dc46de74c1c05aea84680fd56ec5d1d083810241d9311f6603159a7e + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `dev`, `build`, `run`.' + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, + `advanced`.' + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.12.1 From e9c944a17ba1875d89de3e8c048c9fb5338551bd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 18:43:25 +0100 Subject: [PATCH 339/601] Remove deprecated packages --- .../argo-cd.packages.kadras.io/2.8.4.yml | 45 -- .../0.9.4.yml | 47 -- .../0.8.0.yml | 167 ----- .../cartographer.packages.kadras.io/0.8.2.yml | 151 ----- .../1.13.1.yml | 145 ----- .../contour.packages.kadras.io/1.26.0.yml | 211 ------- .../0.12.0.yml | 294 --------- .../1.11.4.yml | 45 -- .../1.11.1.yml | 278 --------- .../1.10.3+kadras.1.yml | 170 ------ .../0.15.0.yml | 35 -- .../0.3.1.yml | 67 -- .../0.52.0.yml | 571 ------------------ 13 files changed, 2226 deletions(-) delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.8.4.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.4.yml delete mode 100644 repo/packages/cartographer-supply-chains.packages.kadras.io/0.8.0.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.8.2.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.13.1.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.26.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.12.0.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.11.4.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.11.1.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.10.3+kadras.1.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.15.0.yml delete mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.3.1.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.52.0.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.8.4.yml b/repo/packages/argo-cd.packages.kadras.io/2.8.4.yml deleted file mode 100644 index 74fc670..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.8.4.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.8.4 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases - releasedAt: "2023-09-19T20:29:47Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-argo-cd@sha256:d5c2c13c582f5f1235fbda917c588e552a2d5dba6d47d7f4c40398195e098a4b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.8.4 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.4.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.4.yml deleted file mode 100644 index fa804ad..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.4.yml +++ /dev/null @@ -1,47 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.9.4 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-10-13T17:43:55Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:0402c07aa24cd17c3de8bb4976a4d74f0e1db403a56493ac1e11f4c728f937ec - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.9.4 diff --git a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.8.0.yml b/repo/packages/cartographer-supply-chains.packages.kadras.io/0.8.0.yml deleted file mode 100644 index 2547b36..0000000 --- a/repo/packages/cartographer-supply-chains.packages.kadras.io/0.8.0.yml +++ /dev/null @@ -1,167 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer-supply-chains.packages.kadras.io.0.8.0 -spec: - licenses: - - Apache 2.0 - refName: cartographer-supply-chains.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cartographer-supply-chains/releases - releasedAt: "2023-10-13T20:45:16Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cartographer-supply-chains@sha256:e915a76c5eecb60daaf5bee090d2812c3c73c37f78cfa6b588a5a2f7babc9e87 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cluster_builder: - default: default - description: The default `ClusterBuilder` used by kpack. - type: string - excluded_blueprints: - default: [] - description: A list of blueprints (supply chains or templates) to esclude - from being created in the cluster. - items: - default: "" - type: string - type: array - external_delivery: - default: false - description: Whether the application should delivered and deployed automatically - on the current Kubernetes cluster or manually to an external cluster. - type: boolean - git_credentials_secret: - default: "" - description: The Secret containing authentication credentials for Git repositories. - type: string - gitops: - additionalProperties: false - description: Settings for using a GitOps strategy with the supply chains. - properties: - commit: - additionalProperties: false - properties: - message: - default: Update from Cartographer - description: The commit message to use when pushing configuration - changes to Git. - type: string - type: object - pull_request: - additionalProperties: false - description: Settings for using a GitOps approach based on pull requests. - properties: - body: - default: Generated from Cartographer - description: The message body of the pull request. - type: string - commit_branch: - default: "" - description: The branch to use to open a pull request. If empty, - a random name is generated. - type: string - server_kind: - default: github - description: The type of Git server where to open the pull request. - example: github - type: string - x-example-description: Open a pull request on GitHub - title: - default: Update from Cartographer - description: The title of the pull request. - type: string - type: object - repository: - additionalProperties: false - description: Settings for the Git repository used for the GitOps workflows. - properties: - name: - default: "" - description: The name of the Git repository. - type: string - owner: - default: "" - description: The owner of the Git repository. - type: string - type: object - server_address: - default: https://github.com - description: The location of the server hosting the specified Git repository. - type: string - strategy: - default: none - description: Whether to commit configuration changes to Git directly - (`direct`) or via a pull request (`pull_request`). If `none`, no GitOps - strategy is applied. - type: string - target_branch: - default: main - description: The target branch where to push configuration changes. - type: string - user: - additionalProperties: false - properties: - email: - default: cartographer@kadras.io - description: The email of the user interacting with the Git repository. - type: string - name: - default: cartographer - description: The name of the user interacting with the Git repository. - type: string - type: object - type: object - registry: - additionalProperties: false - description: Settings for the OCI Registry used by the supply chain. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the supply chain - will publish and consume OCI images. - type: string - server: - default: "" - description: The server of the OCI Registry where the supply chain will - publish and consume OCI images. - type: string - type: object - registry_credentials_secret: - default: "" - description: The Secret containing authentication credentials for the OCI - registry. - type: string - service_account: - default: supply-chain - description: The default `ServiceAccount` used by the supply chain. - type: string - supply_chain: - default: basic - description: 'The type of supply chains to deploy. Options: `basic`, `advanced`.' - type: string - tekton_catalog_namespace: - default: tekton-catalog - description: The namespace where the Tekton Catalog package has been installed. - type: string - type: object - version: 0.8.0 diff --git a/repo/packages/cartographer.packages.kadras.io/0.8.2.yml b/repo/packages/cartographer.packages.kadras.io/0.8.2.yml deleted file mode 100644 index 297a2c3..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.8.2.yml +++ /dev/null @@ -1,151 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer.packages.kadras.io.0.8.2 -spec: - licenses: - - Apache 2.0 - refName: cartographer.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases - releasedAt: "2023-10-12T16:49:25Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cartographer@sha256:5dacaf1822d45e2ad2efcc3d58c9afdaa81132df0d60d2e12da0e2b53dc66cab - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cartographer: - additionalProperties: false - description: Settings for the Cartographer component. - properties: - concurrency: - additionalProperties: false - description: Concurrency configuration for the Cartographer controller. - properties: - max_deliveries: - default: 2 - description: Maximum concurrent Deliveries processed by the Cartographer - controller. - type: integer - max_runnables: - default: 2 - description: Maximum concurrent Runnables processed by the Cartographer - controller. - type: integer - max_workloads: - default: 2 - description: Maximum concurrent Workloads processed by the Cartographer - controller. - type: integer - type: object - resources: - additionalProperties: false - description: CPU and memory configuration for the Cartographer controller. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "1" - description: CPU limits configuration for the Cartographer controller. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the Cartographer - controller. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU requests configuration for the Cartographer - controller. - type: string - memory: - default: 512Mi - description: Memory requests configuration for the Cartographer - controller. - type: string - type: object - type: object - type: object - conventions: - additionalProperties: false - description: Settings for the Cartographer Conventions component. - properties: - resources: - additionalProperties: false - description: CPU and memory configuration for the Cartographer Conventions - controller. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 100m - description: CPU limits configuration for the Cartographer Conventions - controller. - type: string - memory: - default: 256Mi - description: Memory limits configuration for the Cartographer - Conventions controller. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 100m - description: CPU requests configuration for the Cartographer - Conventions controller. - type: string - memory: - default: 20Mi - description: Memory requests configuration for the Cartographer - Conventions controller. - type: string - type: object - type: object - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - level: - default: info - description: 'Log verbosity level. Options: `debug`, `info`, `error`.' - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Cartographer optional components to deploy. - properties: - cartographer_conventions: - default: true - description: Whether to deploy the Cartographer Conventions component. - type: boolean - type: object - type: object - version: 0.8.2 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.13.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.13.1.yml deleted file mode 100644 index 9767d3e..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.13.1.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.13.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-10-12T16:20:40Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:a02c1c707b5d6c1feac4a96c3ab66bb2951c90bdc4d0921948eb3fe384b2876d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - probes: - additionalProperties: false - description: Settings for the cert-manager controller probes. - properties: - enabled: - default: false - description: 'Whether to enable to optional probes on the cert-manager - controller. It''s recommended not to enable this unless you encounter - issues with the controller Pods not restarting correctly. More - information: https://github.com/cert-manager/cert-manager/pull/5962.' - type: boolean - type: object - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.13.1 diff --git a/repo/packages/contour.packages.kadras.io/1.26.0.yml b/repo/packages/contour.packages.kadras.io/1.26.0.yml deleted file mode 100644 index 3915a40..0000000 --- a/repo/packages/contour.packages.kadras.io/1.26.0.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.26.0 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-09-08T17:41:46Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:58b5f179ca6db405242b95761b3f99a16d3fabc7ec45c5141323eaa37f79e091 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service in - case the `infrastructure_provider` doesn't enforce one already. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy - in case the `infrastructure_provider` doesn't enforce one already. - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - dnsPolicy: - default: ClusterFirst - description: The DNS policy for the Envoy pods. - type: string - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.26.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.12.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.12.0.yml deleted file mode 100644 index 7f5e271..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.12.0.yml +++ /dev/null @@ -1,294 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.12.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-10-13T21:01:50Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:24fd52ebe4ee769198d8db07595aa9967fb5dca8f22cad2a1146625994eecf29 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `dev`, `build`, `run`.' - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, - `advanced`.' - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - catalog: - default: {} - description: Configuration for the Tekton Catalog package. - nullable: true - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.12.0 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.11.4.yml b/repo/packages/knative-eventing.packages.kadras.io/1.11.4.yml deleted file mode 100644 index d839d0a..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.11.4.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.11.4 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases - releasedAt: "2023-10-12T16:41:56Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:d0cb686617fb905e212ffe17a12bda4f2d3675cad965bb91915c4bf307c9924f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.11.4 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.11.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.11.1.yml deleted file mode 100644 index b9449ba..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.11.1.yml +++ /dev/null @@ -1,278 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.11.1 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-09-19T20:37:46Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:d8b5f539b1485e5051f0786d008128c9fc2d3454341dc040ab87bc891912049f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.11.1 diff --git a/repo/packages/kyverno.packages.kadras.io/1.10.3+kadras.1.yml b/repo/packages/kyverno.packages.kadras.io/1.10.3+kadras.1.yml deleted file mode 100644 index 557afb3..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.10.3+kadras.1.yml +++ /dev/null @@ -1,170 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.10.3+kadras.1 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2023-09-03T10:27:37Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:19278627ef8c69a190467d990f84bb7f9843243143a0863dfe0ea000ee77ba1e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.10.3+kadras.1 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.15.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.15.0.yml deleted file mode 100644 index eb49d96..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.15.0.yml +++ /dev/null @@ -1,35 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.15.0 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases - releasedAt: "2023-10-12T15:28:52Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:e0ae0508b07ecf1e9b2bbb89feaa59dec09e550d75d7644748a07e22a8e3e753 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.15.0 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.1.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.1.yml deleted file mode 100644 index 084d38d..0000000 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.1.yml +++ /dev/null @@ -1,67 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: spring-boot-conventions.packages.kadras.io.0.3.1 -spec: - licenses: - - Apache 2.0 - refName: spring-boot-conventions.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases - releasedAt: "2023-09-06T20:27:16Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:0f8fab76ecbe85548938a2b7ea650ed93562914881d336a5dedb53298e18a5f2 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: spring-boot-conventions - description: The namespace where to install Spring Boot Conventions - type: string - resources: - additionalProperties: false - description: Resource configuration for the Convention Server - properties: - limits: - additionalProperties: false - description: Resource limits - properties: - cpu: - default: 100m - description: CPU limits - type: string - memory: - default: 256Mi - description: Memory limits - type: string - type: object - requests: - additionalProperties: false - description: Resource requests - properties: - cpu: - default: 100m - description: CPU requests - type: string - memory: - default: 20Mi - description: Memory requests - type: string - type: object - type: object - type: object - version: 0.3.1 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.52.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.52.0.yml deleted file mode 100644 index 3522214..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.52.0.yml +++ /dev/null @@ -1,571 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.52.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-10-11T20:51:21Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:af6fccbaf8b7f83294f4f7ef10db9752d9c62ed339d92aad6d9a27a6003f0d49 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config-defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - default-affinity-assistant-pod-template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - default-forbidden-env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - default-managed-by-label-value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - default-max-matrix-combinations-count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - default-pod-template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - default-resolver-type: - default: "" - description: The default resolver type to be used in the cluster. - type: string - default-service-account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - default-task-run-workspace-binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - default-timeout-minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - config-events: - additionalProperties: false - description: Events configuration stored in the `config-events` ConfigMap. - properties: - sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, and - CustomRun. If no sink is specified, no CloudEvent is generated. - type: string - type: object - config-leader-election: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel.controller: - default: info - description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` - Deployments. - type: string - loglevel.webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - zap-logger-config: - default: | - { - "level": "info", - "development": false, - "sampling": { - "initial": 100, - "thereafter": 100 - }, - "outputPaths": ["stdout"], - "errorOutputPaths": ["stderr"], - "encoding": "json", - "encoderConfig": { - "timeKey": "timestamp", - "levelKey": "severity", - "nameKey": "logger", - "callerKey": "caller", - "messageKey": "message", - "stacktraceKey": "stacktrace", - "lineEnding": "", - "levelEncoder": "", - "timeEncoder": "iso8601", - "durationEncoder": "", - "callerEncoder": "" - } - } - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - config-observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics.allow-stackdriver-custom-metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver using - 'global' resource type and custom metric type. Ignore if `backend_destination` - is not `stackdriver`. - type: string - metrics.backend-destination: - default: prometheus - description: The destination for the metrics produced by the Tekton - components. - type: string - metrics.pipelinerun.duration-type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram value - isn’t available when the `pipelinerun` level is selected. - type: string - metrics.pipelinerun.level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling which labels - are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), - (namespace).' - type: string - metrics.stackdriver-project-id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the cluster's - project if this field is not provided. - type: string - metrics.taskrun.duration-type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram value - isn’t available when the `taskrun` level is selected. - type: string - metrics.taskrun.level: - default: task - description: 'Level for the TaskRun metrics controlling which labels - are included: (taskrun, task, namespace), (task, namespace), (namespace).' - type: string - type: object - config-tracing: - additionalProperties: false - description: Tracing configuration stored in the `config-tracing` ConfigMap. - properties: - enabled: - default: "false" - description: Enable sending traces to defined endpoint by setting this - to `true`. - type: string - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces using the Jaeger protocol. - example: http://tempo.observability.svc.cluster.local:14268/api/traces - type: string - x-example-description: Grafana Tempo tracing backend - type: object - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - events: - additionalProperties: false - description: Settings for the `tekton-events-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-events-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - artifact_hub_url: - default: https://artifacthub.io/ - description: The Artifact Hub API used by the Hub Resolver to resolve - remote pipelines and tasks. - type: string - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - type: object - type: object - feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await-sidecar-readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - coschedule: - default: workspaces - description: 'Setting this flag will determine how PipelineRun Pods - are scheduled with Affinity Assistant. Options: `workspaces`, `pipelineruns`, - `isolate-pipelinerun`, `disabled`.' - type: string - disable-creds-init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable-api-fields: - default: beta - description: Setting this flag will determine which gated features are - enabled. - type: string - enable-provenance-in-status: - default: "true" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable-tekton-oci-bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce-nonfalsifiability: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - max-result-size: - default: "4096" - description: Setting this flag will determine the upper limit of each - task result. This flag is optional and only associated with the previous - flag, `results-from`. When `results-from` is set to `sidecar-logs`, - this flag can be used to configure the upper limit of a task result. - type: string - require-git-ssh-secret-known-hosts: - default: "true" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - results-from: - default: termination-message - description: Setting this flag will determine how Tekton pipelines will - handle extracting results from the task. Acceptable values are `termination-message` - or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus - should still be considered an alpha feature. - type: string - running-in-environment-with-injected-sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send-cloudevents-for-runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - set-security-context: - default: "false" - description: Setting this flag to `true` will limit privileges for containers - injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces - with `restricted` pod security standards. Not all Kubernetes implementations - support this option. - type: string - trusted-resources-verification-no-match-policy: - default: ignore - description: This flag affects the behavior of taskruns and pipelineruns - in cases where no VerificationPolicies match them. If it is set to - `fail`, TaskRuns and PipelineRuns will fail verification if no matching - policies are found. If it is set to `warn`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and an error - will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and no error - will be logged. - type: string - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundleresolver-config: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default-kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default-service-account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster-resolver-config: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - git-resolver-config: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api-token-secret-key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api-token-secret-name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api-token-secret-namespace: - default: default - description: The namespace containing the API token secret. - type: string - default-org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default-revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default-url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch-timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm-type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server-url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hubresolver-config: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default-artifact-hub-pipeline-catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default-artifact-hub-task-catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-tekton-hub-catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default-type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - resolvers-feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable-bundles-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable-cluster-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable-git-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable-hub-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.52.0 From 7a1f73839fc9ebf7e583a584ac11c19edc34f89d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 18:44:18 +0100 Subject: [PATCH 340/601] Remove Tekton Catalog --- README.md | 1 - .../0.2.3.yml | 36 ------------------- .../metadata.yml | 17 --------- 3 files changed, 54 deletions(-) delete mode 100644 repo/packages/tekton-catalog.packages.kadras.io/0.2.3.yml delete mode 100644 repo/packages/tekton-catalog.packages.kadras.io/metadata.yml diff --git a/README.md b/README.md index b978250..c3f4e7e 100644 --- a/README.md +++ b/README.md @@ -30,7 +30,6 @@ This repository contains the following Carvel packages. | [rbac-configurer](https://github.com/kadras-io/rbac-configurer) | Provides default roles and RBAC configuration for the Kadras Engineering Platform. | | [secretgen-controller](https://github.com/carvel-dev/secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. | | [spring-boot-conventions](https://github.com/kadras-io/package-for-spring-boot-conventions) | Defines conventions for Spring Boot workloads that will be applied by the Cartographer Convention Controller. | -| [tekton-catalog](https://github.com/kadras-io/tekton-catalog) | A set of Tekton pipelines and tasks used by the Kadras platform to support testing, scanning, delivering and deploying applications. | | [tekton-pipelines](https://github.com/kadras-io/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | | [workspace-provisioner](https://github.com/kadras-io/workspace-provisioner) | Provisions and configures workspaces (namespaces or virtual clusters) to work with the Kadras Engineering Platform. | diff --git a/repo/packages/tekton-catalog.packages.kadras.io/0.2.3.yml b/repo/packages/tekton-catalog.packages.kadras.io/0.2.3.yml deleted file mode 100644 index ddabde8..0000000 --- a/repo/packages/tekton-catalog.packages.kadras.io/0.2.3.yml +++ /dev/null @@ -1,36 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-catalog.packages.kadras.io.0.2.3 -spec: - licenses: - - Apache 2.0 - refName: tekton-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/tekton-catalog/releases - releasedAt: "2023-10-13T18:59:40Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/tekton-catalog@sha256:d829bb143c0f6336986d7022daa4397b7ab946acd2ec78812cad1c343e9bb3bd - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: tekton-catalog - description: The namespace where to deploy the Tekton Catalog. - type: string - type: object - version: 0.2.3 diff --git a/repo/packages/tekton-catalog.packages.kadras.io/metadata.yml b/repo/packages/tekton-catalog.packages.kadras.io/metadata.yml deleted file mode 100644 index ce1b575..0000000 --- a/repo/packages/tekton-catalog.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,17 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: tekton-catalog.packages.kadras.io -spec: - categories: - - build - displayName: tekton-catalog - longDescription: A set of Tekton pipelines and tasks used by the Kadras platform - to support testing, scanning, delivering and deploying applications. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: A set of Tekton pipelines and tasks to use with the Kadras platform. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/tekton-catalog - for community support. From e70ead4c64a967a417d3f05c59ca92b6a64412d3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 18:44:36 +0100 Subject: [PATCH 341/601] Bump release version to 0.14.1 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index b65646a..4f0b8ae 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.14.0 + VERSION: 0.14.1 jobs: build: From 4cd238883717a3753ea8bf448ae0cb608fcca876 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 11 Nov 2023 18:45:29 +0100 Subject: [PATCH 342/601] Update GH Actions dependencies --- .github/workflows/release.yml | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4f0b8ae..8a6b64d 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,10 +19,10 @@ jobs: image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code - uses: actions/checkout@v4.0.0 + uses: actions/checkout@v4.1.1 - name: Set up Carvel - uses: carvel-dev/setup-action@v1.3.0 + uses: carvel-dev/setup-action@v2.0.0 with: token: ${{ secrets.GITHUB_TOKEN }} @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.1.2 + uses: sigstore/cosign-installer@v3.2.0 - name: Log into container registry uses: redhat-actions/podman-login@v1.6 From 1d4af2da72f620d1a810de8bd59b754d83088a98 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 25 Nov 2023 18:26:17 +0100 Subject: [PATCH 343/601] Update Knative Serving metadata and add version 1.12.1 (#315) Co-authored-by: github-actions --- .../1.12.1.yml | 278 ++++++++++++++++++ 1 file changed, 278 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.12.1.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.12.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.12.1.yml new file mode 100644 index 0000000..0c5907b --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.12.1.yml @@ -0,0 +1,278 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.12.1 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-11-25T17:24:34Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:8f8e2623387d7c14bcb0c89a65927d1446939fba937ee00ad0a00af8d3b395aa + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.12.1 From 01e935d6d411ac7ce44d2be2d8bc57e054deabf7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 25 Nov 2023 18:26:27 +0100 Subject: [PATCH 344/601] Update Argo CD metadata and add version 2.9.2 (#314) Co-authored-by: github-actions --- .../argo-cd.packages.kadras.io/2.9.2.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.9.2.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.9.2.yml b/repo/packages/argo-cd.packages.kadras.io/2.9.2.yml new file mode 100644 index 0000000..c6a5bef --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.9.2.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.9.2 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases + releasedAt: "2023-11-25T17:08:47Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-argo-cd@sha256:146a2879b9264a0e4ed818161df419d20f9490df16decfa0242257388ce32051 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.9.2 From 4d2bdc01aa0a6240f9fc8a399e4d5953f8e020fd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 25 Nov 2023 18:35:00 +0100 Subject: [PATCH 345/601] Update kpack metadata and add version 0.12.3 (#316) Co-authored-by: github-actions --- .../kpack.packages.kadras.io/0.12.3.yml | 156 ++++++++++++++++++ 1 file changed, 156 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.12.3.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.12.3.yml b/repo/packages/kpack.packages.kadras.io/0.12.3.yml new file mode 100644 index 0000000..af40411 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.12.3.yml @@ -0,0 +1,156 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.12.3 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2023-11-25T17:33:05Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:d48310adb41cc077f1828209e33b5e29b038070fc3b6fc2ecdd9bbe80e3002f6 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + create_export: + default: false + description: Whether to create a SecretExport resource to export + the Secret from the source namespace to the kpack namespace. Not + needed when installing kpack as part of the Kadras Enginnering + Platform. + type: boolean + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy (e.g. Kubernetes + API address). + type: string + type: object + type: object + version: 0.12.3 From 60c0e07344399c22de8b5a894f29b88091b370f4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 25 Nov 2023 18:46:23 +0100 Subject: [PATCH 346/601] Update Kyverno metadata and add version 1.10.5 (#317) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.10.5.yml | 170 ++++++++++++++++++ 1 file changed, 170 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.10.5.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.10.5.yml b/repo/packages/kyverno.packages.kadras.io/1.10.5.yml new file mode 100644 index 0000000..8d18895 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.10.5.yml @@ -0,0 +1,170 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.10.5 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2023-11-25T17:44:22Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:0ff3ed9ab6deac9c1f639822c8eb892b1a8fdd36a25a2819ba1c45a8cecb332b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.10.5 From 465c84e79abfc679fbc207d14db512d8586e4372 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 25 Nov 2023 19:01:06 +0100 Subject: [PATCH 347/601] Update Tekton Pipelines metadata and add version 0.53.2 (#318) Co-authored-by: github-actions --- .../0.53.2.yml | 684 ++++++++++++++++++ 1 file changed, 684 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.53.2.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.53.2.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.53.2.yml new file mode 100644 index 0000000..a2204e0 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.53.2.yml @@ -0,0 +1,684 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.53.2 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-11-25T17:59:22Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:5272bb1bedbada40bdb1df31fb1dd4b0852ab7a0927b551ea0a21424540e2431 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-resolver-type: + default: "" + description: The default resolver type to be used in the cluster. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-events: + additionalProperties: false + description: Events configuration stored in the `config-events` ConfigMap. + properties: + sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, and + CustomRun. If no sink is specified, no CloudEvent is generated. + type: string + type: object + config-leader-election-controller: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-controller` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-leader-election-events: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-events` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-leader-election-resolvers: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-resolvers` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-leader-election-webhook: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-webhook` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.count.enable-reason: + default: "false" + description: Whether to include the reason as part of the count metrics + for failed PipelineRuns and TaskRuns. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + config-tracing: + additionalProperties: false + description: Tracing configuration stored in the `config-tracing` ConfigMap. + properties: + enabled: + default: "false" + description: Enable sending traces to defined endpoint by setting this + to `true`. + type: string + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces using the Jaeger protocol. + example: http://tempo.observability.svc.cluster.local:14268/api/traces + type: string + x-example-description: Grafana Tempo tracing backend + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + events: + additionalProperties: false + description: Settings for the `tekton-events-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-events-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + artifact_hub_url: + default: https://artifacthub.io/ + description: The Artifact Hub API used by the Hub Resolver to resolve + remote pipelines and tasks. + type: string + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + tekton_hub_url: + default: https://api.hub.tekton.dev/ + description: The Tekton Hub API used by the Hub Resolver to resolve + remote pipelines and tasks. + type: string + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + coschedule: + default: workspaces + description: 'Setting this flag will determine how PipelineRun Pods + are scheduled with Affinity Assistant. Options: `workspaces`, `pipelineruns`, + `isolate-pipelinerun`, `disabled`.' + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: beta + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-cel-in-whenexpression: + default: "false" + description: Setting this flag to `true` will enable the CEL evaluation + in WhenExpression. + type: string + enable-provenance-in-status: + default: "true" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-step-actions: + default: "false" + description: 'Setting this flag to `true` will enable the use of StepActions + in Steps. This feature is in preview mode and not implemented yet. + Please check #7259 for updates.' + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiability: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + keep-pod-on-cancel: + default: "false" + description: Setting this flag to `true` will keep pod on cancellation + allowing examination of the logs on the pods from cancelled taskruns. + type: string + max-result-size: + default: "4096" + description: Setting this flag will determine the upper limit of each + task result. This flag is optional and only associated with the previous + flag, `results-from`. When `results-from` is set to `sidecar-logs`, + this flag can be used to configure the upper limit of a task result. + type: string + require-git-ssh-secret-known-hosts: + default: "true" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + results-from: + default: termination-message + description: Setting this flag will determine how Tekton pipelines will + handle extracting results from the task. Acceptable values are `termination-message` + or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus + should still be considered an alpha feature. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + set-security-context: + default: "false" + description: Setting this flag to `true` will limit privileges for containers + injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces + with `restricted` pod security standards. Not all Kubernetes implementations + support this option. + type: string + trusted-resources-verification-no-match-policy: + default: ignore + description: This flag affects the behavior of taskruns and pipelineruns + in cases where no VerificationPolicies match them. If it is set to + `fail`, TaskRuns and PipelineRuns will fail verification if no matching + policies are found. If it is set to `warn`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and an error + will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and no error + will be logged. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.53.2 From a53a459c7580025c6e8f63ced9c22a0016c435fa Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 25 Nov 2023 19:21:54 +0100 Subject: [PATCH 348/601] Update Engineering Platform metadata and add version 0.12.2 (#319) Co-authored-by: github-actions --- .../0.12.2.yml | 290 ++++++++++++++++++ 1 file changed, 290 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.12.2.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.12.2.yml b/repo/packages/engineering-platform.packages.kadras.io/0.12.2.yml new file mode 100644 index 0000000..ff3f1b0 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.12.2.yml @@ -0,0 +1,290 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.12.2 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2023-11-25T18:15:29Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:b6548a0a69bcaf318d9e6f6f8cd19d41147e46b0a0a30f6ec2beb55f63e6133d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `dev`, `build`, `run`.' + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, + `advanced`.' + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.12.2 From fc52153ccab5fb96ff552ca47fcf06b4a5a85aa1 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 25 Nov 2023 19:24:10 +0100 Subject: [PATCH 349/601] Bump catalog to 0.14.2 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 8a6b64d..ca037db 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.14.1 + VERSION: 0.14.2 jobs: build: From 15be4fa2f32a4b60837619e386ffbd8acb19a845 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 27 Nov 2023 22:22:20 +0100 Subject: [PATCH 350/601] Update Crossplane metadata and add version 1.14.3 (#320) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.14.3.yml | 347 ++++++++++++++++++ .../metadata.yml | 19 + 2 files changed, 366 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.14.3.yml create mode 100644 repo/packages/crossplane.packages.kadras.io/metadata.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.14.3.yml b/repo/packages/crossplane.packages.kadras.io/1.14.3.yml new file mode 100644 index 0000000..55f5341 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.14.3.yml @@ -0,0 +1,347 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.14.3 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2023-11-27T21:12:12Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:999e81ebbc1c7e3dc9b461a4fb88be5195945b76f42bb60f0020e6199a183eb9 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: '{}' + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + type: array + type: object + customAnnotations: + default: '{}' + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: '{}' + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + extraEnvVarsCrossplane: + default: '{}' + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: '{}' + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + type: array + extraVolumeMountsCrossplane: + default: '{}' + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: '{}' + description: Add custom `volumes` to the Crossplane pod. + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: '{}' + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + type: object + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: '{}' + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: '{}' + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: '{}' + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + type: array + type: object + rbacManager: + properties: + affinity: + default: '{}' + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + managementPolicy: + default: Basic + description: Defines the Roles and ClusterRoles the RBAC Manager creates + and manages. - A policy of `Basic` creates and binds Roles only for + the Crossplane ServiceAccount, Provider ServiceAccounts and creates + Crossplane ClusterRoles. - A policy of `All` includes all the `Basic` + settings and also creates Crossplane Roles in all namespaces. - Read + the Crossplane docs for more information on the [RBAC Roles and ClusterRoles](https://docs.crossplane.io/latest/concepts/pods/#crossplane-clusterroles) + type: string + nodeSelector: + default: '{}' + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + serviceAccount: + properties: + customAnnotations: + default: '{}' + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.14.3 diff --git a/repo/packages/crossplane.packages.kadras.io/metadata.yml b/repo/packages/crossplane.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..93fe9b9 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/metadata.yml @@ -0,0 +1,19 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io +spec: + categories: + - control plane + displayName: crossplane + iconSVGBase64: PHN2ZyBpZD0iTGF5ZXJfMSIgZGF0YS1uYW1lPSJMYXllciAxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHhtbG5zOnhsaW5rPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5L3hsaW5rIiB2aWV3Qm94PSIwIDAgOTAwIDkwMCI+PGRlZnM+PHN0eWxlPi5jbHMtMXtmaWxsOm5vbmU7fS5jbHMtMntjbGlwLXBhdGg6dXJsKCNjbGlwLXBhdGgpO30uY2xzLTN7ZmlsbDojZjdkMTg2O30uY2xzLTR7Y2xpcC1wYXRoOnVybCgjY2xpcC1wYXRoLTIpO30uY2xzLTV7aXNvbGF0aW9uOmlzb2xhdGU7fS5jbHMtNntjbGlwLXBhdGg6dXJsKCNjbGlwLXBhdGgtMyk7fS5jbHMtN3tjbGlwLXBhdGg6dXJsKCNjbGlwLXBhdGgtNCk7fS5jbHMtOHtjbGlwLXBhdGg6dXJsKCNjbGlwLXBhdGgtNSk7fS5jbHMtOXtmaWxsOiNmZmNkM2M7fS5jbHMtMTB7Y2xpcC1wYXRoOnVybCgjY2xpcC1wYXRoLTcpO30uY2xzLTExe2NsaXAtcGF0aDp1cmwoI2NsaXAtcGF0aC04KTt9LmNscy0xMntmaWxsOiNmMzgwN2I7fS5jbHMtMTN7Y2xpcC1wYXRoOnVybCgjY2xpcC1wYXRoLTExKTt9LmNscy0xNHtjbGlwLXBhdGg6dXJsKCNjbGlwLXBhdGgtMTIpO30uY2xzLTE1e2ZpbGw6IzM1ZDBiYTt9LmNscy0xNntjbGlwLXBhdGg6dXJsKCNjbGlwLXBhdGgtMTQpO30uY2xzLTE3e2ZpbGw6I2Q4YWU2NDt9PC9zdHlsZT48Y2xpcFBhdGggaWQ9ImNsaXAtcGF0aCI+PHBhdGggY2xhc3M9ImNscy0xIiBkPSJNNDQ3LjczLDMwOS43OGE0Ni43NTk4MSw0Ni43NTk4MSwwLDAsMC00Ni43Niw0Ni43NlY3OTYuNThhNDYuNzYsNDYuNzYsMCwwLDAsOTMuNTIsMFYzNTYuNTVhNDYuNzU1NTUsNDYuNzU1NTUsMCwwLDAtNDYuNzYtNDYuNzciLz48L2NsaXBQYXRoPjxjbGlwUGF0aCBpZD0iY2xpcC1wYXRoLTIiPjxwYXRoIGNsYXNzPSJjbHMtMSIgZD0iTTI2My42MiwyMzQuNTRxLS4xOTUsNC4zMDUtLjIsOC42OGMwLDMuMTkuMDcsNi4zNS4yNCw5LjUtLjA3LDEuNTUtLjI0LDMuMDgtLjI0LDQuNjZWNTYzLjU2YzAsNTguNTUsNDcuOTEsMTA2LjQ2LDEwNi40NiwxMDYuNDZINTMwLjFjNTguNTYsMCwxMDYuNDYtNDcuOTEsMTA2LjQ2LTEwNi40NlYyNTcuMzdjMC0xLjc4LS4xOC0zLjUxLS4yOC01LjI2LjE0LTIuOTUuMjItNS45Mi4yMi04Ljg5LDAtMi45Mi0uMDctNS44LS4yLTguNjhDNjMxLjgsMTM1LjUzLDU1MC4xLDU2LjY2LDQ0OS45OCw1Ni42NiwzNDkuODUsNTYuNjYsMjY4LjE0LDEzNS41MywyNjMuNjIsMjM0LjU0WiIvPjwvY2xpcFBhdGg+PGNsaXBQYXRoIGlkPSJjbGlwLXBhdGgtMyI+PHJlY3QgY2xhc3M9ImNscy0xIiB4PSIxNDIuMzIwMDEiIHk9Ijk3LjA1IiB3aWR0aD0iNjA2LjEwOTk5IiBoZWlnaHQ9IjYwNi4xMDk5NyIvPjwvY2xpcFBhdGg+PGNsaXBQYXRoIGlkPSJjbGlwLXBhdGgtNCI+PHJlY3QgY2xhc3M9ImNscy0xIiB4PSIxMjEuNDUxNjciIHk9IjMwNS42OTEyIiB3aWR0aD0iNjU0LjM3MzcyIiBoZWlnaHQ9IjE5NS41MTgxNCIgdHJhbnNmb3JtPSJ0cmFuc2xhdGUoLTE1My44NzkyNCA0MzUuNDAzMikgcm90YXRlKC00NSkiLz48L2NsaXBQYXRoPjxjbGlwUGF0aCBpZD0iY2xpcC1wYXRoLTUiPjxyZWN0IGNsYXNzPSJjbHMtMSIgeD0iMjYwLjkxIiB5PSI1MC45Mjk5NyIgd2lkdGg9IjM4Mi4xMTAwMiIgaGVpZ2h0PSI2MTkuMjg5OTciLz48L2NsaXBQYXRoPjxjbGlwUGF0aCBpZD0iY2xpcC1wYXRoLTciPjxyZWN0IGNsYXNzPSJjbHMtMSIgeD0iLTIyLjM4IiB5PSItNjcuNjYiIHdpZHRoPSI2MzkuMDQ5OTgiIGhlaWdodD0iNjM5LjA1MDAyIi8+PC9jbGlwUGF0aD48Y2xpcFBhdGggaWQ9ImNsaXAtcGF0aC04Ij48cmVjdCBjbGFzcz0iY2xzLTEiIHg9Ii0zMi45NTA0NCIgeT0iMTI4LjM4NDMiIHdpZHRoPSI2NTQuMzgzNyIgaGVpZ2h0PSIyNDEuMTc3NjciIHRyYW5zZm9ybT0idHJhbnNsYXRlKC04OS44NjkyOCAyODAuOTgyNjQpIHJvdGF0ZSgtNDUpIi8+PC9jbGlwUGF0aD48Y2xpcFBhdGggaWQ9ImNsaXAtcGF0aC0xMSI+PHJlY3QgY2xhc3M9ImNscy0xIiB4PSIyODAuNjcwMDEiIHk9IjIzNS4zOTk5OSIgd2lkdGg9IjYwNi4xMTAwMiIgaGVpZ2h0PSI2MDYuMTEwMDIiLz48L2NsaXBQYXRoPjxjbGlwUGF0aCBpZD0iY2xpcC1wYXRoLTEyIj48cmVjdCBjbGFzcz0iY2xzLTEiIHg9IjI1OC43NzkwMSIgeT0iNDQzLjc5MTAxIiB3aWR0aD0iNjU0LjM5MTk3IiBoZWlnaHQ9IjE5My44MTc5OCIgdHJhbnNmb3JtPSJ0cmFuc2xhdGUoLTIxMC43MDQxOCA1NzIuNzIyOTMpIHJvdGF0ZSgtNDUuMDAwNjIpIi8+PC9jbGlwUGF0aD48Y2xpcFBhdGggaWQ9ImNsaXAtcGF0aC0xNCI+PHBvbHlnb24gY2xhc3M9ImNscy0xIiBwb2ludHM9IjQxMi45NiA2NzAuMDEgNDk0LjUgNzUyLjkgNDk0LjUgNjcwLjAxIDQxMi45NiA2NzAuMDEiLz48L2NsaXBQYXRoPjwvZGVmcz48ZyBjbGFzcz0iY2xzLTIiPjxyZWN0IGNsYXNzPSJjbHMtMyIgeD0iMzY4LjAzIiB5PSIyNzYuODQiIHdpZHRoPSIxNTkuNDEiIGhlaWdodD0iNTk5LjQ0MDAzIi8+PC9nPjxnIGNsYXNzPSJjbHMtNCI+PGcgY2xhc3M9ImNscy01Ij48ZyBjbGFzcz0iY2xzLTYiPjxnIGNsYXNzPSJjbHMtNyI+PGcgY2xhc3M9ImNscy04Ij48cmVjdCBjbGFzcz0iY2xzLTkiIHg9IjExNS42NSIgeT0iNzAuMzY5OTciIHdpZHRoPSI2NjUuNjYiIGhlaWdodD0iNjY1LjY1OTk3Ii8+PC9nPjwvZz48L2c+PC9nPjwvZz48ZyBjbGFzcz0iY2xzLTQiPjxnIGNsYXNzPSJjbHMtNSI+PGcgY2xhc3M9ImNscy0xMCI+PGcgY2xhc3M9ImNscy0xMSI+PGcgY2xhc3M9ImNscy04Ij48cmVjdCBjbGFzcz0iY2xzLTEyIiB4PSItNTUuMzI5OTkiIHk9Ii0xMDAuNjAwMDEiIHdpZHRoPSI2OTkuMTQiIGhlaWdodD0iNjk5LjE0MDA0Ii8+PC9nPjwvZz48L2c+PC9nPjwvZz48ZyBjbGFzcz0iY2xzLTQiPjxnIGNsYXNzPSJjbHMtNSI+PGcgY2xhc3M9ImNscy0xMyI+PGcgY2xhc3M9ImNscy0xNCI+PGcgY2xhc3M9ImNscy04Ij48cmVjdCBjbGFzcz0iY2xzLTE1IiB4PSIyNTMuMTQiIHk9IjIwNy44NyIgd2lkdGg9IjY2NS42NTk5OSIgaGVpZ2h0PSI2NjUuNjU5OTciLz48L2c+PC9nPjwvZz48L2c+PC9nPjxnIGNsYXNzPSJjbHMtMTYiPjxyZWN0IGNsYXNzPSJjbHMtMTciIHg9IjM4MC42OSIgeT0iNjM2LjkwOTk3IiB3aWR0aD0iMTQ3LjAyOTk3IiBoZWlnaHQ9IjE0Ny42Njk5OCIvPjwvZz48L3N2Zz4= + longDescription: Crossplane is an open source Kubernetes extension that transforms + your Kubernetes cluster into a universal control plane. Crossplane lets you manage + anything, anywhere, all through standard Kubernetes APIs. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: Transform your Kubernetes cluster into a universal control plane. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-crossplane + for community support. From 26d723fb85045940c90b5479dfc53dfdd16015e2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 27 Nov 2023 22:23:37 +0100 Subject: [PATCH 351/601] Add Crossplane to readme --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index c3f4e7e..e3b073e 100644 --- a/README.md +++ b/README.md @@ -20,6 +20,7 @@ This repository contains the following Carvel packages. | [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates. | | [cert-manager-issuers](https://github.com/kadras-io/cert-manager-issuers) | A collection of issuers for Cert Manager, used by the Kadras platform to support TLS via a private CA or Let's Encrypt. | | [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | +| [crossplane](https://github.com/kadras-io/package-for-crossplane) | A Kubernetes extension that transforms your Kubernetes cluster into a universal control plane. | | [engineering-platform](https://github.com/kadras-io/engineering-platform) | A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes. | | [flux](https://github.com/kadras-io/package-for-flux) | A continuous deployment solution for Kubernetes, powered by the GitOps Toolkit. | | [knative-eventing](https://github.com/kadras-io/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | From a53875129d931700b80551147ea3750886f076f5 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Tue, 12 Dec 2023 20:29:22 +0100 Subject: [PATCH 352/601] Update Flux metadata and add version 2.2.0 (#321) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.2.0.yml | 99 +++++++++++++++++++ 1 file changed, 99 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.2.0.yml diff --git a/repo/packages/flux.packages.kadras.io/2.2.0.yml b/repo/packages/flux.packages.kadras.io/2.2.0.yml new file mode 100644 index 0000000..da3e102 --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.2.0.yml @@ -0,0 +1,99 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.2.0 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2023-12-12T19:27:24Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:d09794d2ec31c95f90dd92f691ef32f0a000e3232fe09bed875dd0bcfc927513 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.2.0 From fe55676f7905e4e81adc759a3138cfe07c55663f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 16 Dec 2023 00:07:32 +0100 Subject: [PATCH 353/601] Update Flux metadata and add version 2.2.1 (#322) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.2.1.yml | 99 +++++++++++++++++++ 1 file changed, 99 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.2.1.yml diff --git a/repo/packages/flux.packages.kadras.io/2.2.1.yml b/repo/packages/flux.packages.kadras.io/2.2.1.yml new file mode 100644 index 0000000..d0b05e6 --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.2.1.yml @@ -0,0 +1,99 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.2.1 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2023-12-15T23:03:44Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:066ebbc65daeaf027dfecf1be15cb3ca7784861a2606082b77d2c1536ff4f26f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.2.1 From f86c47f4f9e93922f858dd419a5229d00240dce0 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 16 Dec 2023 00:23:04 +0100 Subject: [PATCH 354/601] Update Tekton Pipelines metadata and add version 0.53.3 (#323) Co-authored-by: github-actions --- .../0.53.3.yml | 684 ++++++++++++++++++ 1 file changed, 684 insertions(+) create mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.53.3.yml diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.53.3.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.53.3.yml new file mode 100644 index 0000000..7c5cfb2 --- /dev/null +++ b/repo/packages/tekton-pipelines.packages.kadras.io/0.53.3.yml @@ -0,0 +1,684 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tekton-pipelines.packages.kadras.io.0.53.3 +spec: + licenses: + - Apache 2.0 + refName: tekton-pipelines.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases + releasedAt: "2023-12-15T23:20:54Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:f8020dc83ddeb5c8ca06d100ca4ab0b1afcf2ea8b7bd6cd70c579074fd957254 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config-defaults: + additionalProperties: false + description: Default configuration stored in the `config-defaults` ConfigMap. + properties: + default-affinity-assistant-pod-template: + default: "" + description: Pod template to use for affinity assistant Pods. + type: string + default-forbidden-env: + default: "" + description: Comma seperated environment variables that cannot be overridden + by PodTemplate. + type: string + default-managed-by-label-value: + default: tekton-pipelines + description: Value given to the `app.kubernetes.io/managed-by` label + applied to all Pods created for TaskRuns. + type: string + default-max-matrix-combinations-count: + default: "256" + description: Maximum number of combinations from a Matrix, if none is + specified. + type: string + default-pod-template: + default: "" + description: Pod template to use for TaskRun and PipelineRun. + type: string + default-resolver-type: + default: "" + description: The default resolver type to be used in the cluster. + type: string + default-service-account: + default: default + description: Service account name to use for TaskRun and PipelineRun, + if none is specified. + type: string + default-task-run-workspace-binding: + default: | + emptyDir: {} + description: Workspace configuration provided for any Workspaces that + a Task declares but that a TaskRun does not explicitly provide. + type: string + default-timeout-minutes: + default: "60" + description: Number of minutes to use for TaskRun and PipelineRun, if + none is specified. + type: string + type: object + config-events: + additionalProperties: false + description: Events configuration stored in the `config-events` ConfigMap. + properties: + sink: + default: "" + description: CloudEvents sink to be used for TaskRun, PipelineRun, and + CustomRun. If no sink is specified, no CloudEvent is generated. + type: string + type: object + config-leader-election-controller: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-controller` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-leader-election-events: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-events` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-leader-election-resolvers: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-resolvers` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-leader-election-webhook: + additionalProperties: false + description: Leader election configuration stored in the `config-leader-election-webhook` + ConfigMap. + properties: + buckets: + default: "1" + description: The number of buckets used to partition key space of each + Reconciler. If this number is M and the replica number of the controller + is N, the N replicas will compete for the M buckets. The owner of + a bucket will take care of the reconciling for the keys partitioned + into that bucket. The maximum value of at this time is 10. + type: string + lease-duration: + default: 60s + description: How long non-leaders will wait to try to acquire the lock; + 15 seconds is the value used by core Kubernetes controllers. + type: string + renew-deadline: + default: 40s + description: How long a leader will try to renew the lease before giving + up; 10 seconds is the value used by core Kubernetes controllers. + type: string + retry-period: + default: 10s + description: How long the leader election client waits between tries + of actions; 2 seconds is the value used by core Kubernetes controllers. + type: string + type: object + config-logging: + additionalProperties: false + description: Logging configuration stored in the `config-logging` ConfigMaps + and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + loglevel.controller: + default: info + description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` + Deployments. + type: string + loglevel.webhook: + default: info + description: Log level for the `tekton-pipelines-webhook` Deployment. + type: string + zap-logger-config: + default: | + { + "level": "info", + "development": false, + "sampling": { + "initial": 100, + "thereafter": 100 + }, + "outputPaths": ["stdout"], + "errorOutputPaths": ["stderr"], + "encoding": "json", + "encoderConfig": { + "timeKey": "timestamp", + "levelKey": "severity", + "nameKey": "logger", + "callerKey": "caller", + "messageKey": "message", + "stacktraceKey": "stacktrace", + "lineEnding": "", + "levelEncoder": "", + "timeEncoder": "iso8601", + "durationEncoder": "", + "callerEncoder": "" + } + } + description: Configuration for the zap logger used by all Tekton containers. + type: string + type: object + config-observability: + additionalProperties: false + description: Observability configuration stored in the `config-observability` + ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. + properties: + metrics.allow-stackdriver-custom-metrics: + default: "false" + description: Whether it is allowed to send metrics to Stackdriver using + 'global' resource type and custom metric type. Ignore if `backend_destination` + is not `stackdriver`. + type: string + metrics.backend-destination: + default: prometheus + description: The destination for the metrics produced by the Tekton + components. + type: string + metrics.count.enable-reason: + default: "false" + description: Whether to include the reason as part of the count metrics + for failed PipelineRuns and TaskRuns. + type: string + metrics.pipelinerun.duration-type: + default: histogram + description: Duration type for the PipelineRun metrics. Histogram value + isn’t available when the `pipelinerun` level is selected. + type: string + metrics.pipelinerun.level: + default: pipeline + description: 'Level for the PipelineRun metrics controlling which labels + are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), + (namespace).' + type: string + metrics.stackdriver-project-id: + default: "" + description: The Stackdriver project ID. When running on GCE, application + default credentials will be used and metrics will be sent to the cluster's + project if this field is not provided. + type: string + metrics.taskrun.duration-type: + default: histogram + description: Duration type for the TaskRun metrics. Histogram value + isn’t available when the `taskrun` level is selected. + type: string + metrics.taskrun.level: + default: task + description: 'Level for the TaskRun metrics controlling which labels + are included: (taskrun, task, namespace), (task, namespace), (namespace).' + type: string + type: object + config-tracing: + additionalProperties: false + description: Tracing configuration stored in the `config-tracing` ConfigMap. + properties: + enabled: + default: "false" + description: Enable sending traces to defined endpoint by setting this + to `true`. + type: string + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces using the Jaeger protocol. + example: http://tempo.observability.svc.cluster.local:14268/api/traces + type: string + x-example-description: Grafana Tempo tracing backend + type: object + controllers: + additionalProperties: false + description: Settings for the Tekton Pipelines controllers. + properties: + events: + additionalProperties: false + description: Settings for the `tekton-events-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-events-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + pipelines: + additionalProperties: false + description: Settings for the `tekton-pipelines-controller` Deployment. + properties: + replicas: + default: 1 + description: The number of replicas for the `tekton-pipelines-controller` + Deployment. In order to enable high availability, it should be + greater than 1. + type: integer + type: object + resolvers: + additionalProperties: false + description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. + properties: + artifact_hub_url: + default: https://artifacthub.io/ + description: The Artifact Hub API used by the Hub Resolver to resolve + remote pipelines and tasks. + type: string + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + tekton_hub_url: + default: https://api.hub.tekton.dev/ + description: The Tekton Hub API used by the Hub Resolver to resolve + remote pipelines and tasks. + type: string + type: object + type: object + feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `feature-flags` ConfigMap. + properties: + await-sidecar-readiness: + default: "true" + description: Setting this flag to `false` will stop Tekton from waiting + for a TaskRun's sidecar containers to be running before starting the + first step. This will allow Tasks to be run in environments that don't + support the DownwardAPI volume type, but may lead to unintended behaviour + if sidecars are used. + type: string + coschedule: + default: workspaces + description: 'Setting this flag will determine how PipelineRun Pods + are scheduled with Affinity Assistant. Options: `workspaces`, `pipelineruns`, + `isolate-pipelinerun`, `disabled`.' + type: string + disable-creds-init: + default: "false" + description: Setting this flag to `true` will prevent Tekton scanning + attached service accounts and injecting any credentials it finds into + your Steps. + type: string + enable-api-fields: + default: beta + description: Setting this flag will determine which gated features are + enabled. + type: string + enable-cel-in-whenexpression: + default: "false" + description: Setting this flag to `true` will enable the CEL evaluation + in WhenExpression. + type: string + enable-provenance-in-status: + default: "true" + description: Setting this flag to `true` enables populating the `provenance` + field in TaskRun and PipelineRun status. This field contains metadata + about resources used in the TaskRun/PipelineRun such as the source + from where a remote Task/Pipeline definition was fetched. + type: string + enable-step-actions: + default: "false" + description: 'Setting this flag to `true` will enable the use of StepActions + in Steps. This feature is in preview mode and not implemented yet. + Please check #7259 for updates.' + type: string + enable-tekton-oci-bundles: + default: "false" + description: Setting this flag to `true` enables the use of Tekton OCI + bundle. This is an experimental feature and thus should still be considered + an alpha feature. + type: string + enforce-nonfalsifiability: + default: none + description: Setting this flag will determine how Tekton Pipelines will + handle non-falsifiable provenance. If set to `spire`, then SPIRE will + be used to ensure non-falsifiable provenance. If set to `none`, then + Tekton will not have non-falsifiable provenance. This is an experimental + feature and thus should still be considered an alpha feature. + type: string + keep-pod-on-cancel: + default: "false" + description: Setting this flag to `true` will keep pod on cancellation + allowing examination of the logs on the pods from cancelled taskruns. + type: string + max-result-size: + default: "4096" + description: Setting this flag will determine the upper limit of each + task result. This flag is optional and only associated with the previous + flag, `results-from`. When `results-from` is set to `sidecar-logs`, + this flag can be used to configure the upper limit of a task result. + type: string + require-git-ssh-secret-known-hosts: + default: "true" + description: Setting this flag to `true` will require that any Git SSH + Secret offered to Tekton must have `known_hosts` included. + type: string + results-from: + default: termination-message + description: Setting this flag will determine how Tekton pipelines will + handle extracting results from the task. Acceptable values are `termination-message` + or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus + should still be considered an alpha feature. + type: string + running-in-environment-with-injected-sidecars: + default: "true" + description: This option should be set to `false` when Pipelines is + running in a cluster that does not use injected sidecars such as Istio. + Setting it to false should decrease the time it takes for a TaskRun + to start running. For clusters that use injected sidecars, setting + this option to false can lead to unexpected behavior. + type: string + send-cloudevents-for-runs: + default: "false" + description: Setting this flag to `true` enables CloudEvents for CustomRuns + and Runs, as long as a CloudEvents sink is configured in the `config-defaults` + ConfigMap. + type: string + set-security-context: + default: "false" + description: Setting this flag to `true` will limit privileges for containers + injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces + with `restricted` pod security standards. Not all Kubernetes implementations + support this option. + type: string + trusted-resources-verification-no-match-policy: + default: ignore + description: This flag affects the behavior of taskruns and pipelineruns + in cases where no VerificationPolicies match them. If it is set to + `fail`, TaskRuns and PipelineRuns will fail verification if no matching + policies are found. If it is set to `warn`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and an error + will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns + will run to completion if no matching policies are found, and no error + will be logged. + type: string + type: object + opentelemetry: + additionalProperties: false + description: Settings for the OpenTelemetry support. + properties: + exporter: + additionalProperties: false + description: Settings for the OpenTelemetry exporter + properties: + jaeger: + additionalProperties: false + description: Configuration for the OpenTelemetry exporter based + on the Jaeger protocol. + properties: + password: + default: "" + description: The password/token to authenticate with the distributed + tracing backend. + type: string + username: + default: "" + description: The username to access the distributed tracing + backend. + type: string + type: object + type: object + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + resolvers: + additionalProperties: false + description: Configuration for the Tekton Resolvers, responsible for resolving + requests for Tasks and Pipelines from remote locations. + properties: + bundleresolver-config: + additionalProperties: false + description: Configuration for the bundle resolver stored in the `bundleresolver-config` + ConfigMap. + properties: + default-kind: + default: task + description: The default resource kind to pull out of the bundle. + type: string + default-service-account: + default: default + description: The default name of the service account to use when + constructing registry credentials. + type: string + type: object + cluster-resolver-config: + additionalProperties: false + description: Configuration for the cluster resolver stored in the `cluster-resolver-config` + ConfigMap. + properties: + allowed-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is allowed to access. Defaults to empty, meaning all namespaces + are allowed. + type: string + blocked-namespaces: + default: "" + description: A comma-separated list of namespaces which the resolver + is blocked from accessing. Defaults to empty, meaning all namespaces + are allowed. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-namespace: + default: "" + description: The default namespace to fetch resources from. + type: string + type: object + git-resolver-config: + additionalProperties: false + description: Configuration for the git resolver stored in the `git-resolver-config` + ConfigMap. + properties: + api-token-secret-key: + default: "" + description: The key in the API token secret containing the actual + token. Required when using the authenticated API. + type: string + api-token-secret-name: + default: "" + description: The Kubernetes secret containing the API token for + the SCM provider. Required when using the authenticated API. + type: string + api-token-secret-namespace: + default: default + description: The namespace containing the API token secret. + type: string + default-org: + default: "" + description: The default organization to look for repositories under + when using the authenticated API. + type: string + default-revision: + default: main + description: The git revision to fetch the remote resource from + with either anonymous cloning or the authenticated API. + type: string + default-url: + default: https://github.com/tektoncd/catalog.git + description: The git url to fetch the remote resource from when + using anonymous cloning. + type: string + fetch-timeout: + default: 1m + description: The maximum amount of time a single anonymous cloning + resolution may take. + type: string + scm-type: + default: github + description: The SCM type to use with the authenticated API. + type: string + server-url: + default: "" + description: The SCM server URL to use with the authenticated API. + Not needed when using github.com, gitlab.com, or BitBucket Cloud. + type: string + type: object + hubresolver-config: + additionalProperties: false + description: Configuration for the hub resolver stored in the `hubresolver-config` + ConfigMap. + properties: + default-artifact-hub-pipeline-catalog: + default: tekton-catalog-pipelines + description: The default Artifact Hub Pipeline catalog from where + to pull the resource. + type: string + default-artifact-hub-task-catalog: + default: tekton-catalog-tasks + description: The default Artifact Hub Task catalog from where to + pull the resource. + type: string + default-kind: + default: task + description: The default resource kind to fetch. + type: string + default-tekton-hub-catalog: + default: Tekton + description: The default Tekton Hub catalog from where to pull the + resource. + type: string + default-type: + default: artifact + description: The default hub from where to pull the resource. + type: string + type: object + resolvers-feature-flags: + additionalProperties: false + description: Feature flags configuration stored in the `resolvers-feature-flags` + ConfigMap. + properties: + enable-bundles-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of Tekton OCI bundles. + type: string + enable-cluster-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from other namespaces within the cluster. + type: string + enable-git-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines from Git repositories. + type: string + enable-hub-resolver: + default: "true" + description: Setting this flag to `true` enables remote resolution + of tasks and pipelines via the Tekton Hub. + type: string + type: object + type: object + webhook: + additionalProperties: false + description: Settings for the `tekton-pipelines-webhook` Deployment. + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than 1. + type: integer + type: object + type: object + version: 0.53.3 From e4cb7a4c4f43a7e6defe8163711e4db2967c72e9 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 16 Dec 2023 00:38:30 +0100 Subject: [PATCH 355/601] Update Kyverno metadata and add version 1.11.1 (#324) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.11.1.yml | 170 ++++++++++++++++++ 1 file changed, 170 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.11.1.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.11.1.yml b/repo/packages/kyverno.packages.kadras.io/1.11.1.yml new file mode 100644 index 0000000..e244794 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.11.1.yml @@ -0,0 +1,170 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.11.1 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2023-12-15T23:36:50Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:55c88b2104f0bf296f689b62e447d0eb1b6a26c3d172a8e824cb78f192c88853 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.11.1 From c5e081b08ee85edf63a2b6def8c6a759c62c95e4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 16 Dec 2023 00:44:36 +0100 Subject: [PATCH 356/601] Update Knative Eventing metadata and add version 1.12.1 (#325) Co-authored-by: github-actions --- .../1.12.1.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.12.1.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.12.1.yml b/repo/packages/knative-eventing.packages.kadras.io/1.12.1.yml new file mode 100644 index 0000000..3a877e9 --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.12.1.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.12.1 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases + releasedAt: "2023-12-15T23:43:01Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:77ed3292579b744c37d2ae49ff41c65629d5b6a8ecf8e46089022a5ff2acb3f5 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.12.1 From d2d932a9466a5c409c7cc62c75d9d098d19e19b7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 16 Dec 2023 00:56:23 +0100 Subject: [PATCH 357/601] Update Knative Serving metadata and add version 1.12.2 (#326) Co-authored-by: github-actions --- .../1.12.2.yml | 278 ++++++++++++++++++ 1 file changed, 278 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.12.2.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.12.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.12.2.yml new file mode 100644 index 0000000..2b5c4b9 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.12.2.yml @@ -0,0 +1,278 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.12.2 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2023-12-15T23:54:47Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:1f68d5372e9e611e909ddaf93e1387f04e1178a4c3c57a86634d1abc29443f0b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.12.2 From 16d7759efe002a37727978a0dbaed15dbed748c7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 16 Dec 2023 01:00:09 +0100 Subject: [PATCH 358/601] Update Argo CD metadata and add version 2.9.3 (#327) Co-authored-by: github-actions --- .../argo-cd.packages.kadras.io/2.9.3.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.9.3.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.9.3.yml b/repo/packages/argo-cd.packages.kadras.io/2.9.3.yml new file mode 100644 index 0000000..13c5cbd --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.9.3.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.9.3 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases + releasedAt: "2023-12-15T23:57:22Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-argo-cd@sha256:c616a26d83d522ec73aae3697acfc9e84136be31e884d15b884e9b45fd003acf + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.9.3 From 7227b5a4f0323ac3d2a4f4f4a50affbbf53a68da Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 16 Dec 2023 01:07:42 +0100 Subject: [PATCH 359/601] Update secretgen-controller metadata and add version 0.16.0 (#328) Co-authored-by: github-actions --- .../0.16.0.yml | 35 +++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.16.0.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.16.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.16.0.yml new file mode 100644 index 0000000..d42d69e --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.16.0.yml @@ -0,0 +1,35 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.16.0 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases + releasedAt: "2023-12-16T00:05:18Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:ff1486260339593ccba44e94aa853b14aa624a71703db43c93624c4cc55d44a3 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.16.0 From f9246b7949bf043c71523e756c1e64a1209bf465 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 16 Dec 2023 01:17:53 +0100 Subject: [PATCH 360/601] Update cert-manager metadata and add version 1.13.3 (#329) Co-authored-by: github-actions --- .../1.13.3.yml | 145 ++++++++++++++++++ 1 file changed, 145 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.13.3.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.13.3.yml b/repo/packages/cert-manager.packages.kadras.io/1.13.3.yml new file mode 100644 index 0000000..ee04319 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.13.3.yml @@ -0,0 +1,145 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.13.3 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2023-12-16T00:16:21Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:b4348a3165dc0b671d246cb87c56f373d360cbc1c308e0029643be3c6cf6aabc + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + probes: + additionalProperties: false + description: Settings for the cert-manager controller probes. + properties: + enabled: + default: false + description: 'Whether to enable to optional probes on the cert-manager + controller. It''s recommended not to enable this unless you encounter + issues with the controller Pods not restarting correctly. More + information: https://github.com/cert-manager/cert-manager/pull/5962.' + type: boolean + type: object + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.13.3 From 6c68231e05c7959c3e3eac950444674291f8f47a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 10 Jan 2024 21:53:29 +0100 Subject: [PATCH 361/601] Update Cartographer metadata and add version 0.8.5+kadras.1 (#330) Co-authored-by: github-actions --- .../0.8.5+kadras.1.yml | 151 ++++++++++++++++++ 1 file changed, 151 insertions(+) create mode 100644 repo/packages/cartographer.packages.kadras.io/0.8.5+kadras.1.yml diff --git a/repo/packages/cartographer.packages.kadras.io/0.8.5+kadras.1.yml b/repo/packages/cartographer.packages.kadras.io/0.8.5+kadras.1.yml new file mode 100644 index 0000000..2b86b62 --- /dev/null +++ b/repo/packages/cartographer.packages.kadras.io/0.8.5+kadras.1.yml @@ -0,0 +1,151 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cartographer.packages.kadras.io.0.8.5+kadras.1 +spec: + licenses: + - Apache 2.0 + refName: cartographer.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases + releasedAt: "2024-01-10T20:51:57Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cartographer@sha256:de7ed0c93fb4ca1913b2c692cab09da5d9961b432a52b2c1cf8e4ca0b4f57674 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cartographer: + additionalProperties: false + description: Settings for the Cartographer component. + properties: + concurrency: + additionalProperties: false + description: Concurrency configuration for the Cartographer controller. + properties: + max_deliveries: + default: 2 + description: Maximum concurrent Deliveries processed by the Cartographer + controller. + type: integer + max_runnables: + default: 2 + description: Maximum concurrent Runnables processed by the Cartographer + controller. + type: integer + max_workloads: + default: 2 + description: Maximum concurrent Workloads processed by the Cartographer + controller. + type: integer + type: object + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "1" + description: CPU limits configuration for the Cartographer controller. + type: string + memory: + default: 1Gi + description: Memory limits configuration for the Cartographer + controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU requests configuration for the Cartographer + controller. + type: string + memory: + default: 512Mi + description: Memory requests configuration for the Cartographer + controller. + type: string + type: object + type: object + type: object + conventions: + additionalProperties: false + description: Settings for the Cartographer Conventions component. + properties: + resources: + additionalProperties: false + description: CPU and memory configuration for the Cartographer Conventions + controller. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU limits configuration for the Cartographer Conventions + controller. + type: string + memory: + default: 256Mi + description: Memory limits configuration for the Cartographer + Conventions controller. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 100m + description: CPU requests configuration for the Cartographer + Conventions controller. + type: string + memory: + default: 20Mi + description: Memory requests configuration for the Cartographer + Conventions controller. + type: string + type: object + type: object + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + level: + default: info + description: 'Log verbosity level. Options: `debug`, `info`, `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Cartographer optional components to deploy. + properties: + cartographer_conventions: + default: true + description: Whether to deploy the Cartographer Conventions component. + type: boolean + type: object + type: object + version: 0.8.5+kadras.1 From db277211014cbe42d8b362a5de80387908cac93c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 10 Jan 2024 22:42:39 +0100 Subject: [PATCH 362/601] Update Crossplane metadata and add version 1.14.5 (#331) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.14.5.yml | 347 ++++++++++++++++++ 1 file changed, 347 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.14.5.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.14.5.yml b/repo/packages/crossplane.packages.kadras.io/1.14.5.yml new file mode 100644 index 0000000..99be520 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.14.5.yml @@ -0,0 +1,347 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.14.5 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2024-01-10T21:40:56Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:8f66537ce768a71b04eee616b3b8312cd299f8a545a7488473d62f4926f5a024 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: '{}' + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + type: array + type: object + customAnnotations: + default: '{}' + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: '{}' + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + extraEnvVarsCrossplane: + default: '{}' + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: '{}' + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + type: array + extraVolumeMountsCrossplane: + default: '{}' + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: '{}' + description: Add custom `volumes` to the Crossplane pod. + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: '{}' + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + type: object + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: '{}' + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: '{}' + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: '{}' + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + type: array + type: object + rbacManager: + properties: + affinity: + default: '{}' + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + managementPolicy: + default: Basic + description: Defines the Roles and ClusterRoles the RBAC Manager creates + and manages. - A policy of `Basic` creates and binds Roles only for + the Crossplane ServiceAccount, Provider ServiceAccounts and creates + Crossplane ClusterRoles. - A policy of `All` includes all the `Basic` + settings and also creates Crossplane Roles in all namespaces. - Read + the Crossplane docs for more information on the [RBAC Roles and ClusterRoles](https://docs.crossplane.io/latest/concepts/pods/#crossplane-clusterroles) + type: string + nodeSelector: + default: '{}' + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + serviceAccount: + properties: + customAnnotations: + default: '{}' + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.14.5 From 01779c2cb6936dbb5339ee0d0d691857c69fa665 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 10 Jan 2024 22:55:12 +0100 Subject: [PATCH 363/601] Update Flux metadata and add version 2.2.2 (#332) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.2.2.yml | 99 +++++++++++++++++++ 1 file changed, 99 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.2.2.yml diff --git a/repo/packages/flux.packages.kadras.io/2.2.2.yml b/repo/packages/flux.packages.kadras.io/2.2.2.yml new file mode 100644 index 0000000..7d2e03b --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.2.2.yml @@ -0,0 +1,99 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.2.2 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2024-01-10T21:53:28Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:da8f1d66e8f5dcf655f2e8401151c553c1571d86296612359525c6a718310f44 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.2.2 From 44ff97215afc7e20b7dc5209bab92be469d3da3c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 10 Jan 2024 23:01:31 +0100 Subject: [PATCH 364/601] Update Knative Eventing metadata and add version 1.12.3 (#333) Co-authored-by: github-actions --- .../1.12.3.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.12.3.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.12.3.yml b/repo/packages/knative-eventing.packages.kadras.io/1.12.3.yml new file mode 100644 index 0000000..5c77923 --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.12.3.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.12.3 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases + releasedAt: "2024-01-10T21:59:36Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:b73f3cb717604c65b08d6de05d7cc4d7d9cddb7b6c28d31da1bd0cd52f8828ca + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.12.3 From be7c249e22d3120932ae0cc1263a74e4efa370ae Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 10 Jan 2024 23:12:24 +0100 Subject: [PATCH 365/601] Update Knative Serving metadata and add version 1.12.3 (#334) Co-authored-by: github-actions --- .../1.12.3.yml | 278 ++++++++++++++++++ 1 file changed, 278 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.12.3.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.12.3.yml b/repo/packages/knative-serving.packages.kadras.io/1.12.3.yml new file mode 100644 index 0000000..c3d553d --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.12.3.yml @@ -0,0 +1,278 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.12.3 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2024-01-10T22:10:40Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:0e481f8460615deacc653589c9544226b3265c7a315472569ce672082efb6afd + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.12.3 From 01270e297dc3b6726c635abac6a2e9d3455e21c3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 10 Jan 2024 23:22:30 +0100 Subject: [PATCH 366/601] Update Kyverno metadata and add version 1.11.3 (#335) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.11.3.yml | 170 ++++++++++++++++++ 1 file changed, 170 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.11.3.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.11.3.yml b/repo/packages/kyverno.packages.kadras.io/1.11.3.yml new file mode 100644 index 0000000..6eed803 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.11.3.yml @@ -0,0 +1,170 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.11.3 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2024-01-10T22:20:31Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:35bd1342b4c2ae27bce3c4af3419270e071fca73a00d9fc63816658aa85c9671 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.11.3 From 2df843b175af32cf0244320f7a9d6b72243238c2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 21:05:10 +0100 Subject: [PATCH 367/601] Update Argo CD metadata and add version 2.10.1 (#336) Co-authored-by: github-actions --- .../argo-cd.packages.kadras.io/2.10.1.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/argo-cd.packages.kadras.io/2.10.1.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.10.1.yml b/repo/packages/argo-cd.packages.kadras.io/2.10.1.yml new file mode 100644 index 0000000..3b3fbf1 --- /dev/null +++ b/repo/packages/argo-cd.packages.kadras.io/2.10.1.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: argo-cd.packages.kadras.io.2.10.1 +spec: + licenses: + - Apache 2.0 + refName: argo-cd.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases + releasedAt: "2024-02-24T20:03:04Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-argo-cd@sha256:4f84cffc4f3b055434f71e837683ee0c5e8e5a2b8d1d4f45a72d83851e89b6f2 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: argocd + description: The namespace where to install Argo CD + type: string + service: + additionalProperties: false + description: Service configuration for the Argo CD Server + properties: + type: + default: ClusterIP + description: The Service type for the Argo CD Server + type: string + type: object + type: object + version: 2.10.1 From 2dc5ad43df47c6ac888849612d89d1745a8dba99 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 21:27:17 +0100 Subject: [PATCH 368/601] Update Kyverno metadata and add version 1.11.4 (#337) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.11.4.yml | 170 ++++++++++++++++++ 1 file changed, 170 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.11.4.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.11.4.yml b/repo/packages/kyverno.packages.kadras.io/1.11.4.yml new file mode 100644 index 0000000..645378f --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.11.4.yml @@ -0,0 +1,170 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.11.4 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2024-02-24T20:25:21Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:7eb2eac59ff9b22e6fb12aee1ee0be7e793279ebd8150ef290d3d5876e2428ad + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.11.4 From d45c85abed1668d24cb285c3ebfb8a3010bd3ca9 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 22:09:50 +0100 Subject: [PATCH 369/601] Update cert-manager metadata and add version 1.14.3 (#338) Co-authored-by: github-actions --- .../1.14.3.yml | 133 ++++++++++++++++++ 1 file changed, 133 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.14.3.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.14.3.yml b/repo/packages/cert-manager.packages.kadras.io/1.14.3.yml new file mode 100644 index 0000000..ae009b6 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.14.3.yml @@ -0,0 +1,133 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.14.3 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2024-02-24T21:07:18Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:025a3d06eb07dc06d8f6ea4353bf143126432d07f574f50fba22387de016a8c7 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + lease_duration: + default: 60s + description: The duration that non-leader candidates will wait after + observing a leadership renewal until attempting to acquire leadership + of a led but unrenewed leader slot. This is effectively the maximum + duration that a leader can be stopped before it is replaced by another + candidate. + type: string + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility/#gke.' + type: string + renew_deadline: + default: 40s + description: The interval between attempts by the acting leader to renew + a leadership slot before it stops leading. + type: string + retry_period: + default: 15s + description: The duration the clients should wait between attempting + acquisition and renewal of a leadership. + type: string + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + it should be greater than 1. + type: integer + secure_port: + default: 10250 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' + type: integer + type: object + type: object + version: 1.14.3 From 776c28c8af8aa6ff50a9134760a38e8a896f22fd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 22:23:38 +0100 Subject: [PATCH 370/601] Update cert-manager-issuers metadata and add version 0.2.3 (#339) Co-authored-by: github-actions --- .../0.2.3.yml | 59 +++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 60 insertions(+), 1 deletion(-) create mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/0.2.3.yml diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.3.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.3.yml new file mode 100644 index 0000000..c7f3c6a --- /dev/null +++ b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.3.yml @@ -0,0 +1,59 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager-issuers.packages.kadras.io.0.2.3 +spec: + licenses: + - Apache 2.0 + refName: cert-manager-issuers.packages.kadras.io + releaseNotes: https://github.com/kadras-io/cert-manager-issuers/releases + releasedAt: "2024-02-24T21:21:42Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/cert-manager-issuers@sha256:3f1181c087d2d68984d6bf73122b3a77a6a8185bbedc4bacd609e2a84af3b50b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + staging: + default: true + description: Whether to use Let's Encrypt staging, recommended for non-production + environments. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace where cert-manager is deployed. + type: string + type: object + version: 0.2.3 diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml index ca9a43b..fe8464d 100644 --- a/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml +++ b/repo/packages/cert-manager-issuers.packages.kadras.io/metadata.yml @@ -9,7 +9,7 @@ spec: - security - tls displayName: cert-manager-issuers - iconSVGBase64: PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIGlkPSJzdmczODgxIiB3aWR0aD0iNzM0Ljk4IiBoZWlnaHQ9IjcwOS4xODciPjxkZWZzIGlkPSJkZWZzMzgzNCI+PHN0eWxlIGlkPSJzdHlsZTM4MTIiPi5jbHMtN3tmaWxsOiNmZmZ9PC9zdHlsZT48ZmlsdGVyIGlkPSJsdW1pbm9zaXR5LW5vY2xpcCIgeD0iNTk4LjcxIiB5PSIxODMuNDUiIHdpZHRoPSI1OTMuOTgiIGhlaWdodD0iNTcwLjIyIiBmaWx0ZXJVbml0cz0idXNlclNwYWNlT25Vc2UiIGNvbG9yLWludGVycG9sYXRpb24tZmlsdGVycz0ic1JHQiI+PGZlRmxvb2QgZmxvb2QtY29sb3I9IiNmZmYiIHJlc3VsdD0iYmciIGlkPSJmZUZsb29kMzgxNCIvPjxmZUJsZW5kIGluPSJTb3VyY2VHcmFwaGljIiBpbjI9ImJnIiBpZD0iZmVCbGVuZDM4MTYiLz48L2ZpbHRlcj48bWFzayBpZD0ibWFzayIgeD0iNTk4LjcxIiB5PSIxODMuNDUiIHdpZHRoPSI1OTMuOTgiIGhlaWdodD0iNTcwLjIyIiBtYXNrVW5pdHM9InVzZXJTcGFjZU9uVXNlIj48ZyBpZD0iZzM4MjMiIGZpbHRlcj0idXJsKCNsdW1pbm9zaXR5LW5vY2xpcCkiPjxwYXRoIGQ9Ik04OTUuNyAxODMuNDVjLTE1Ny40NiAwLTI4NS4xMSAxMjcuNjUtMjg1LjExIDI4NS4xMVM3MzguMjQgNzUzLjY3IDg5NS43IDc1My42NyAxMTgwLjgxIDYyNiAxMTgwLjgxIDQ2OC41NiAxMDUzLjE2IDE4My40NSA4OTUuNyAxODMuNDV6bS0uMDcgNTQ1LjQyYy0xNDMuODEgMC0yNjAuMjEtMTE2LjQ2LTI2MC4yNC0yNjAuMjdDNjM1LjM2IDMyNC43OSA3NTIuMSAyMDggODk2IDIwOC4yNmMxNDMuOS4yNiAyNjAuMTQgMTE2Ljc0IDI2MCAyNjAuNS0uMTQgMTQzLjc2LTExNi41OCAyNjAuMTUtMjYwLjM3IDI2MC4xMXoiIGlkPSJwYXRoMzgxOSIvPjxwYXRoIGQ9Ik04NzUuMzYgNTkwLjkyYy04LjkzLTEuNDEtMTMuNjctMy4xMi0yMy43MS03LjYxQzgyNCA1NzAuOTQgODAyLjg3IDU1MS4xNiA3ODkgNTI0LjVsLTEuMjIuMjdhOS4yNiA5LjI2IDAgMCAxLTIgLjIyIDkuMzcgOS4zNyAwIDAgMS03LjUzLTMuODMgOS4yNiA5LjI2IDAgMCAxLTEuMzctOC4zNWwyLjI3LTcuMTkgNy44NS0yNS4xM2E5IDkgMCAwIDEgMTUuMjctMy4zOWwyMy4yNiAyNS4zNWE5LjA3IDkuMDcgMCAwIDEtMS40NyAxMy41NSA2MS4yIDYxLjIgMCAwIDAgMTQuNTIgMTQuNTYgODguNzEgODguNzEgMCAwIDAgMTYuMjYgNS42NSAxODEuMzIgMTgxLjMyIDAgMCAwIDI0LjczIDQuNFY0NDAuMkg4NTguMDVhMTguNDkgMTguNDkgMCAwIDEtMTEgMy42NCAxOC4yMyAxOC4yMyAwIDAgMS0xMy41Ny02LjA4IDE4LjQ4IDE4LjQ4IDAgMCAxLS4xMS0yNC41QTE4LjE5IDE4LjE5IDAgMCAxIDg0NyA0MDdhMTguNTMgMTguNTMgMCAwIDEgMTEgMy42aDIxLjU4di0zLjMzYy0xMy4zNS01Ljc3LTIxLjc4LTE2LjM0LTI0LjQ0LTMwLjY4Qzg1MS4zIDM1NiA4NjQuNCAzMzUuNSA4ODUgMzI5LjkyYTQxLjIzIDQxLjIzIDAgMCAxIDEwLjc0LTEuNDQgNDEuOCA0MS44IDAgMCAxIDI4LjcyIDExLjY2IDM5Ljk0IDM5Ljk0IDAgMCAxIDEyLjQgMjljMCAxNi4zNS03LjY1IDI5LTIyLjEyIDM2Ljc0djQuNjhoMTguNjNhMTguODggMTguODggMCAwIDEgMTEtMy42IDE4LjA5IDE4LjA5IDAgMCAxIDEzLjU2IDYuMTMgMTguNDkgMTguNDkgMCAwIDEtLjE4IDI0Ljc5IDE4IDE4IDAgMCAxLTEzLjM2IDUuODggMTguODEgMTguODEgMCAwIDEtMTEtMy41NGgtLjZjLTUuMDUuMy0xMC4yLjM0LTE1LjE5LjM5aC0yLjk0djEwMC45OGExNDcgMTQ3IDAgMCAwIDE4LjMtMi4zNSA4MS4xMyA4MS4xMyAwIDAgMCAyMC02LjM3IDU5LjY1IDU5LjY1IDAgMCAwIDE0Ljg0LTEzLjMxIDkgOSAwIDAgMS0uODItMTMuNzlsMjQuNzEtMjMuNjVhOS4xIDkuMSAwIDAgMSA2LjM0LTIuNTYgOS4xOSA5LjE5IDAgMCAxIDkgN2MyLjU2IDEwLjQ5IDUuMSAyMC44NyA3LjY3IDMxLjQxYTEwLjEyIDEwLjEyIDAgMCAxLTkuODEgMTIuNTMgMTAuMiAxMC4yIDAgMCAxLTIuNTgtLjMzYy0xMi4zNiAyMi41MS0zMC41NSAzOS43My01Mi43NSA0OS44OGwtNC4wOSAxLjk1Yy0xMS4zNSA1LjI0LTE3Ljg5IDguMjUtMjkuODkgOS41N2wtMTkuOSAxOS41MnptMjAtMjMzLjI5Yy02LjI2IDAtMTEuMzkgNS4xNy0xMS42OSAxMS43NmExMS41NiAxMS41NiAwIDAgMCAzIDguNDEgMTEuNzcgMTEuNzcgMCAwIDAgOC4yNiAzLjgxaDEuMDhjNi4yMyAwIDExLjIxLTUgMTEuNTYtMTEuNi4zNS02LjYtNC41NS0xMS44Ni0xMS40MS0xMi4zOS0uMTYuMDItLjQ4LjAxLS43Ni4wMXoiIGlkPSJwYXRoMzgyMSIvPjwvZz48L21hc2s+PGZpbHRlciBpZD0ibHVtaW5vc2l0eS1ub2NsaXAtMiIgeD0iNTgzLjU0IiB5PSItODU5MC45OSIgd2lkdGg9IjYyNC4zMiIgaGVpZ2h0PSIzMjc2NiIgZmlsdGVyVW5pdHM9InVzZXJTcGFjZU9uVXNlIiBjb2xvci1pbnRlcnBvbGF0aW9uLWZpbHRlcnM9InNSR0IiPjxmZUZsb29kIGZsb29kLWNvbG9yPSIjZmZmIiByZXN1bHQ9ImJnIiBpZD0iZmVGbG9vZDM4MjYiLz48ZmVCbGVuZCBpbj0iU291cmNlR3JhcGhpYyIgaW4yPSJiZyIgaWQ9ImZlQmxlbmQzODI4Ii8+PC9maWx0ZXI+PC9kZWZzPjxnIGlkPSJCYWNrZ3JvdW5kX3dhdnlfb3V0bGluZSIgZGF0YS1uYW1lPSJCYWNrZ3JvdW5kIHdhdnkgb3V0bGluZSIgdHJhbnNmb3JtPSJ0cmFuc2xhdGUoLTUyOC4yMyAtMTEzLjk3KSI+PHBhdGggZD0iTTEyNjMuMjEgNDY4LjU2YzAgMzguNjgtMjMuNjkgNzMuMTQtMzUgMTA4LTExLjc0IDM2LjE3LTEzLjI0IDc3Ljg5LTM1LjE1IDEwOC0yMi4xMyAzMC40MS02MS40OSA0NC42My05MS45IDY2Ljc2LTMwLjExIDIxLjkxLTU1LjY4IDU1LjA4LTkxLjg0IDY2LjgzLTM0LjkgMTEuMzMtNzQuOTMtLjExLTExMy42LS4xMS0zOC42NyAwLTc4LjcgMTEuNDQtMTEzLjU5LjExLTM2LjE3LTExLjc1LTYxLjc0LTQ0LjkyLTkxLjg1LTY2LjgzLTMwLjQxLTIyLjEzLTY5Ljc3LTM2LjM1LTkxLjktNjYuNzYtMjEuOTEtMzAuMS0yMy40MS03MS44Mi0zNS4xNS0xMDgtMTEuMzMtMzQuOS0zNS02OS4zNi0zNS0xMDhzMjMuNjktNzMuMTQgMzUtMTA4YzExLjc0LTM2LjE3IDEzLjI0LTc3Ljg5IDM1LjE1LTEwOCAyMi4xMy0zMC40IDYxLjQ5LTQ0LjYzIDkxLjktNjYuNzUgMzAuMTEtMjEuOTEgNTUuNjgtNTUuMDkgOTEuODUtNjYuODMgMzQuODktMTEuMzMgNzQuOTIuMSAxMTMuNTkuMXM3OC43LTExLjQzIDExMy41OS0uMWMzNi4xNyAxMS43NCA2MS43NCA0NC45MiA5MS44NSA2Ni44MyAzMC40MSAyMi4xMiA2OS43NyAzNi4zNSA5MS45IDY2Ljc1IDIxLjkxIDMwLjExIDIzLjQxIDcxLjgzIDM1LjE1IDEwOCAxMS4zMSAzNC44NiAzNSA2OS4zMyAzNSAxMDh6IiBpZD0icGF0aDM4MzgiIGZpbGw9IiMzMjZjZTUiLz48L2c+PGcgaWQ9IldhdmVzIiB0cmFuc2Zvcm09InRyYW5zbGF0ZSgtNTI4LjIzIC0xMTMuOTcpIj48ZyBtYXNrPSJ1cmwoI21hc2spIiBpZD0iZzM4NDciIGZpbGw9Im5vbmUiIHN0cm9rZT0iI2ZmZiIgc3Ryb2tlLW1pdGVybGltaXQ9IjEwIj48cGF0aCBkPSJNNTk4LjcxIDQyNy42OGM0Mi40MyAwIDQyLjQzIDIwIDg0Ljg1IDIwIDQyLjQyIDAgNDIuNDMtMjAgODQuODYtMjBzNDIuNDIgMjAgODQuODUgMjBjNDIuNDMgMCA0Mi40Mi0yMCA4NC44NS0yMCA0Mi40MyAwIDQyLjQzIDIwIDg0Ljg1IDIwIDQyLjQyIDAgNDIuNDMtMjAgODQuODYtMjBzNDIuNDMgMjAgODQuODYgMjAiIGlkPSJwYXRoMzg0MSIgc3Ryb2tlLXdpZHRoPSIzIi8+PHBhdGggZD0iTTU5OC43MSA0NjcuNjhjNDIuNDMgMCA0Mi40MyAyMCA4NC44NSAyMCA0Mi40MiAwIDQyLjQzLTIwIDg0Ljg2LTIwczQyLjQyIDIwIDg0Ljg1IDIwYzQyLjQzIDAgNDIuNDItMjAgODQuODUtMjAgNDIuNDMgMCA0Mi40MyAyMCA4NC44NSAyMCA0Mi40MiAwIDQyLjQzLTIwIDg0Ljg2LTIwczQyLjQzIDIwIDg0Ljg2IDIwIiBpZD0icGF0aDM4NDMiIHN0cm9rZS13aWR0aD0iNSIvPjxwYXRoIGQ9Ik01OTguNzEgNTE1LjY4YzQyLjQzIDAgNDIuNDMgMjAgODQuODUgMjAgNDIuNDIgMCA0Mi40My0yMCA4NC44Ni0yMHM0Mi40MiAyMCA4NC44NSAyMGM0Mi40MyAwIDQyLjQyLTIwIDg0Ljg1LTIwIDQyLjQzIDAgNDIuNDMgMjAgODQuODUgMjAgNDIuNDIgMCA0Mi40My0yMCA4NC44Ni0yMHM0Mi40MyAyMCA4NC44NiAyMCIgaWQ9InBhdGgzODQ1IiBzdHJva2Utd2lkdGg9IjciLz48L2c+PC9nPjxnIGlkPSJUZXh0IiB0cmFuc2Zvcm09InRyYW5zbGF0ZSgtNTI4LjIzIC0xMTMuOTcpIj48ZyBtYXNrPSJ1cmwoI21hc2stMikiIGlkPSJnMzg3OCI+PGcgaWQ9IlRleHRfYW5kX2RldGFpbCIgZGF0YS1uYW1lPSJUZXh0IGFuZCBkZXRhaWwiPjxwYXRoIGlkPSJDaXJjbGUiIGNsYXNzPSJjbHMtNyIgZD0iTTg5NS43IDE1Ni40Yy0xNzIuNCAwLTMxMi4xNiAxMzkuNzYtMzEyLjE2IDMxMi4xNiAwIDE3Mi40IDEzOS43NiAzMTIuMTYgMzEyLjE2IDMxMi4xNiAxNzIuNCAwIDMxMi4xNi0xMzkuNzIgMzEyLjE2LTMxMi4xNiAwLTE3Mi40NC0xMzkuNzYtMzEyLjE2LTMxMi4xNi0zMTIuMTZ6bS0uMDggNTk3LjE2Yy0xNTcuNDQgMC0yODQuODktMTI3LjUxLTI4NC45Mi0yODQuOTUgMC0xNTcuNjEgMTI3Ljc4LTI4NS4zIDI4NS4zMy0yODUgMTU3LjU1LjMgMjg0LjgxIDEyNy44IDI4NC42NyAyODUuMjItLjE0IDE1Ny40Mi0xMjcuNjQgMjg0Ljc4LTI4NS4wOCAyODQuNzN6IiBmaWxsPSIjZmZmIi8+PGcgaWQ9IkxFVFRFUlMiPjxwYXRoIGNsYXNzPSJjbHMtNyIgZD0iTTc1MS43IDYxMGMtMS0zLjQ1LTUuNzUtNi44OC05LjQ0LTYuNDItNS4yNC42Ny0xMC40NiAxLjU0LTE2Ljc2IDIuNDggMi4zMi02LjE1IDQuMjgtMTEuNCA2LjI4LTE2LjY1IDEuNzMtNC41Ni0yLTYuNzctNC4zNC05LjIxLTIuMzQtMi40NC00LjE3LjY0LTUuNzYgMS45LTguNDcgNi43MS0xNi42OCAxMy43NS0yNS4yMyAyMC4zNS00LjA2IDMuMTMtMSA0Ljk1LjY0IDcuMiAxLjY0IDIuMjUgMy4zMSA0Ljc4IDYuNjYgMS44MyAzLjg2LTMuMzkgNy45NC02LjU0IDEyLTkuODMuMTUuMzguMjkuNTYuMjUuNjgtLjggMi4zMi0xLjY3IDQuNjItMi40NSA2Ljk1LTEuNjMgNC45MiAxLjUyIDguNTEgNi42OSA3LjcgMi4xNS0uMzQgNC4zNC0xIDYuOS4xLTQuMTYgMy40MS03Ljc3IDYuNjEtMTEuNjMgOS40Ni0zLjE3IDIuMzQtMS42NSA0LjI1LjI2IDZzMi43MSA2LjMxIDYuOCAzcTEzLjc5LTExLjEyIDI3LjQ5LTIyLjMxYy45NC0uNzcgMi4xNS0xLjQ5IDEuNjQtMy4yM3oiIGlkPSJwYXRoMzg1MSIgZmlsbD0iI2ZmZiIvPjxwYXRoIGNsYXNzPSJjbHMtNyIgZD0iTTkxOC44NSAyNzMuNjFjNi41NCAyLjcgOS4xMyAxLjQ2IDEwLjQ4LTUuMy4zLTEuNDcuNTctMi45My45My00LjM4LjI5LTEuMTggMC0zLjE3IDEuODEtMi45MnM0LjEzLS4xMiA0Ljc5IDIuNThjLjY2IDIuNyAxLjQ4IDUuMDkgMi4yMiA3LjYzIDIuMDggNyAzLjUxIDguMDkgMTAuNjQgOC40NiAyLjY4LjE0IDMuMjgtLjc3IDIuNTctMy4xNi0xLjEyLTMuODEtMi4wOS03LjY3LTMuMjgtMTEuNDYtLjU1LTEuNzMtMS0yLjc1IDEuMzctMy43NCA1Ljc4LTIuNDQgNy4zNC03LjY4IDcuNzUtMTMuMDcgMC02LjY2LTQtMTEuNTMtMTEuNDgtMTMuNTMtNi4wOC0xLjYyLTEyLjMyLTIuNjMtMTguNDgtNC0yLjMtLjUtMy40NS40My0zLjg4IDIuNjMtMi4zNiAxMi00Ljc2IDI0LjA4LTcuMDkgMzYuMTQtLjMxIDEuNjMtLjU0IDMuMjIgMS42NSA0LjEyem0xNy41NC0zMWM1LjA1LS41MSA5LjkyIDIuNDEgOS44NyA1LjQtLjA1IDIuOTktMS44IDQuNDQtNS4xOSA0LjUzLTIuMDktMS43Ni02Ljk0IDEuMS03LjY1LTMuMzctLjMtMS44OS0xLTYuMTEgMi45Ny02LjUyeiIgaWQ9InBhdGgzODUzIiBmaWxsPSIjZmZmIi8+PHBhdGggY2xhc3M9ImNscy03IiBkPSJNODUzIDY2NC44MmMtMi44NC0uOTMtNS43NC0yLjEtNi43NCAyLjYyLTEuMDkgNS4xOS0yLjc1IDEwLjI1LTQuNDcgMTYuNS0yLjYzLTcuODItNS4wNy0xNC41Mi03LjEtMjEuMzQtMS4zMy00LjQ2LTUuMTUtNC40Mi04LjM3LTUtMy41NS0uNTgtMi45MSAzLTMuNDcgNS0zIDEwLjM2LTUuNTggMjAuODYtOC44IDMxLjE2LTEuNTggNS4wOCAyLjE3IDQuNjIgNC42NyA1LjQ5IDIuNjYuOTEgNS40NyAyIDYuNDgtMi40IDEuMjEtNS4yNyAyLjgyLTEwLjQ1IDQuNDUtMTYuMzQuNjcgMS41NCAxLjEzIDIuNDIgMS40NCAzLjM0IDIgNiA0LjA5IDExLjkzIDYgMTcuOTQgMS4zNyA0LjQ0IDUuMzcgNC4xNyA4LjU2IDQuNjEgMy4xOS40NCAyLjUzLTMgMy4wNi00LjgxIDMtMTAuMzggNS41My0yMC44OSA4LjgtMzEuMTcgMS40OS00Ljk4LTEuOTYtNC43Ni00LjUxLTUuNnoiIGlkPSJwYXRoMzg1NSIgZmlsbD0iI2ZmZiIvPjxwYXRoIGNsYXNzPSJjbHMtNyIgZD0iTTEwOTMuODYgNjAxLjU3Yy0zLjI4LS40Ny02LjUxLTEuNDQtOS44LTEuNzUtMi43MS0uMjUtMy4zOS0xLjE5LTMuNDgtNC0uMjItNy02LjU1LTEyLjc0LTEzLjQ0LTEyLjgyLTQuNzMtLjEzLTguMzUgMi4yNC0xMS4yNSA1LjU2LTMuNjEgNC4xMy02LjcxIDguNy0xMC4zMyAxMi44Mi0yLjQ2IDIuODEtMi4xNSA0LjU1Ljc4IDYuNzYgOC43NiA2LjYyIDE3LjQ1IDEzLjM1IDI1Ljk0IDIwLjMgMyAyLjQgNC41MSAyLjE1IDYuNzItLjg2IDQtNS40NSA0LjE2LTUuMzItMS4yMy05LjUtMS4xOC0uOTItMi40Mi0xLjc4LTMuNS0yLjgxLS44My0uNzktMi44OS0xLjExLTEuNzMtMi45MS45NC0xLjQ1IDEuNzUtMy4zNSA0LjE2LTIuODYgMi40MS40OSA1IC41NiA3LjMzIDEuNDEgNS4zNyAyIDguNzEtLjA5IDExLjYzLTQuNTQgMS45My0yLjg5IDIuMDMtNC4yNi0xLjgtNC44em0tMzAgNS40M2MtLjc1LjA2LTYuMTMtNC41Ni02LjA4LTUuMjMuMTMtMS43NiA2LjI4LTcuNjUgOC03LjY1IDIuMzEuNDYgNCAxLjYxIDQuMTkgNC4xNS4xMSAxLjU1LTQuOTcgOC42My02LjExIDguNzN6IiBpZD0icGF0aDM4NTciIGZpbGw9IiNmZmYiLz48cGF0aCBjbGFzcz0iY2xzLTciIGQ9Ik04NDUuMjYgMjc0LjZjLjM1IDIgMSAzLjYgMy40OSAzLjIxIDktMS41NiAxOC4wNi0yLjkxIDI3LTQuNzcgNC43Mi0xIDEuNDctNC41NiAxLjUyLTcgLjA1LTIuNjEtMS4zNy0zLjQtMy45My0yLjktNC44OS45NS05Ljg1IDEuNi0xNC43NCAyLjU3LTIuNTQuNS0zLjIxLS42Ni0zLjQ1LTIuODMtLjIxLTEuOTMtLjQ5LTMuNDMgMi4zLTMuNzQgNC4xMy0uNDQgOC4xNy0xLjYxIDEyLjMtMi4wNSA0LjQ3LS40OCAzLjY1LTMuMjkgMy4xNy02LjEzcy0xLjA4LTUuMTctNS00LjA5Yy0zLjY3IDEtNy41NiAxLjE2LTExLjI2IDIuMDktMi42LjY2LTMuODcuNS00LjQxLTIuNTQtLjU5LTMuMjggMS4yMy0zLjU1IDMuNTUtMy45IDQuMTEtLjYxIDguMi0xLjQgMTIuMzEtMiAyLjYzLS40IDQuNjUtMS4xMyAzLjU5LTQuNDQtLjg1LTIuNjYuMzYtNi44Ni01LjEzLTUuNzItNy44MSAxLjYzLTE1LjY4IDMtMjMuNTggNC0zLjc4LjQ4LTQuMyAyLjE3LTMuNzQgNS4zMSAyLjAzIDExLjY3IDQuMDIgMjMuMzMgNi4wMSAzNC45M3oiIGlkPSJwYXRoMzg1OSIgZmlsbD0iI2ZmZiIvPjxwYXRoIGNsYXNzPSJjbHMtNyIgZD0iTTk3OC42OCA2NjkuNTRhODguNSA4OC41IDAgMCAxLTguOTIgMy4wN2MtMi41MS44LTQuMzIgMS44Mi0yLjgyIDUgMS4xOSAyLjQ2Ljg3IDYuNTUgNS42MiA0LjY1Ljg3LS4zNSAxLjgtMS4xNyAyLjY1LS4xMS44NSAxLjA2LjI5IDIuMzItLjEzIDMuMzItMS4yMiAyLjg3LTMuNzggNC4xLTYuNjUgNC42LTIuODcuNS01LjI0LS44Ny02LjY3LTMuMzdhMzIuNzkgMzIuNzkgMCAwIDEtNC0xMS4yYy0uOTMtNS44MyA0LjYyLTEwLjkzIDkuOTEtOC4zOCA0LjM2IDIuMSA3LjY0LjQyIDExLjM0LS42NiAyLjUzLS43NCAyLjU0LTIuMjUgMS4wOC00LjA5LTMuMzgtNC4yNi04LTUuNjEtMTMuMjQtNS44M2EyMi42OCAyMi42OCAwIDAgMC0xNSA1LjZjLTUgNC40OC03IDEwLjE2LTUgMTYuNjUgMi41MyA4LjQ5IDQgMTggMTQuNTYgMjAuOCA4LjEgMi4xMyAxNS4yNC0uMzggMjEtNi4xMiA2LjIzLTYuMjQgNC43Mi0xMy41MSAyLTIwLjkyLTEuMTktMy4xNi0yLjM1LTQuNS01LjczLTMuMDF6IiBpZD0icGF0aDM4NjEiIGZpbGw9IiNmZmYiLz48cGF0aCBjbGFzcz0iY2xzLTciIGQ9Ik0xMDQwLjcgNjUwLjY1Yy0zLjY2IDIuODYtNy42NCA1LjMxLTExLjMxIDguMTctMiAxLjU2LTMgMS4wNy00LjI5LS44MS0xLjI5LTEuODgtMS42OS0zIC40Ni00LjQxIDMuMzMtMi4xOSA2LjUyLTQuNTkgOS43Ni02LjkxIDEuMDYtLjc2IDIuMzQtMS4zOCAyLjIyLTMuMjJhMTMuNTQgMTMuNTQgMCAwIDAtNC4xOS01LjhjLTEuODYtMS4zMS0zLjMuNjktNC43NSAxLjY5LTMgMi4wOC02LjE0IDQtOC45NCA2LjM0LTIuMzMgMS45NC0zIC4xNy00LjE1LTEuMjEtMS4zOC0xLjYxLTEuNC0yLjYxLjUzLTMuODcgMy43NS0yLjQ1IDcuMjItNS4zMyAxMS03LjcxIDMuMS0xLjk0IDIuNDQtMy44Mi42Mi02LjA2LTEuNjEtMi0yLjU5LTUtNi4xNS0yLjMtNi41MiA0Ljg2LTEzLjIyIDkuNDktMTkuODkgMTQuMTctMi4xIDEuNDctMi4xOSAyLjkzLS43MiA1IDYuOSA5LjU3IDEzLjcxIDE5LjIgMjAuNTQgMjguODMgMS4yNCAxLjc0IDIuNDUgMi40MyA0LjUuOTRxMTAuMjYtNy41IDIwLjY5LTE0Ljc1YzMuMjctMi4yNyAxLjI5LTQuMTYtLjExLTYuMjEtMS40LTIuMDUtMi43My00LjMxLTUuODItMS44OHoiIGlkPSJwYXRoMzg2MyIgZmlsbD0iI2ZmZiIvPjxwYXRoIGNsYXNzPSJjbHMtNyIgZD0iTTc4Mi40IDYzNC40MmMtMS40LTEtMi44OC0uNTMtNC4xNC40NXEtMTUuMTggMTEuOC0zMC4zMyAyMy42NGMtMS4zMyAxLTIuMzIgMi40Ny0uNCAzLjU0IDMuNTQgMiA2Ljc4IDcgMTEuNDkgMS43MmExLjU5IDEuNTkgMCAwIDEgMi4xOC0uNDdjMy43NiAyLjQ2IDcuNTUgNC44NyAxMS4zIDcuMzMgMSAuNjguNjcgMS43NC41NSAyLjcyLS41MyA0LjI5IDIuNDQgOS4xMiA2LjcxIDkuMzUgNC40Ni4yMyAyLjM2LTQuNDggMy43Ni02LjY5YTMgMyAwIDAgMCAuMzQtLjk0YzIuNi0xMC42NSA1LjItMjEuMzEgOC0zMi44NS0xLjEyLTQuMzItNi4wNy01LjIyLTkuNDYtNy44em0tNi40IDI2LjcyYy03LjgxLTQuNTktNy44MS00LjU5LTEuNDctOS42NSAxLjI4LTEgMi42LTIgNC40OC0zLjQ0YTU2LjMzIDU2LjMzIDAgMCAxLTMuMDEgMTMuMDl6IiBpZD0icGF0aDM4NjUiIGZpbGw9IiNmZmYiLz48cGF0aCBjbGFzcz0iY2xzLTciIGQ9Ik03NjkuNDkgMjk3LjM1YzUgNi45NCAxMi42OCA5IDIwLjgyIDYgOC40Ni0zLjA2IDE1LTExLjMyIDE0LjY2LTE4Ljg3YTIwLjU1IDIwLjU1IDAgMCAwLTEuMjQtNS4yOSAyLjExIDIuMTEgMCAwIDAtMi4xMy0xLjczYy0yLjkgMC04LjIzIDUuMTktOC4yNyA4LjMtLjA1IDQuMTktMi43MyA2LjI5LTYuMDggNy42My0zLjE3IDEuMjYtNiAwLTcuODctMi42M2E3My4xNCA3My4xNCAwIDAgMS01Ljk0LTkuNzVjLTEuNC0yLjg3LTEuMTQtNiAxLjQ3LTguMjMgMi42MS0yLjIzIDUuODQtMy43NCA5LjU1LTEuNzEgMi42IDEuNDMgOS42MS0xIDExLjEtMy41MyAxLTEuNjItLjI4LTIuNTMtMS4wOS0zLjQzYTEzLjg4IDEzLjg4IDAgMCAwLTEwLjgtNC42OGMtMTMuMzguMDUtMjMuODEgMTAuMzUtMjIuNCAyMS42MS44IDYuMzQgNC43MyAxMS4zNCA4LjIyIDE2LjMxeiIgaWQ9InBhdGgzODY3IiBmaWxsPSIjZmZmIi8+PHBhdGggY2xhc3M9ImNscy03IiBkPSJNOTExLjU2IDY3Ny4xM2MtMy4zOS04LjgyLTUuNzItMTAtMTQuNzktOGEzLjg4IDMuODggMCAwIDAtMy4yNyAyLjYzcS01LjcgMTguMjQtMTEuMzYgMzYuNTRjLS4zMyAxLjA3LS44MSAyLjMzLjQ3IDMuMTcgMi43MyAxLjggOS45LS43MiAxMS4xMy0zLjg5LjUxLTEuMzIuNTItMi45MyAyLjcxLTIuODkgNCAuMDggOCAwIDEyLS4xOSAxLjQyLS4wNiAyLjMuNDggMi41NSAxLjc2Ljc3IDQgMy4xNyA1LjE4IDYuNDggNC4zMiA2Ljc3LS4xNyA2LjgtLjE5IDQuNTgtNnEtNS4yNC0xMy43Ni0xMC41LTI3LjQ1ek05MDEgNjk1LjJjLTMgMC0zLjQ0LS44NC0yLjU0LTMuMzkgMS4wOS0zLjEyIDItNi4zIDMuMjctMTAuMzYgMS4zMyAzLjQgMi4zMSA1Ljg1IDMuMjQgOC4zMSAyLjA4IDUuNTcgMi4wMyA1LjM4LTMuOTcgNS40NHoiIGlkPSJwYXRoMzg2OSIgZmlsbD0iI2ZmZiIvPjxwYXRoIGNsYXNzPSJjbHMtNyIgZD0iTTk5OS40NCAzMDIuNjhjMi4zNCAxLjI4IDQuNTcgNC42OSA3LjI3LjE4IDMuNTctNiA3LjQ0LTExLjc5IDExLjE2LTE3LjY4IDQuNDgtNy4wOCA0LjYtNy4yOSAxMS44LTIuNzYgMy44MyAyLjQyIDQuODQtLjE5IDYuNDUtMi41MiAxLjcyLTIuNSAyLjQtNC40MS0xLTYuNDFxLTEyLTcuMTUtMjMuNTUtMTQuOTJjLTMuMjctMi4xOC00Ljg5LTEuNi03IDEuNjQtMi4zNCAzLjU3LTEuODYgNS40NyAxLjc2IDcuMzkgMi4xIDEuMTEgNC40NSAyLjEzIDUuOSA0LjIxLS43NCAxLjE5LTEuMzQgMi4xOS0yIDMuMTctNC41MyA3LjE2LTguOTMgMTQuNC0xMy42MiAyMS40NS0yLjUyIDMuODguMzkgNC45MSAyLjgzIDYuMjV6IiBpZD0icGF0aDM4NzEiIGZpbGw9IiNmZmYiLz48L2c+PGcgaWQ9Ik5ld19BbmNob3IiIGRhdGEtbmFtZT0iTmV3IEFuY2hvciI+PHBhdGggY2xhc3M9ImNscy03IiBkPSJNMTAwOC44OSA1MjAuNDJjLTIuNTctMTAuNTQtNS4xMS0yMC45Mi03LjY4LTMxLjQyYTMuMiAzLjIgMCAwIDAtNS4zMy0xLjU2bC0yNC43MiAyMy42NmEzLjA2IDMuMDYgMCAwIDAgMS4yNiA1LjE0Yy45Mi4yNiAxLjgyLjUxIDIuNzQuNyAyIC40MyAxLjggMS4xLjg3IDIuNTFhNjUuNTkgNjUuNTkgMCAwIDEtMjAgMTkuNThsLS4yLjEyYTg2Ljc4IDg2Ljc4IDAgMCAxLTIxLjcgNyAxNTkuMzUgMTU5LjM1IDAgMCAxLTIzLjUzIDIuNzIgMS44NCAxLjg0IDAgMCAxLTEuOS0xLjg3VjQzNi42MmExLjA4IDEuMDggMCAwIDEgMS4wOC0xLjA4YzEgMCAyLjIyLjIgNS4xNS4xNyA1Ljc2LS4wNiAxMS43Ni0uMDYgMTcuNTQtLjQgMS44OC0uMTEgMi45My0uMDUgNC4xMy44NWExMi4zNSAxMi4zNSAwIDAgMCAxNi43MS0xLjI5IDEyLjUyIDEyLjUyIDAgMCAwIC4xMS0xNi43NiAxMi4zIDEyLjMgMCAwIDAtMTYuNjYtMS41OCA0LjA3IDQuMDcgMCAwIDEtMi41MyAxLjA4cS0xMi4wOC0uMDYtMjQuMTQgMGExLjkgMS45IDAgMCAxLTEuMzktLjM3di0xMi42MmExLjggMS44IDAgMCAxIC40Mi0xLjE4IDYuNDIgNi40MiAwIDAgMSAyLTEuNDFjMTMtNi42IDE5Ljc0LTE3LjQ0IDE5Ljc1LTMxLjg3IDAtMjIuODMtMjIuMjctMzkuNDQtNDQuMjktMzMuNDYtMTcuNDYgNC43NC0yOC44IDIyLjA4LTI1LjUxIDM5Ljc3IDIuNDIgMTMgMTAuMDcgMjIuMSAyMi41MSAyNi45MmE2LjU5IDYuNTkgMCAwIDEgMS4zMy42NiAxLjggMS44IDAgMCAxIC43MSAxLjQ3djEwLjMyYTEuNzggMS43OCAwIDAgMS0xLjggMS43OGMtOC42NS0uMS0xNy4zMS0uMDYtMjYgMGE1LjUzIDUuNTMgMCAwIDEtMy4zMS0xLjEyIDEyLjI0IDEyLjI0IDAgMCAwLTE2LjYyIDEuNyAxMi4zNyAxMi4zNyAwIDAgMCAxNi43MyAxOC4wNyA1LjA4IDUuMDggMCAwIDEgMy4zLTEuMDhjOC4zOSAwIDE2Ljc5LjEyIDI1LjE4IDBhMy4xOSAzLjE5IDAgMCAxIDIuMTcuNDYgMSAxIDAgMCAxIC4zMS43NnYxMDkuODFhMS44NSAxLjg1IDAgMCAxLTIgMS44NCAxOTIuNDQgMTkyLjQ0IDAgMCAxLTMwLjIyLTUgOTIuNzkgOTIuNzkgMCAwIDEtMTcuNjgtNi4yMSAxLjU2IDEuNTYgMCAwIDEtLjI4LS4xNiA2Ni44NyA2Ni44NyAwIDAgMS0xOS41NC0yMS4zOCAxLjM4IDEuMzggMCAwIDEgMS0yLjE2bDIuNjUtLjU0YTMuMDggMy4wOCAwIDAgMCAxLjYtNS4wOGwtMjMuMjYtMjUuMzVhMyAzIDAgMCAwLTUuMTMgMS4xNGMtMy40NCAxMC44OS02Ljc5IDIxLjUzLTEwLjE5IDMyLjMyYTMuMzUgMy4zNSAwIDAgMCAzLjk0IDQuMjhsMS44LS40MWE1LjEyIDUuMTIgMCAwIDEgNS42OSAyLjY0YzEzLjM4IDI2IDMzLjUgNDQuODEgNjAuMTIgNTYuNyAxMC40IDQuNjUgMTQuNTIgNiAyMy41IDcuMzdhMS43OCAxLjc4IDAgMCAxIDEgLjUxbDEzLjY3IDEzLjU1YTQuOTEgNC45MSAwIDAgMCA2Ljg1IDBsMTMuMjgtMTNhMS44OCAxLjg4IDAgMCAxIDEuMTItLjUyYzEzLjMtMS4yNSAxOS4yMy00LjU0IDMzLjU0LTExLjA5IDIyLjE1LTEwLjEzIDM5Ljc0LTI3Ljc2IDUxLjA2LTQ5LjMyIDEtMS45MiAxLjg4LTIuMTUgMy41OC0xLjU4LjY1LjIyIDEuMzEuNDMgMiAuNjNhNC4xMiA0LjEyIDAgMCAwIDUuMjEtNC45OHptLTExNC4xLTEzMS44M2ExNy43MiAxNy43MiAwIDAgMS0xNy4wOC0xOC40OWMuNDgtMTAuNDYgOS4xOC0xOC4xOCAxOS0xNy40MyAxMC4zNC44IDE3LjQ2IDkuMTEgMTYuOTQgMTguNjktLjU2IDEwLjQyLTkuMSAxNy45Ni0xOC44NiAxNy4yM3oiIGlkPSJwYXRoMzg3NCIgZmlsbD0iI2ZmZiIvPjwvZz48L2c+PC9nPjwvZz48L3N2Zz4= + iconSVGBase64: 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 longDescription: A collection of ClusterIssuers to use with cert-manager, including a private CA and optional Let's Encrypt support. maintainers: From bdaec175293a97fc50f0d659157a9f9656271403 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 22:50:38 +0100 Subject: [PATCH 371/601] Update Contour metadata and add version 1.28.1 (#340) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.28.1.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.28.1.yml diff --git a/repo/packages/contour.packages.kadras.io/1.28.1.yml b/repo/packages/contour.packages.kadras.io/1.28.1.yml new file mode 100644 index 0000000..87d2258 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.28.1.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.28.1 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2024-02-24T21:46:20Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:fe9bc5ea2ebfefc08824b33252ada4179b5a99f4501407a4643a80aa8603bde8 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configFileContents: + default: {} + description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service in + case the `infrastructure_provider` doesn't enforce one already. + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy + in case the `infrastructure_provider` doesn't enforce one already. + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + dnsPolicy: + default: ClusterFirst + description: The DNS policy for the Envoy pods. + type: string + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, http & + https are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + type: string + type: object + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + type: string + type: object + version: 1.28.1 From 17b8b3210c06168a82afb5ccf2f46c9b3c7cb6a4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 23:03:48 +0100 Subject: [PATCH 372/601] Update Knative Serving metadata and add version 1.13.1 (#341) Co-authored-by: github-actions --- .../1.13.1.yml | 278 ++++++++++++++++++ 1 file changed, 278 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.13.1.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.13.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.13.1.yml new file mode 100644 index 0000000..ac0445b --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.13.1.yml @@ -0,0 +1,278 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.13.1 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2024-02-24T22:00:53Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:51490a3db6e96140079a159e42b240cf9bb0d954561a0d0d4e01cb4d540f4408 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + type: integer + type: object + type: object + type: object + version: 1.13.1 From a9fcedaf21871c247706890a549cbd7b1f6794b2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 23:11:38 +0100 Subject: [PATCH 373/601] Update Knative Eventing metadata and add version 1.13.1 (#342) Co-authored-by: github-actions --- .../1.13.1.yml | 45 +++++++++++++++++++ 1 file changed, 45 insertions(+) create mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.13.1.yml diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.13.1.yml b/repo/packages/knative-eventing.packages.kadras.io/1.13.1.yml new file mode 100644 index 0000000..b38bfd1 --- /dev/null +++ b/repo/packages/knative-eventing.packages.kadras.io/1.13.1.yml @@ -0,0 +1,45 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-eventing.packages.kadras.io.1.13.1 +spec: + licenses: + - Apache 2.0 + refName: knative-eventing.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases + releasedAt: "2024-02-24T22:09:33Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:405d4680ac7ac36c8972f5acf56002ecebbfce09b7f23fe438e8c508473e7880 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + default_broker: + additionalProperties: false + description: Configuration for the default in-memory broker + properties: + enabled: + default: false + description: Whether to install the default in-memory broker + type: boolean + namespace: + default: default + description: The namespace where to install the default broker + type: string + type: object + type: object + version: 1.13.1 From ca3170a4e9cb6fabd18ba2e9b3cb563c3c9c7efc Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 23:23:31 +0100 Subject: [PATCH 374/601] Update Flux metadata and add version 2.2.3 (#343) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.2.3.yml | 99 +++++++++++++++++++ 1 file changed, 99 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.2.3.yml diff --git a/repo/packages/flux.packages.kadras.io/2.2.3.yml b/repo/packages/flux.packages.kadras.io/2.2.3.yml new file mode 100644 index 0000000..51f88c9 --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.2.3.yml @@ -0,0 +1,99 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.2.3 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2024-02-24T22:21:50Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:76540be134b550b0a6d4d9bb3f05b72b7da887bc84f765e34243c27a00f2c770 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.2.3 From 8cb939957ea3de30d3de610b202dc2f3f7f1ec34 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 23:33:06 +0100 Subject: [PATCH 375/601] Update Metrics Server metadata and add version 0.7.0 (#344) Co-authored-by: github-actions --- .../0.7.0.yml | 148 ++++++++++++++++++ .../metadata.yml | 2 +- 2 files changed, 149 insertions(+), 1 deletion(-) create mode 100644 repo/packages/metrics-server.packages.kadras.io/0.7.0.yml diff --git a/repo/packages/metrics-server.packages.kadras.io/0.7.0.yml b/repo/packages/metrics-server.packages.kadras.io/0.7.0.yml new file mode 100644 index 0000000..920296b --- /dev/null +++ b/repo/packages/metrics-server.packages.kadras.io/0.7.0.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: metrics-server.packages.kadras.io.0.7.0 +spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases + releasedAt: "2024-02-24T22:31:35Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-metrics-server@sha256:8c717cf7452b31fa6bd22b9636561fa3c0777f705f3d9060299cf50cb7cd0555 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + daemonset: + additionalProperties: false + properties: + updateStrategy: + default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + nullable: true + type: integer + maxUnavailable: + default: null + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object + updateStrategy: + default: null + description: Update strategy of deployments + nullable: true + type: string + type: object + metricsServer: + additionalProperties: false + properties: + config: + additionalProperties: false + properties: + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean + args: + default: [] + description: Arguments passed into metrics-server container + items: + default: "" + type: string + type: array + probe: + additionalProperties: false + properties: + failureThreshold: + default: 3 + description: Probe failureThreshold of metrics-server deployment + type: integer + periodSeconds: + default: 10 + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer + tolerations: + default: [] + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string + type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: + additionalProperties: false + properties: + name: + default: "" + description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: + default: "" + description: The repository of metrics-server image + type: string + tag: + default: "" + description: The image tag + type: string + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object + version: 0.7.0 diff --git a/repo/packages/metrics-server.packages.kadras.io/metadata.yml b/repo/packages/metrics-server.packages.kadras.io/metadata.yml index 6c9f964..bea30f4 100644 --- a/repo/packages/metrics-server.packages.kadras.io/metadata.yml +++ b/repo/packages/metrics-server.packages.kadras.io/metadata.yml @@ -9,7 +9,7 @@ spec: - metrics - observability displayName: metrics-server - iconSVGBase64: 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 + iconSVGBase64: PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHJvbGU9ImltZyIgdmlld0JveD0iLTAuMTcgMC4wOCAyMzAuMTAgMjIzLjM1Ij48ZGVmcz48c3R5bGU+LmNscy0xe2ZpbGw6I2ZmZn0uY2xzLTJ7ZmlsbDojMzI2Y2U1fTwvc3R5bGU+PC9kZWZzPjxwYXRoIGQ9Ik0xMzQuMzU4IDEyNi40NjZhMy41OSAzLjU5IDAgMCAwLS44NTUtLjA2NSAzLjY4NSAzLjY4NSAwIDAgMC0xLjQyNS4zNyAzLjcyNSAzLjcyNSAwIDAgMC0xLjgwMyA0LjgyNWwtLjAyNi4wMzcgOC41MjggMjAuNjAzYTQzLjUzIDQzLjUzIDAgMCAwIDE3LjU5NS0yMi4xMDJsLTIxLjk3Ni0zLjcxNHptLTM0LjE5NCAyLjkyYTMuNzIgMy43MiAwIDAgMC0zLjU2OC0yLjg5NCAzLjY1NiAzLjY1NiAwIDAgMC0uNzMzLjA2NWwtLjAzNy0uMDQ1LTIxLjc4NSAzLjY5OGE0My42OTUgNDMuNjk1IDAgMCAwIDE3LjU0IDIxLjk0Nmw4LjQ0Mi0yMC40LS4wNjYtLjA4YTMuNjgzIDMuNjgzIDAgMCAwIC4yMDctMi4yOXptMTguMjQ1IDhhMy43MTggMy43MTggMCAwIDAtNi41NTcuMDA4aC0uMDE4bC0xMC43MTMgMTkuMzcyYTQzLjYzNyA0My42MzcgMCAwIDAgMjMuODE1IDEuMjI1cTIuMTk3LS41IDQuMjkyLTEuMmwtMTAuNzM4LTE5LjQwNnptMzMuOTE0LTQ1bC0xNi40ODMgMTQuNzUzLjAwOS4wNDdhMy43MjUgMy43MjUgMCAwIDAgMS40NiA2LjM5NWwuMDIuMDg5IDIxLjM1IDYuMTVhNDQuMjc4IDQ0LjI3OCAwIDAgMC02LjM1Ni0yNy40MzJ6TTEyMS43IDk0LjAzOWEzLjcyNSAzLjcyNSAwIDAgMCA1LjkxMyAyLjg0bC4wNjUuMDI3IDE4LjAzNi0xMi43ODhhNDMuODUgNDMuODUgMCAwIDAtMjUuMjg3LTEyLjE5bDEuMjUzIDIyLjEwNXptLTE5LjEgMi45MjFhMy43MiAzLjcyIDAgMCAwIDUuOTA0LTIuODVsLjA5Mi0uMDQzIDEuMjUzLTIyLjE0YTQ0LjY4MiA0NC42ODIgMCAwIDAtNC41MDEuNzc2IDQzLjQ2NyA0My40NjcgMCAwIDAtMjAuOTM3IDExLjQwOWwxOC4xNTQgMTIuODY5em0tOS42NzggMTYuNzI5YTMuNzIgMy43MiAwIDAgMCAxLjQ2Mi02LjM5NmwuMDE4LS4wODgtMTYuNTc0LTE0LjgyNGE0My40NTQgNDMuNDU0IDAgMCAwLTYuMTY4IDI3LjUxbDIxLjI0NS02LjEzem0xNi4wOTggNi41MTJsNi4xMTQgMi45NCA2LjA5Ni0yLjkzNCAxLjUxNC02LjU4MS00LjIxOS01LjI3NmgtNi43OWwtNC4yMzEgNS4yNjh6IiBjbGFzcz0iY2xzLTIiLz48cGF0aCBkPSJNMjE2LjIwOCAxMzMuMTY3bC0xNy40MjItNzUuNjc1YTEzLjYwMiAxMy42MDIgMCAwIDAtNy4yOTMtOS4wNzNsLTcwLjUyMS0zMy42N2ExMy41ODkgMTMuNTg5IDAgMCAwLTExLjcwNSAwTDM4Ljc2IDQ4LjQzN2ExMy41OTggMTMuNTk4IDAgMCAwLTcuMjk1IDkuMDcybC0xNy4zOTQgNzUuNjczYTEzLjMxNSAxMy4zMTUgMCAwIDAtLjAwNCA1LjgxIDEzLjUwNiAxMy41MDYgMCAwIDAgLjQ5MSAxLjcxOCAxMy4xIDEzLjEgMCAwIDAgMS4zNDMgMi43MjZjLjIzOS4zNjUuNDkxLjcyLjc2NSAxLjA2NGw0OC44MDQgNjAuNjc4Yy4yMTMuMjY0LjQ0OC41MDUuNjgxLjc1YTEzLjQyMyAxMy40MjMgMCAwIDAgMi41NzQgMi4xMzMgMTMuOTI0IDEzLjkyNCAwIDAgMCAzLjg1NyAxLjY3NyAxMy4yOTggMTMuMjk4IDAgMCAwIDMuNDMuNDczaC43NTlsNzcuNTA0LS4wMThhMTIuOTkzIDEyLjk5MyAwIDAgMCAxLjQxLS4wODMgMTMuNDcgMTMuNDcgMCAwIDAgMS45ODktLjM3OCAxMy44NzIgMTMuODcyIDAgMCAwIDEuMzgxLS40NDJjLjM1My0uMTM1LjcwNS0uMjcgMS4wNDUtLjQzM2ExMy45NDEgMTMuOTQxIDAgMCAwIDEuNDc5LS44MjIgMTMuMzAzIDEzLjMwMyAwIDAgMCAzLjIzNy0yLjg2NWwxLjQ4OC0xLjg1IDQ3LjI5OS01OC44NGExMy4xODUgMTMuMTg1IDAgMCAwIDIuMTA4LTMuNzg1IDEzLjY3IDEzLjY3IDAgMCAwIC41LTEuNzI0IDEzLjI4MiAxMy4yODIgMCAwIDAtLjAwNC01Ljgxem0tNzMuMTQ3IDI5LjQzMmExNC41MTYgMTQuNTE2IDAgMCAwIC43MDMgMS43MDMgMy4zMTQgMy4zMTQgMCAwIDAtLjMyNyAyLjQ5IDM5LjM3MiAzOS4zNzIgMCAwIDAgMy43NDIgNi43IDM1LjA2IDM1LjA2IDAgMCAxIDIuMjYzIDMuMzY0Yy4xNy4zMTUuMzkyLjgwMy41NTMgMS4xMzZhNC4yNCA0LjI0IDAgMSAxLTcuNjMgMy42MDdjLS4xNjEtLjMzLS4zODUtLjc3LS41MjItMS4wODJhMzUuMjc1IDM1LjI3NSAwIDAgMS0xLjIyNS0zLjg2OCAzOS4zMDUgMzkuMzA1IDAgMCAwLTIuODk2LTcuMDk3IDMuMzM1IDMuMzM1IDAgMCAwLTIuMTU0LTEuMzA3Yy0uMTM1LS4yMzMtLjYzNS0xLjE1LS45MDMtMS42MjNhNTQuNjE3IDU0LjYxNyAwIDAgMS0zOC45NDgtLjFsLS45NTUgMS43M2EzLjQyOSAzLjQyOSAwIDAgMC0xLjgxOS44ODcgMjkuNTE3IDI5LjUxNyAwIDAgMC0zLjI2OCA3LjU4MiAzNC45IDM0LjkgMCAwIDEtMS4yMTggMy44NjhjLS4xMzUuMzEtLjM2MS43NDQtLjUyMiAxLjA3M3YuMDA5bC0uMDA3LjAwOGE0LjIzOCA0LjIzOCAwIDEgMS03LjYxOS0zLjYxNmMuMTU5LS4zMzUuMzcyLS44Mi41NC0xLjEzNWEzNS4xNzcgMzUuMTc3IDAgMCAxIDIuMjYyLTMuMzczIDQxLjIyOCA0MS4yMjggMCAwIDAgMy44Mi02Ljg2NiA0LjE4OCA0LjE4OCAwIDAgMC0uMzc2LTIuMzg3bC43NjgtMS44NGE1NC45MjIgNTQuOTIyIDAgMCAxLTI0LjMzOC0zMC4zODdsLTEuODM5LjMxM2E0LjY4IDQuNjggMCAwIDAtMi40MjgtLjg1NSAzOS41MjQgMzkuNTI0IDAgMCAwLTcuMzU2IDIuMTY1IDM1LjU4OSAzNS41ODkgMCAwIDEtMy43ODcgMS40NWMtLjMwNS4wODQtLjc0NS4xNjgtMS4wOTMuMjQ0LS4wMjguMDEtLjA1Mi4wMjItLjA4LjAyOWEuNjA1LjYwNSAwIDAgMS0uMDY1LjAwNiA0LjIzNiA0LjIzNiAwIDEgMS0xLjg3NC04LjIyNGwuMDYxLS4wMTUuMDM3LS4wMWMuMzUzLS4wODMuODA1LS4yIDEuMTI3LS4yNjJhMzUuMjcgMzUuMjcgMCAwIDEgNC4wNS0uMzI2IDM5LjM4OCAzOS4zODggMCAwIDAgNy41NjQtMS4yNDIgNS44MzUgNS44MzUgMCAwIDAgMS44MTQtMS44M2wxLjc2Ny0uNTE2YTU0LjYxMyA1NC42MTMgMCAwIDEgOC42MTMtMzguMDczbC0xLjM1My0xLjIwNmE0LjY4OCA0LjY4OCAwIDAgMC0uODQ4LTIuNDM2IDM5LjM2NiAzOS4zNjYgMCAwIDAtNi4yNzctNC40MSAzNS4yNSAzNS4yNSAwIDAgMS0zLjQ5OS0yLjA0NmMtLjI1Ni0uMTkxLS41OTYtLjQ3OC0uODc0LS43MDRsLS4wNjMtLjA0NGE0LjQ3MyA0LjQ3MyAwIDAgMS0xLjAzOC02LjIyMiA0LjA2NiA0LjA2NiAwIDAgMSAzLjM2My0xLjQ4OCA1LjAzIDUuMDMgMCAwIDEgMi45NDIgMS4xMWMuMjg3LjIyNS42OC41MjYuOTM1Ljc0NWEzNS4yNTMgMzUuMjUzIDAgMCAxIDIuNzggMi45NSAzOS4zODMgMzkuMzgzIDAgMCAwIDUuNjkgNS4xNDIgMy4zMzMgMy4zMzMgMCAwIDAgMi41MDcuMjQzcS43NTQuNTUgMS41MjIgMS4wODJBNTQuMjg5IDU0LjI4OSAwIDAgMSAxMDIuODYgNjEuODlhNTUuMDUyIDU1LjA1MiAwIDAgMSA3LjYzLTEuMTczbC4xLTEuNzg0YTQuNiA0LjYgMCAwIDAgMS4zNy0yLjE4NCAzOS40NzYgMzkuNDc2IDAgMCAwLS40Ny03LjY1NCAzNS40NjYgMzUuNDY2IDAgMCAxLS41NzYtNC4wMTRjLS4wMTEtLjMwNy4wMDYtLjczMS4wMS0xLjA4MSAwLS4wNC0uMDEtLjA4LS4wMS0uMTE4YTQuMjQyIDQuMjQyIDAgMSAxIDguNDQxLS4wMDRjMCAuMzcuMDIyLjg2LjAwOSAxLjJhMzUuMTA5IDM1LjEwOSAwIDAgMS0uNTc5IDQuMDEzIDM5LjUzMyAzOS41MzMgMCAwIDAtLjQ3OCA3LjY1NiAzLjM0NCAzLjM0NCAwIDAgMCAxLjM3OSAyLjExYy4wMTUuMzA1LjA2NSAxLjMyMy4xMDIgMS44ODRhNTUuMzA5IDU1LjMwOSAwIDAgMSAzNS4wMzIgMTYuOTI3bDEuNjA2LTEuMTQ3YTQuNjkgNC42OSAwIDAgMCAyLjU2LS4yNzggMzkuNTMyIDM5LjUzMiAwIDAgMCA1LjY5LTUuMTQ4IDM1LjAwNCAzNS4wMDQgMCAwIDEgMi43ODctMi45NWMuMjU5LS4yMjIuNjUtLjUyLjkzNi0uNzQ2YTQuMjQyIDQuMjQyIDAgMSAxIDUuMjU4IDYuNTk4Yy0uMjgzLjIyOS0uNjU3LjU0OC0uOTI5Ljc1YTM1LjA5NSAzNS4wOTUgMCAwIDEtMy41MDcgMi4wNDYgMzkuNDk1IDM5LjQ5NSAwIDAgMC02LjI3NyA0LjQxIDMuMzM3IDMuMzM3IDAgMCAwLS43OTIgMi4zOWMtLjIzNS4yMTYtMS4wNi45NDctMS40OTcgMS4zNDNhNTQuODM3IDU0LjgzNyAwIDAgMSA4Ljc5MiAzNy45ODNsMS43MDQuNDk2YTQuNzQ1IDQuNzQ1IDAgMCAwIDEuODIgMS44MyAzOS40NjQgMzkuNDY0IDAgMCAwIDcuNTY4IDEuMjQ2IDM1LjY0IDM1LjY0IDAgMCAxIDQuMDQ2LjMyNGMuMzU1LjA2NS44NjguMjA3IDEuMjMuMjlhNC4yMzYgNC4yMzYgMCAxIDEtMS44NzggOC4yMjNsLS4wNjEtLjAwOGMtLjAyOC0uMDA3LS4wNTQtLjAyMi0uMDgzLS4wMy0uMzQ4LS4wNzUtLjc4NS0uMTUxLTEuMDktLjIzMWEzNS4xNCAzNS4xNCAwIDAgMS0zLjc4NS0xLjQ2MiAzOS40NzcgMzkuNDc3IDAgMCAwLTcuMzYzLTIuMTY1IDMuMzM3IDMuMzM3IDAgMCAwLTIuMzYyLjg3N3EtLjktLjE3MS0xLjgwNC0uMzE2YTU0LjkyIDU0LjkyIDAgMCAxLTI0LjMyOCAzMC42MDV6IiBjbGFzcz0iY2xzLTIiLz48cGF0aCBkPSJNMjI1LjQwNyAxMzUuMTA3TDIwNi40IDUyLjU0N2ExNC44MzggMTQuODM4IDAgMCAwLTcuOTU4LTkuOWwtNzYuOTM1LTM2LjczYTE0LjgyNSAxNC44MjUgMCAwIDAtMTIuNzcxIDBMMzEuODA4IDQyLjY2OWExNC44MzggMTQuODM4IDAgMCAwLTcuOTYxIDkuODk1TDQuODczIDEzNS4xMjlhMTQuNjY4IDE0LjY2OCAwIDAgMCAxLjk5NSAxMS4xODVjLjI2MS40LjUzOC43ODguODM4IDEuMTYybDUzLjI0NiA2Ni4yMDVhMTQuOTggMTQuOTggMCAwIDAgMTEuNDk5IDUuNDg3bDg1LjM4Ny0uMDJhMTQuOTg2IDE0Ljk4NiAwIDAgMCAxMS41LTUuNDhsNTMuMjI3LTY2LjIxMWExNC43MiAxNC43MiAwIDAgMCAyLjg0Mi0xMi4zNDd6bS05LjE5NyAzLjg2NmExMy42NzcgMTMuNjc3IDAgMCAxLS40OTggMS43MjMgMTMuMTg0IDEzLjE4NCAwIDAgMS0yLjExIDMuNzg2bC00Ny4yOTkgNTguODM4LTEuNDg2IDEuODUyYTEzLjMwNSAxMy4zMDUgMCAwIDEtMy4yNCAyLjg2NSAxMy45NDUgMTMuOTQ1IDAgMCAxLTEuNDc0LjgyMnEtLjUxMy4yMzctMS4wNDUuNDNhMTMuODczIDEzLjg3MyAwIDAgMS0xLjM4My40NDUgMTMuNDczIDEzLjQ3MyAwIDAgMS0xLjk4OS4zNzkgMTIuOTg4IDEyLjk4OCAwIDAgMS0xLjQxLjA4MmwtNzcuNTA0LjAxOGgtLjc2YTEzLjI5OCAxMy4yOTggMCAwIDEtMy40MjktLjQ3MiAxMy45MjUgMTMuOTI1IDAgMCAxLTMuODU1LTEuNjc5IDEzLjQyNCAxMy40MjQgMCAwIDEtMi41NzYtMi4xMzJjLS4yMzMtLjI0Ni0uNDY4LS40ODctLjY4LS43NWwtNDguODA1LTYwLjY3OXEtLjQwOC0uNTE0LS43NjUtMS4wNjZhMTMuMTAyIDEzLjEwMiAwIDAgMS0xLjM0My0yLjcyNiAxMy41MDUgMTMuNTA1IDAgMCAxLS40OTEtMS43MTkgMTMuMzE1IDEzLjMxNSAwIDAgMSAuMDA0LTUuODA5bDE3LjM5NC03NS42NzVhMTMuNTk4IDEzLjU5OCAwIDAgMSA3LjI5NS05LjA3bDcwLjUwOC0zMy42ODVhMTMuNTg5IDEzLjU4OSAwIDAgMSAxMS43MDUgMGw3MC41MTkgMzMuNjdhMTMuNjAyIDEzLjYwMiAwIDAgMSA3LjI5MyA5LjA3M2wxNy40MjIgNzUuNjc0YTEzLjI4MiAxMy4yODIgMCAwIDEgLjAwMiA1LjgwN3oiIGNsYXNzPSJjbHMtMSIvPjxwYXRoIGQ9Ik0xODUuODE0IDEyNy4xMDZjLS4zNi0uMDgzLS44NzQtLjIyNS0xLjIyNy0uMjlhMzUuNjQyIDM1LjY0MiAwIDAgMC00LjA0Ni0uMzI2IDM5LjQ2NCAzOS40NjQgMCAwIDEtNy41Ny0xLjI0MiA0Ljc0NSA0Ljc0NSAwIDAgMS0xLjgyLTEuODMybC0xLjcwNC0uNDk2YTU0LjgzNyA1NC44MzcgMCAwIDAtOC43OS0zNy45ODNjLjQzNi0uMzk2IDEuMjYyLTEuMTI3IDEuNDk1LTEuMzQyYTMuMzM4IDMuMzM4IDAgMCAxIC43OTItMi4zOSAzOS40OTUgMzkuNDk1IDAgMCAxIDYuMjc3LTQuNDEgMzUuMDk1IDM1LjA5NSAwIDAgMCAzLjUwNy0yLjA0NmMuMjcyLS4yMDIuNjQ0LS41MjIuOTI5LS43NWE0LjI0MiA0LjI0MiAwIDEgMC01LjI1Ni02LjZjLS4yODguMjI3LS42OC41MjUtLjkzNi43NDdhMzUuMDA0IDM1LjAwNCAwIDAgMC0yLjc4OSAyLjk1IDM5LjUzMyAzOS41MzMgMCAwIDEtNS42OSA1LjE0OCA0LjY5IDQuNjkgMCAwIDEtMi41Ni4yNzhsLTEuNjA2IDEuMTQ3YTU1LjMwOSA1NS4zMDkgMCAwIDAtMzUuMDMyLTE2LjkyN2MtLjAzOS0uNTYxLS4wODctMS41NzctLjEwMi0xLjg4NGEzLjM0NCAzLjM0NCAwIDAgMS0xLjM3Ny0yLjExIDM5LjUzMyAzOS41MzMgMCAwIDEgLjQ3OC03LjY1NiAzNS4xMTIgMzUuMTEyIDAgMCAwIC41NzUtNC4wMTJjLjAxMy0uMzQtLjAwNy0uODM0LS4wMDctMS4yMDFhNC4yNDIgNC4yNDIgMCAxIDAtOC40NDEuMDA0YzAgLjA0LjAwOS4wNzguMDEuMTE4LS4wMDQuMzUtLjAyMS43NzQtLjAxIDEuMDhhMzUuNDc2IDM1LjQ3NiAwIDAgMCAuNTc2IDQuMDE1IDM5LjQ3NSAzOS40NzUgMCAwIDEgLjQ3IDcuNjU0IDQuNjAxIDQuNjAxIDAgMCAxLTEuMzcgMi4xODJsLS4xIDEuNzg2YTU1LjA1MiA1NS4wNTIgMCAwIDAtNy42MyAxLjE3MyA1NC4yODkgNTQuMjg5IDAgMCAwLTI3LjU3NCAxNS43NTRxLS43Ny0uNTMxLTEuNTI2LTEuMDgyYTMuMzMzIDMuMzMzIDAgMCAxLTIuNTA2LS4yNDMgMzkuMzgzIDM5LjM4MyAwIDAgMS01LjY5LTUuMTQxIDM1LjI1NSAzNS4yNTUgMCAwIDAtMi43NzctMi45NWMtLjI1Ny0uMjItLjY1LS41Mi0uOTM4LS43NWE1LjAzIDUuMDMgMCAwIDAtMi45NDItMS4xMSA0LjA2NiA0LjA2NiAwIDAgMC0zLjM2MyAxLjQ5IDQuNDczIDQuNDczIDAgMCAwIDEuMDM4IDYuMjIybC4wNjUuMDQ2Yy4yNzYuMjI2LjYxNi41MTUuODcyLjcwMmEzNS4yNTYgMzUuMjU2IDAgMCAwIDMuNDk5IDIuMDQ4IDM5LjM2NyAzOS4zNjcgMCAwIDEgNi4yNzYgNC40MTIgNC42OSA0LjY5IDAgMCAxIC44NDkgMi40MzRsMS4zNTEgMS4yMDhhNTQuNjEzIDU0LjYxMyAwIDAgMC04LjYxMSAzOC4wNzNsLTEuNzY3LjUxNGE1LjgzNSA1LjgzNSAwIDAgMS0xLjgxNCAxLjgyNyAzOS4zOSAzOS4zOSAwIDAgMS03LjU2NSAxLjI0NyAzNS4yNjYgMzUuMjY2IDAgMCAwLTQuMDQ5LjMyNmMtLjMyNC4wNi0uNzc0LjE3NC0xLjEyNy4yNjJsLS4wMzcuMDA4LS4wNi4wMThhNC4yMzYgNC4yMzYgMCAxIDAgMS44NzUgOC4yMjRsLjA2My0uMDFjLjAyOC0uMDA2LjA1Mi0uMDIuMDgtLjAyNS4zNDgtLjA4Ljc4Ni0uMTYzIDEuMDkyLS4yNDZhMzUuNTkgMzUuNTkgMCAwIDAgMy43ODYtMS40NTEgMzkuNTI3IDM5LjUyNyAwIDAgMSA3LjM1OC0yLjE2NSA0LjY4IDQuNjggMCAwIDEgMi40MjYuODU3bDEuODQtLjMxNWE1NC45MjIgNTQuOTIyIDAgMCAwIDI0LjM0IDMwLjM4N2wtLjc2OSAxLjg0YTQuMTg4IDQuMTg4IDAgMCAxIC4zNzcgMi4zODcgNDEuMjI4IDQxLjIyOCAwIDAgMS0zLjgyIDYuODY0IDM1LjE4MyAzNS4xODMgMCAwIDAtMi4yNjMgMy4zNzJjLS4xNjguMzE4LS4zODEuODA1LS41NDIgMS4xMzhhNC4yMzggNC4yMzggMCAxIDAgNy42MjEgMy42MTZsLjAwNy0uMDA4di0uMDFjLjE2LS4zMy4zODctLjc2My41MjItMS4wNzJhMzQuOTAzIDM0LjkwMyAwIDAgMCAxLjIxOC0zLjg2OCAyOS41MTcgMjkuNTE3IDAgMCAxIDMuMjY4LTcuNTgyIDMuNDMgMy40MyAwIDAgMSAxLjgxOS0uODg4bC45NTctMS43M2E1NC42MTcgNTQuNjE3IDAgMCAwIDM4Ljk0Ni4wOTljLjI2OC40NzguNzY4IDEuMzkyLjkgMS42MjNhMy4zMzUgMy4zMzUgMCAwIDEgMi4xNTUgMS4zMSAzOS4zMDYgMzkuMzA2IDAgMCAxIDIuODk4IDcuMDk2IDM1LjI3NSAzNS4yNzUgMCAwIDAgMS4yMjUgMy44NjhjLjEzNy4zMTIuMzYuNzUuNTIyIDEuMDgyYTQuMjQgNC4yNCAwIDEgMCA3LjYzLTMuNjA3Yy0uMTYxLS4zMzMtLjM4My0uODItLjU1LTEuMTM2YTM1LjA2IDM1LjA2IDAgMCAwLTIuMjYzLTMuMzY0IDM5LjM3MiAzOS4zNzIgMCAwIDEtMy43NDItNi43IDMuMzE0IDMuMzE0IDAgMCAxIC4zMjQtMi40OSAxNC41MTkgMTQuNTE5IDAgMCAxLS43MDMtMS43MDMgNTQuOTIgNTQuOTIgMCAwIDAgMjQuMzI4LTMwLjYwNWMuNTQ2LjA4NyAxLjQ5Ny4yNTMgMS44MDYuMzE2YTMuMzM3IDMuMzM3IDAgMCAxIDIuMzYtLjg3NyAzOS40NzYgMzkuNDc2IDAgMCAxIDcuMzYgMi4xNjUgMzUuMTM1IDM1LjEzNSAwIDAgMCAzLjc4OCAxLjQ2MmMuMzA1LjA4Ljc0LjE1NiAxLjA5LjIzMy4wMjkuMDA4LjA1NS4wMi4wODMuMDI4bC4wNi4wMDlhNC4yMzYgNC4yMzYgMCAxIDAgMS44NzgtOC4yMjR6bS00MC4xLTQyLjk4N2wtMTguMDM3IDEyLjc4Ny0uMDYzLS4wM2EzLjcyMyAzLjcyMyAwIDAgMS01LjkxMy0yLjgzOGwtLjAyLS4wMS0xLjI1My0yMi4xMDNhNDMuODUgNDMuODUgMCAwIDEgMjUuMjg1IDEyLjE5NHptLTMzLjk3OCAyNC4yMjhoNi43ODhsNC4yMiA1LjI3Ni0xLjUxMyA2LjU4LTYuMDk2IDIuOTM0LTYuMTE0LTIuOTQtMS41MTYtNi41ODN6bS02LjM4Ni0zNS42NDhhNDQuNjcyIDQ0LjY3MiAwIDAgMSA0LjUwMy0uNzc0bC0xLjI1NSAyMi4xMzctLjA5Mi4wNDRhMy43MiAzLjcyIDAgMCAxLTUuOTA0IDIuODUybC0uMDM1LjAyLTE4LjE1NC0xMi44NzJhNDMuNDY3IDQzLjQ2NyAwIDAgMSAyMC45MzctMTEuNDA3em0tMjcuNTIgMTkuNjhsMTYuNTc0IDE0LjgyNC0uMDE4LjA5YTMuNzIgMy43MiAwIDAgMS0xLjQ2MiA2LjM5NWwtLjAxNy4wNzItMjEuMjQ1IDYuMTNhNDMuNDU0IDQzLjQ1NCAwIDAgMSA2LjE2OC0yNy41MXptMjIuMTkxIDM5LjM4bC04LjQ0MSAyMC4zOTdhNDMuNjk2IDQzLjY5NiAwIDAgMS0xNy41MzYtMjEuOTQ4bDIxLjc4My0zLjcuMDM3LjA0OWEzLjY1NSAzLjY1NSAwIDAgMSAuNzMtLjA2NSAzLjcyIDMuNzIgMCAwIDEgMy4zNjQgNS4xODV6bTI0LjkxNiAyNi4yM2E0My42MzcgNDMuNjM3IDAgMCAxLTIzLjgxNS0xLjIyM2wxMC43MTMtMTkuMzcyaC4wMThhMy43MjUgMy43MjUgMCAwIDEgNi41NTctLjAwNmguMDhsMTAuNzQgMTkuNDA0cS0yLjA5MS42OTgtNC4yOTMgMS4xOTl6bTEzLjg0MS01Ljc1MWwtOC41MjgtMjAuNjA1LjAyNi0uMDM3YTMuNzI1IDMuNzI1IDAgMCAxIDEuODAzLTQuODIzIDMuNjg1IDMuNjg1IDAgMCAxIDEuNDI1LS4zNyAzLjU5IDMuNTkgMCAwIDEgLjg1NS4wNjNsLjAzNy0uMDQ2IDIxLjk3NyAzLjcxNGE0My41MyA0My41MyAwIDAgMS0xNy41OTUgMjIuMTA1em0xOS45MDMtMzIuNDJsLTIxLjM1Mi02LjE1LS4wMi0uMDlhMy43MjUgMy43MjUgMCAwIDEtMS40Ni02LjM5NWwtLjAwOC0uMDQzIDE2LjQ4Mi0xNC43NTFhNDQuMjc5IDQ0LjI3OSAwIDAgMSA2LjM1NyAyNy40M3oiIGNsYXNzPSJjbHMtMSIvPjwvc3ZnPg== longDescription: Metrics Server is a scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. maintainers: From 610063f89a532740f3a62a2ee09cfd1ff54e0247 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 23:38:51 +0100 Subject: [PATCH 376/601] Update secretgen-controller metadata and add version 0.17.0 (#345) Co-authored-by: github-actions --- .../0.17.0.yml | 35 +++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.17.0.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.17.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.17.0.yml new file mode 100644 index 0000000..4b7b676 --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.17.0.yml @@ -0,0 +1,35 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.17.0 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases + releasedAt: "2024-02-24T22:37:06Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:a212e9feaf01ae7ec01ba24ad4391356ebc29f582033735b4a037399230b4b12 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.17.0 From 2e54cfbdaf8dc1b29bc57bcd6cb0afbc43dbc28c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 23:50:18 +0100 Subject: [PATCH 377/601] Update kpack metadata and add version 0.13.2 (#346) Co-authored-by: github-actions --- .../kpack.packages.kadras.io/0.13.2.yml | 156 ++++++++++++++++++ 1 file changed, 156 insertions(+) create mode 100644 repo/packages/kpack.packages.kadras.io/0.13.2.yml diff --git a/repo/packages/kpack.packages.kadras.io/0.13.2.yml b/repo/packages/kpack.packages.kadras.io/0.13.2.yml new file mode 100644 index 0000000..afd8254 --- /dev/null +++ b/repo/packages/kpack.packages.kadras.io/0.13.2.yml @@ -0,0 +1,156 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kpack.packages.kadras.io.0.13.2 +spec: + capacityRequirementsDescription: Container registry with > 1GB available space + licenses: + - Apache 2.0 + refName: kpack.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kpack/releases + releasedAt: "2024-02-24T22:47:50Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kpack@sha256:fee8097fb91d730ebd8e413b7f73d52cab568c86930c57bf4ffc76bbbfaf7835 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: 'PEM-encoded certificate data that kpack controller will use + to trust TLS connections based on a custom CA with a container registry. + Note: This will not be injected into builds, you need to use the cert + injection webhook with the `kpack.io/build` label value.' + type: string + config: + additionalProperties: false + description: Settings for kpack. + properties: + injected_sidecar_support: + default: false + description: Enable support for injected sidecars. + type: boolean + type: object + controller: + additionalProperties: false + description: Settings for the the kpack controller. + properties: + resources: + additionalProperties: false + description: Resource configuration for the kpack-controller Deployment. + properties: + limits: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory limits configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `500Mi`. + type: string + type: object + requests: + additionalProperties: false + properties: + memory: + default: 1Gi + description: Memory requests configuration for the kpack-controller + Deployment. In a resource-constrained environment, you can + lower this up to `100Mi`. + type: string + type: object + type: object + type: object + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + properties: + aws_iam_role_arn: + default: null + description: IAM credentials to access the default container repository + if the registry is on AWS. + nullable: true + type: string + credentials: + additionalProperties: false + description: Read/write credentials to access the default container + repository. + nullable: true + properties: + password: + default: "" + description: 'Token to access the default container repository. + Note: Use contents of service account key json for GCR.' + type: string + username: + default: "" + description: 'Username to access the default container repository. + Note: Use `_json_key` for GCR.' + type: string + type: object + name: + default: "" + description: The default repository to use for builder images and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + access the default container repository. + nullable: true + properties: + create_export: + default: false + description: Whether to create a SecretExport resource to export + the Secret from the source namespace to the kpack namespace. Not + needed when installing kpack as part of the Kadras Enginnering + Platform. + type: boolean + name: + default: "" + description: The name of the Secret holding the credentials to access + the default container repository. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to access the default container repository. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy (e.g. Kubernetes + API address). + type: string + type: object + type: object + version: 0.13.2 From a2c9252812631a99890306dd2a2cb50163fc68f8 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sat, 24 Feb 2024 23:54:39 +0100 Subject: [PATCH 378/601] Update Buildpacks Catalog metadata and add version 0.10.0 (#347) Co-authored-by: github-actions --- .../0.10.0.yml | 47 +++++++++++++++++++ 1 file changed, 47 insertions(+) create mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.10.0.yml diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.10.0.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.10.0.yml new file mode 100644 index 0000000..95f2268 --- /dev/null +++ b/repo/packages/buildpacks-catalog.packages.kadras.io/0.10.0.yml @@ -0,0 +1,47 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: buildpacks-catalog.packages.kadras.io.0.10.0 +spec: + capacityRequirementsDescription: Container registry with at least 1GB available + space used by kpack to create builder images. + licenses: + - Apache 2.0 + refName: buildpacks-catalog.packages.kadras.io + releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases + releasedAt: "2024-02-24T22:52:57Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/buildpacks-catalog@sha256:1744f0b5b68bf80abc5fd4557be82a721d39919557dd8f0fc78177ea66e020e8 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + kp_default_repository: + additionalProperties: false + description: Settings for the default container repository used by kpack. + Same as configured in the kpack package. + properties: + name: + default: "" + description: The default repository where to publish builder images + and dependencies. + example: ghcr.io/thomasvitale/buildpacks + type: string + x-example-description: Repository on GitHub Container Registry + type: object + type: object + version: 0.10.0 From c37b44390dd4afd27ea9075606ddedca11c8a4cc Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 00:15:19 +0100 Subject: [PATCH 379/601] Update Crossplane metadata and add version 1.15.0 (#348) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.15.0.yml | 345 ++++++++++++++++++ 1 file changed, 345 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.15.0.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.15.0.yml b/repo/packages/crossplane.packages.kadras.io/1.15.0.yml new file mode 100644 index 0000000..9992856 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.15.0.yml @@ -0,0 +1,345 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.15.0 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2024-02-24T23:13:52Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:9861585f295ad9728189a92962bbeac33464206427c0d9afa053177d4e639c52 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: {} + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + type: object + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + serviceAccount: + properties: + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.15.0 From ce466c71a5216f5a717bb8633efdd724f9b56b36 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 00:52:41 +0100 Subject: [PATCH 380/601] Update Spring Boot Conventions metadata and add version 0.4.0 (#349) Co-authored-by: github-actions --- .../0.4.0.yml | 67 +++++++++++++++++++ 1 file changed, 67 insertions(+) create mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.4.0.yml diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.4.0.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..5310d2d --- /dev/null +++ b/repo/packages/spring-boot-conventions.packages.kadras.io/0.4.0.yml @@ -0,0 +1,67 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: spring-boot-conventions.packages.kadras.io.0.4.0 +spec: + licenses: + - Apache 2.0 + refName: spring-boot-conventions.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases + releasedAt: "2024-02-24T23:51:04Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:f47d634bcd30f2abd8c20aa27776fb04998b8bdcffde99296365803ca9101f8c + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + namespace: + default: spring-boot-conventions + description: The namespace where to install Spring Boot Conventions + type: string + resources: + additionalProperties: false + description: Resource configuration for the Convention Server + properties: + limits: + additionalProperties: false + description: Resource limits + properties: + cpu: + default: 100m + description: CPU limits + type: string + memory: + default: 256Mi + description: Memory limits + type: string + type: object + requests: + additionalProperties: false + description: Resource requests + properties: + cpu: + default: 100m + description: CPU requests + type: string + memory: + default: 20Mi + description: Memory requests + type: string + type: object + type: object + type: object + version: 0.4.0 From 7e8af20e2b073b9f07f41b2f3e91f44703c9610e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 09:35:19 +0100 Subject: [PATCH 381/601] Update Dapr metadata and add version 1.12.0 (#350) Co-authored-by: github-actions --- .../dapr.packages.kadras.io/1.12.0.yml | 186 ++++++++++++++++++ .../dapr.packages.kadras.io/metadata.yml | 20 ++ 2 files changed, 206 insertions(+) create mode 100644 repo/packages/dapr.packages.kadras.io/1.12.0.yml create mode 100644 repo/packages/dapr.packages.kadras.io/metadata.yml diff --git a/repo/packages/dapr.packages.kadras.io/1.12.0.yml b/repo/packages/dapr.packages.kadras.io/1.12.0.yml new file mode 100644 index 0000000..c403663 --- /dev/null +++ b/repo/packages/dapr.packages.kadras.io/1.12.0.yml @@ -0,0 +1,186 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dapr.packages.kadras.io.1.12.0 +spec: + refName: dapr.packages.kadras.io + releasedAt: "2024-02-25T08:33:19Z" + template: + spec: + deploy: + - kapp: + intoNs: dapr-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dapr@sha256:ec03eb98b1536c03d0e1a17e7799ae1f1ba6c0c35a19cc1d6d306886eff7fbb1 + template: + - helmTemplate: + name: dapr + namespace: dapr-system + path: config/helm/upstream/dapr + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + global: + properties: + actors: + description: 'sentry: placement: operator: injector:' + properties: + enabled: + default: true + type: boolean + type: object + argoRolloutServiceReconciler: + description: 'the issuerFilenames dictionary, if setup, have to contain + 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: + "tls.key"' + properties: + enabled: + default: false + type: boolean + type: object + daprControlPlaneOs: + default: linux + type: string + dnsSuffix: + default: .cluster.local + type: string + extraVolumeMounts: + default: {} + description: 'sentry: placement: operator: injector:' + type: object + extraVolumes: + default: {} + description: and extraVolumeMounts are used to mount additional volumes + to the Dapr control plane pods. Useful for using alternative authentication + credentials to sentry. + type: object + ha: + properties: + disruption: + properties: + maximumUnavailable: + default: 25% + type: string + minimumAvailable: + default: "" + type: string + type: object + enabled: + default: false + type: boolean + replicaCount: + default: 3 + type: integer + type: object + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: "" + description: 'To help compatibility with other charts which use global.imagePullSecrets. + Allow either a string with single imagepullsecret or an array of {name: + pullSecret} maps (k8s-style) or an array of strings (more common helm-style). + global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - + name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - + pullSecret1 - pullSecret2' + type: string + issuerFilenames: + default: {} + type: object + k8sLabels: + properties: + app.kubernetes.io/component: + default: '{{ .Values.component }}' + type: string + app.kubernetes.io/managed-by: + default: helm + type: string + app.kubernetes.io/name: + default: '{{ .Release.Name }}' + type: string + app.kubernetes.io/part-of: + default: dapr + type: string + app.kubernetes.io/version: + default: '{{ .Values.global.tag }}' + type: string + type: object + labels: + default: {} + type: object + logAsJson: + default: false + type: boolean + mtls: + properties: + allowedClockSkew: + default: 15m + type: string + controlPlaneTrustDomain: + default: cluster.local + type: string + enabled: + default: true + type: boolean + mountSentryVolume: + default: true + description: If set to true, a bound service account token will + be mounted and used to authenticate to Sentry. + type: boolean + workloadCertTTL: + default: 24h + type: string + type: object + nodeSelector: + default: {} + type: object + operator: + properties: + watchdogCanPatchPodLabels: + default: false + type: boolean + type: object + prometheus: + properties: + enabled: + default: true + type: boolean + port: + default: 9090 + type: integer + type: object + rbac: + properties: + namespaced: + default: false + type: boolean + type: object + registry: + default: docker.io/daprio + type: string + seccompProfile: + default: "" + type: string + tag: + default: 1.12.0 + type: string + tolerations: + default: [] + items: {} + type: array + type: object + type: object + version: 1.12.0 diff --git a/repo/packages/dapr.packages.kadras.io/metadata.yml b/repo/packages/dapr.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..6f2379a --- /dev/null +++ b/repo/packages/dapr.packages.kadras.io/metadata.yml @@ -0,0 +1,20 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: dapr.packages.kadras.io +spec: + categories: + - apis + - microservices + displayName: dapr + iconSVGBase64: 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 + longDescription: Dapr provides integrated APIs for communication, state, and workflow. + Dapr leverages industry best practices for security, resiliency, and observability, + so you can focus on your code. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: APIs for Building Secure and Reliable Microservices. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-dapr + for community support. From d25408ab5f9d327aded630062dc4bbd79addea36 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 11:02:40 +0100 Subject: [PATCH 382/601] Update Dapr metadata and add version 1.12.5 (#351) Co-authored-by: github-actions --- .../dapr.packages.kadras.io/1.12.5.yml | 186 ++++++++++++++++++ 1 file changed, 186 insertions(+) create mode 100644 repo/packages/dapr.packages.kadras.io/1.12.5.yml diff --git a/repo/packages/dapr.packages.kadras.io/1.12.5.yml b/repo/packages/dapr.packages.kadras.io/1.12.5.yml new file mode 100644 index 0000000..0c48415 --- /dev/null +++ b/repo/packages/dapr.packages.kadras.io/1.12.5.yml @@ -0,0 +1,186 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dapr.packages.kadras.io.1.12.5 +spec: + refName: dapr.packages.kadras.io + releasedAt: "2024-02-25T09:51:17Z" + template: + spec: + deploy: + - kapp: + intoNs: dapr-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dapr@sha256:47efd5342f40cd5f071423d2f8234612b359a1e2cb73d3f9a7030c9ee4959627 + template: + - helmTemplate: + name: dapr + namespace: dapr-system + path: config/helm/upstream/dapr + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + global: + properties: + actors: + description: 'sentry: placement: operator: injector:' + properties: + enabled: + default: true + type: boolean + type: object + argoRolloutServiceReconciler: + description: 'the issuerFilenames dictionary, if setup, have to contain + 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: + "tls.key"' + properties: + enabled: + default: false + type: boolean + type: object + daprControlPlaneOs: + default: linux + type: string + dnsSuffix: + default: .cluster.local + type: string + extraVolumeMounts: + default: {} + description: 'sentry: placement: operator: injector:' + type: object + extraVolumes: + default: {} + description: and extraVolumeMounts are used to mount additional volumes + to the Dapr control plane pods. Useful for using alternative authentication + credentials to sentry. + type: object + ha: + properties: + disruption: + properties: + maximumUnavailable: + default: 25% + type: string + minimumAvailable: + default: "" + type: string + type: object + enabled: + default: false + type: boolean + replicaCount: + default: 3 + type: integer + type: object + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: "" + description: 'To help compatibility with other charts which use global.imagePullSecrets. + Allow either a string with single imagepullsecret or an array of {name: + pullSecret} maps (k8s-style) or an array of strings (more common helm-style). + global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - + name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - + pullSecret1 - pullSecret2' + type: string + issuerFilenames: + default: {} + type: object + k8sLabels: + properties: + app.kubernetes.io/component: + default: '{{ .Values.component }}' + type: string + app.kubernetes.io/managed-by: + default: helm + type: string + app.kubernetes.io/name: + default: '{{ .Release.Name }}' + type: string + app.kubernetes.io/part-of: + default: dapr + type: string + app.kubernetes.io/version: + default: '{{ .Values.global.tag }}' + type: string + type: object + labels: + default: {} + type: object + logAsJson: + default: false + type: boolean + mtls: + properties: + allowedClockSkew: + default: 15m + type: string + controlPlaneTrustDomain: + default: cluster.local + type: string + enabled: + default: true + type: boolean + mountSentryVolume: + default: true + description: If set to true, a bound service account token will + be mounted and used to authenticate to Sentry. + type: boolean + workloadCertTTL: + default: 24h + type: string + type: object + nodeSelector: + default: {} + type: object + operator: + properties: + watchdogCanPatchPodLabels: + default: false + type: boolean + type: object + prometheus: + properties: + enabled: + default: true + type: boolean + port: + default: 9090 + type: integer + type: object + rbac: + properties: + namespaced: + default: false + type: boolean + type: object + registry: + default: docker.io/daprio + type: string + seccompProfile: + default: "" + type: string + tag: + default: 1.12.5 + type: string + tolerations: + default: [] + items: {} + type: array + type: object + type: object + version: 1.12.5 From e3b5d6f2abba09d7b3b07f295bf9da83b2162617 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 15:20:55 +0100 Subject: [PATCH 383/601] chore(deps): Remove deprecated dependencies --- .../argo-cd.packages.kadras.io/2.9.0.yml | 45 -- .../argo-cd.packages.kadras.io/2.9.2.yml | 45 -- .../argo-cd.packages.kadras.io/2.9.3.yml | 45 -- .../0.9.5.yml | 47 -- .../cartographer.packages.kadras.io/0.8.5.yml | 151 ---- .../0.2.2.yml | 59 -- .../1.13.2.yml | 145 ---- .../1.13.3.yml | 145 ---- .../contour.packages.kadras.io/1.27.0.yml | 211 ------ .../crossplane.packages.kadras.io/1.14.3.yml | 347 --------- .../crossplane.packages.kadras.io/1.14.5.yml | 347 --------- .../dapr.packages.kadras.io/1.12.0.yml | 186 ----- .../flux.packages.kadras.io/2.1.2.yml | 99 --- .../flux.packages.kadras.io/2.2.0.yml | 99 --- .../flux.packages.kadras.io/2.2.1.yml | 99 --- .../flux.packages.kadras.io/2.2.2.yml | 99 --- .../1.12.0.yml | 45 -- .../1.12.1.yml | 45 -- .../1.12.3.yml | 45 -- .../1.12.0.yml | 278 ------- .../1.12.1.yml | 278 ------- .../1.12.2.yml | 278 ------- .../1.12.3.yml | 278 ------- .../kpack.packages.kadras.io/0.12.2.yml | 156 ---- .../kpack.packages.kadras.io/0.12.3.yml | 156 ---- .../kyverno.packages.kadras.io/1.10.4.yml | 170 ----- .../kyverno.packages.kadras.io/1.10.5.yml | 170 ----- .../kyverno.packages.kadras.io/1.11.1.yml | 170 ----- .../kyverno.packages.kadras.io/1.11.3.yml | 170 ----- .../0.6.4.yml | 148 ---- .../0.15.1.yml | 35 - .../0.16.0.yml | 35 - .../0.3.2.yml | 67 -- .../0.53.0.yml | 684 ------------------ .../0.53.2.yml | 684 ------------------ 35 files changed, 6061 deletions(-) delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.9.0.yml delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.9.2.yml delete mode 100644 repo/packages/argo-cd.packages.kadras.io/2.9.3.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.9.5.yml delete mode 100644 repo/packages/cartographer.packages.kadras.io/0.8.5.yml delete mode 100644 repo/packages/cert-manager-issuers.packages.kadras.io/0.2.2.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.13.2.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.13.3.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.27.0.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.14.3.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.14.5.yml delete mode 100644 repo/packages/dapr.packages.kadras.io/1.12.0.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.1.2.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.2.0.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.2.1.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.2.2.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.12.0.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.12.1.yml delete mode 100644 repo/packages/knative-eventing.packages.kadras.io/1.12.3.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.12.0.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.12.1.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.12.2.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.12.3.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.12.2.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.12.3.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.10.4.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.10.5.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.11.1.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.11.3.yml delete mode 100644 repo/packages/metrics-server.packages.kadras.io/0.6.4.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.15.1.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.16.0.yml delete mode 100644 repo/packages/spring-boot-conventions.packages.kadras.io/0.3.2.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.53.0.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.53.2.yml diff --git a/repo/packages/argo-cd.packages.kadras.io/2.9.0.yml b/repo/packages/argo-cd.packages.kadras.io/2.9.0.yml deleted file mode 100644 index 67b5d5e..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.9.0.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.9.0 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases - releasedAt: "2023-11-11T08:33:47Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-argo-cd@sha256:f267063fdfdb79b455f29dcc04ac2f808a783370170ee1ac4943dceb5e3e27a3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.9.0 diff --git a/repo/packages/argo-cd.packages.kadras.io/2.9.2.yml b/repo/packages/argo-cd.packages.kadras.io/2.9.2.yml deleted file mode 100644 index c6a5bef..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.9.2.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.9.2 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases - releasedAt: "2023-11-25T17:08:47Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-argo-cd@sha256:146a2879b9264a0e4ed818161df419d20f9490df16decfa0242257388ce32051 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.9.2 diff --git a/repo/packages/argo-cd.packages.kadras.io/2.9.3.yml b/repo/packages/argo-cd.packages.kadras.io/2.9.3.yml deleted file mode 100644 index 13c5cbd..0000000 --- a/repo/packages/argo-cd.packages.kadras.io/2.9.3.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: argo-cd.packages.kadras.io.2.9.3 -spec: - licenses: - - Apache 2.0 - refName: argo-cd.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-argo-cd/releases - releasedAt: "2023-12-15T23:57:22Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-argo-cd@sha256:c616a26d83d522ec73aae3697acfc9e84136be31e884d15b884e9b45fd003acf - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: argocd - description: The namespace where to install Argo CD - type: string - service: - additionalProperties: false - description: Service configuration for the Argo CD Server - properties: - type: - default: ClusterIP - description: The Service type for the Argo CD Server - type: string - type: object - type: object - version: 2.9.3 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.5.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.5.yml deleted file mode 100644 index 984bb41..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.9.5.yml +++ /dev/null @@ -1,47 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.9.5 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2023-11-11T15:23:21Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:a9cb6c7a81f230e1fdf5aaca82eb36f97460e3679ee5a45c3ccbb5b14ab1a04a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.9.5 diff --git a/repo/packages/cartographer.packages.kadras.io/0.8.5.yml b/repo/packages/cartographer.packages.kadras.io/0.8.5.yml deleted file mode 100644 index f203a1c..0000000 --- a/repo/packages/cartographer.packages.kadras.io/0.8.5.yml +++ /dev/null @@ -1,151 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cartographer.packages.kadras.io.0.8.5 -spec: - licenses: - - Apache 2.0 - refName: cartographer.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cartographer/releases - releasedAt: "2023-11-11T14:41:05Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cartographer@sha256:287c3086e4fc8b7f213e4b1b4f70568298a4967c98f880a0fac9c51c2eab4df3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cartographer: - additionalProperties: false - description: Settings for the Cartographer component. - properties: - concurrency: - additionalProperties: false - description: Concurrency configuration for the Cartographer controller. - properties: - max_deliveries: - default: 2 - description: Maximum concurrent Deliveries processed by the Cartographer - controller. - type: integer - max_runnables: - default: 2 - description: Maximum concurrent Runnables processed by the Cartographer - controller. - type: integer - max_workloads: - default: 2 - description: Maximum concurrent Workloads processed by the Cartographer - controller. - type: integer - type: object - resources: - additionalProperties: false - description: CPU and memory configuration for the Cartographer controller. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "1" - description: CPU limits configuration for the Cartographer controller. - type: string - memory: - default: 1Gi - description: Memory limits configuration for the Cartographer - controller. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU requests configuration for the Cartographer - controller. - type: string - memory: - default: 512Mi - description: Memory requests configuration for the Cartographer - controller. - type: string - type: object - type: object - type: object - conventions: - additionalProperties: false - description: Settings for the Cartographer Conventions component. - properties: - resources: - additionalProperties: false - description: CPU and memory configuration for the Cartographer Conventions - controller. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 100m - description: CPU limits configuration for the Cartographer Conventions - controller. - type: string - memory: - default: 256Mi - description: Memory limits configuration for the Cartographer - Conventions controller. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 100m - description: CPU requests configuration for the Cartographer - Conventions controller. - type: string - memory: - default: 20Mi - description: Memory requests configuration for the Cartographer - Conventions controller. - type: string - type: object - type: object - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - level: - default: info - description: 'Log verbosity level. Options: `debug`, `info`, `error`.' - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Cartographer optional components to deploy. - properties: - cartographer_conventions: - default: true - description: Whether to deploy the Cartographer Conventions component. - type: boolean - type: object - type: object - version: 0.8.5 diff --git a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.2.yml b/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.2.yml deleted file mode 100644 index d4a0192..0000000 --- a/repo/packages/cert-manager-issuers.packages.kadras.io/0.2.2.yml +++ /dev/null @@ -1,59 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager-issuers.packages.kadras.io.0.2.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager-issuers.packages.kadras.io - releaseNotes: https://github.com/kadras-io/cert-manager-issuers/releases - releasedAt: "2023-08-12T12:43:20Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/cert-manager-issuers@sha256:3f1181c087d2d68984d6bf73122b3a77a6a8185bbedc4bacd609e2a84af3b50b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - staging: - default: true - description: Whether to use Let's Encrypt staging, recommended for non-production - environments. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace where cert-manager is deployed. - type: string - type: object - version: 0.2.2 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.13.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.13.2.yml deleted file mode 100644 index 71e804d..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.13.2.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.13.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-11-11T14:18:17Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:4849188358ffd47531d51dd2156589f16bf82cf75875d3972ea4f6f8ec87d269 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - probes: - additionalProperties: false - description: Settings for the cert-manager controller probes. - properties: - enabled: - default: false - description: 'Whether to enable to optional probes on the cert-manager - controller. It''s recommended not to enable this unless you encounter - issues with the controller Pods not restarting correctly. More - information: https://github.com/cert-manager/cert-manager/pull/5962.' - type: boolean - type: object - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.13.2 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.13.3.yml b/repo/packages/cert-manager.packages.kadras.io/1.13.3.yml deleted file mode 100644 index ee04319..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.13.3.yml +++ /dev/null @@ -1,145 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.13.3 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2023-12-16T00:16:21Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:b4348a3165dc0b671d246cb87c56f373d360cbc1c308e0029643be3c6cf6aabc - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - probes: - additionalProperties: false - description: Settings for the cert-manager controller probes. - properties: - enabled: - default: false - description: 'Whether to enable to optional probes on the cert-manager - controller. It''s recommended not to enable this unless you encounter - issues with the controller Pods not restarting correctly. More - information: https://github.com/cert-manager/cert-manager/pull/5962.' - type: boolean - type: object - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - lease_duration: - default: 60s - description: The duration that non-leader candidates will wait after - observing a leadership renewal until attempting to acquire leadership - of a led but unrenewed leader slot. This is effectively the maximum - duration that a leader can be stopped before it is replaced by another - candidate. - type: string - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility/#gke.' - type: string - renew_deadline: - default: 40s - description: The interval between attempts by the acting leader to renew - a leadership slot before it stops leading. - type: string - retry_period: - default: 15s - description: The duration the clients should wait between attempting - acquisition and renewal of a leadership. - type: string - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - secure_port: - default: 10250 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility/#aws-eks.' - type: integer - type: object - type: object - version: 1.13.3 diff --git a/repo/packages/contour.packages.kadras.io/1.27.0.yml b/repo/packages/contour.packages.kadras.io/1.27.0.yml deleted file mode 100644 index 99d3a53..0000000 --- a/repo/packages/contour.packages.kadras.io/1.27.0.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.27.0 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2023-11-11T08:19:36Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:ce220ef94525ca883c7ed0492b2125e1ff0c4931ee4578c1b628d26d0ee90d95 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configFileContents: - default: {} - description: The YAML contents of the Contour config file. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service in - case the `infrastructure_provider` doesn't enforce one already. - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy - in case the `infrastructure_provider` doesn't enforce one already. - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - dnsPolicy: - default: ClusterFirst - description: The DNS policy for the Envoy pods. - type: string - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, http & - https are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - type: string - type: object - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - type: string - type: object - version: 1.27.0 diff --git a/repo/packages/crossplane.packages.kadras.io/1.14.3.yml b/repo/packages/crossplane.packages.kadras.io/1.14.3.yml deleted file mode 100644 index 55f5341..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.14.3.yml +++ /dev/null @@ -1,347 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.14.3 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2023-11-27T21:12:12Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:999e81ebbc1c7e3dc9b461a4fb88be5195945b76f42bb60f0020e6199a183eb9 - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: '{}' - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - type: array - type: object - customAnnotations: - default: '{}' - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: '{}' - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - extraEnvVarsCrossplane: - default: '{}' - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: '{}' - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - type: array - extraVolumeMountsCrossplane: - default: '{}' - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: '{}' - description: Add custom `volumes` to the Crossplane pod. - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: '{}' - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - type: object - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: '{}' - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: '{}' - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: '{}' - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - type: array - type: object - rbacManager: - properties: - affinity: - default: '{}' - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - managementPolicy: - default: Basic - description: Defines the Roles and ClusterRoles the RBAC Manager creates - and manages. - A policy of `Basic` creates and binds Roles only for - the Crossplane ServiceAccount, Provider ServiceAccounts and creates - Crossplane ClusterRoles. - A policy of `All` includes all the `Basic` - settings and also creates Crossplane Roles in all namespaces. - Read - the Crossplane docs for more information on the [RBAC Roles and ClusterRoles](https://docs.crossplane.io/latest/concepts/pods/#crossplane-clusterroles) - type: string - nodeSelector: - default: '{}' - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - serviceAccount: - properties: - customAnnotations: - default: '{}' - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.14.3 diff --git a/repo/packages/crossplane.packages.kadras.io/1.14.5.yml b/repo/packages/crossplane.packages.kadras.io/1.14.5.yml deleted file mode 100644 index 99be520..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.14.5.yml +++ /dev/null @@ -1,347 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.14.5 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2024-01-10T21:40:56Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:8f66537ce768a71b04eee616b3b8312cd299f8a545a7488473d62f4926f5a024 - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: '{}' - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - type: array - type: object - customAnnotations: - default: '{}' - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: '{}' - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - extraEnvVarsCrossplane: - default: '{}' - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: '{}' - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - type: array - extraVolumeMountsCrossplane: - default: '{}' - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: '{}' - description: Add custom `volumes` to the Crossplane pod. - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: '{}' - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - type: object - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: '{}' - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: '{}' - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: '{}' - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - type: array - type: object - rbacManager: - properties: - affinity: - default: '{}' - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - managementPolicy: - default: Basic - description: Defines the Roles and ClusterRoles the RBAC Manager creates - and manages. - A policy of `Basic` creates and binds Roles only for - the Crossplane ServiceAccount, Provider ServiceAccounts and creates - Crossplane ClusterRoles. - A policy of `All` includes all the `Basic` - settings and also creates Crossplane Roles in all namespaces. - Read - the Crossplane docs for more information on the [RBAC Roles and ClusterRoles](https://docs.crossplane.io/latest/concepts/pods/#crossplane-clusterroles) - type: string - nodeSelector: - default: '{}' - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - serviceAccount: - properties: - customAnnotations: - default: '{}' - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.14.5 diff --git a/repo/packages/dapr.packages.kadras.io/1.12.0.yml b/repo/packages/dapr.packages.kadras.io/1.12.0.yml deleted file mode 100644 index c403663..0000000 --- a/repo/packages/dapr.packages.kadras.io/1.12.0.yml +++ /dev/null @@ -1,186 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dapr.packages.kadras.io.1.12.0 -spec: - refName: dapr.packages.kadras.io - releasedAt: "2024-02-25T08:33:19Z" - template: - spec: - deploy: - - kapp: - intoNs: dapr-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dapr@sha256:ec03eb98b1536c03d0e1a17e7799ae1f1ba6c0c35a19cc1d6d306886eff7fbb1 - template: - - helmTemplate: - name: dapr - namespace: dapr-system - path: config/helm/upstream/dapr - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - global: - properties: - actors: - description: 'sentry: placement: operator: injector:' - properties: - enabled: - default: true - type: boolean - type: object - argoRolloutServiceReconciler: - description: 'the issuerFilenames dictionary, if setup, have to contain - 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: - "tls.key"' - properties: - enabled: - default: false - type: boolean - type: object - daprControlPlaneOs: - default: linux - type: string - dnsSuffix: - default: .cluster.local - type: string - extraVolumeMounts: - default: {} - description: 'sentry: placement: operator: injector:' - type: object - extraVolumes: - default: {} - description: and extraVolumeMounts are used to mount additional volumes - to the Dapr control plane pods. Useful for using alternative authentication - credentials to sentry. - type: object - ha: - properties: - disruption: - properties: - maximumUnavailable: - default: 25% - type: string - minimumAvailable: - default: "" - type: string - type: object - enabled: - default: false - type: boolean - replicaCount: - default: 3 - type: integer - type: object - imagePullPolicy: - default: IfNotPresent - type: string - imagePullSecrets: - default: "" - description: 'To help compatibility with other charts which use global.imagePullSecrets. - Allow either a string with single imagepullsecret or an array of {name: - pullSecret} maps (k8s-style) or an array of strings (more common helm-style). - global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - - name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - - pullSecret1 - pullSecret2' - type: string - issuerFilenames: - default: {} - type: object - k8sLabels: - properties: - app.kubernetes.io/component: - default: '{{ .Values.component }}' - type: string - app.kubernetes.io/managed-by: - default: helm - type: string - app.kubernetes.io/name: - default: '{{ .Release.Name }}' - type: string - app.kubernetes.io/part-of: - default: dapr - type: string - app.kubernetes.io/version: - default: '{{ .Values.global.tag }}' - type: string - type: object - labels: - default: {} - type: object - logAsJson: - default: false - type: boolean - mtls: - properties: - allowedClockSkew: - default: 15m - type: string - controlPlaneTrustDomain: - default: cluster.local - type: string - enabled: - default: true - type: boolean - mountSentryVolume: - default: true - description: If set to true, a bound service account token will - be mounted and used to authenticate to Sentry. - type: boolean - workloadCertTTL: - default: 24h - type: string - type: object - nodeSelector: - default: {} - type: object - operator: - properties: - watchdogCanPatchPodLabels: - default: false - type: boolean - type: object - prometheus: - properties: - enabled: - default: true - type: boolean - port: - default: 9090 - type: integer - type: object - rbac: - properties: - namespaced: - default: false - type: boolean - type: object - registry: - default: docker.io/daprio - type: string - seccompProfile: - default: "" - type: string - tag: - default: 1.12.0 - type: string - tolerations: - default: [] - items: {} - type: array - type: object - type: object - version: 1.12.0 diff --git a/repo/packages/flux.packages.kadras.io/2.1.2.yml b/repo/packages/flux.packages.kadras.io/2.1.2.yml deleted file mode 100644 index cab288b..0000000 --- a/repo/packages/flux.packages.kadras.io/2.1.2.yml +++ /dev/null @@ -1,99 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.1.2 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2023-10-12T15:58:53Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:7578712bdbea14abe4f743294fbf0d0dd7e0bc456ae016ac3ac797ebf20ea855 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.1.2 diff --git a/repo/packages/flux.packages.kadras.io/2.2.0.yml b/repo/packages/flux.packages.kadras.io/2.2.0.yml deleted file mode 100644 index da3e102..0000000 --- a/repo/packages/flux.packages.kadras.io/2.2.0.yml +++ /dev/null @@ -1,99 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.2.0 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2023-12-12T19:27:24Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:d09794d2ec31c95f90dd92f691ef32f0a000e3232fe09bed875dd0bcfc927513 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.2.0 diff --git a/repo/packages/flux.packages.kadras.io/2.2.1.yml b/repo/packages/flux.packages.kadras.io/2.2.1.yml deleted file mode 100644 index d0b05e6..0000000 --- a/repo/packages/flux.packages.kadras.io/2.2.1.yml +++ /dev/null @@ -1,99 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.2.1 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2023-12-15T23:03:44Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:066ebbc65daeaf027dfecf1be15cb3ca7784861a2606082b77d2c1536ff4f26f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.2.1 diff --git a/repo/packages/flux.packages.kadras.io/2.2.2.yml b/repo/packages/flux.packages.kadras.io/2.2.2.yml deleted file mode 100644 index 7d2e03b..0000000 --- a/repo/packages/flux.packages.kadras.io/2.2.2.yml +++ /dev/null @@ -1,99 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.2.2 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2024-01-10T21:53:28Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:da8f1d66e8f5dcf655f2e8401151c553c1571d86296612359525c6a718310f44 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.2.2 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.12.0.yml b/repo/packages/knative-eventing.packages.kadras.io/1.12.0.yml deleted file mode 100644 index 2a3e97d..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.12.0.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.12.0 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases - releasedAt: "2023-11-11T14:30:52Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:74056e9eb681bf791eb8ce7637a79c1c0a26295afbeb98b25e70343d9cbf4d91 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.12.0 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.12.1.yml b/repo/packages/knative-eventing.packages.kadras.io/1.12.1.yml deleted file mode 100644 index 3a877e9..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.12.1.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.12.1 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases - releasedAt: "2023-12-15T23:43:01Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:77ed3292579b744c37d2ae49ff41c65629d5b6a8ecf8e46089022a5ff2acb3f5 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.12.1 diff --git a/repo/packages/knative-eventing.packages.kadras.io/1.12.3.yml b/repo/packages/knative-eventing.packages.kadras.io/1.12.3.yml deleted file mode 100644 index 5c77923..0000000 --- a/repo/packages/knative-eventing.packages.kadras.io/1.12.3.yml +++ /dev/null @@ -1,45 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-eventing.packages.kadras.io.1.12.3 -spec: - licenses: - - Apache 2.0 - refName: knative-eventing.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-eventing/releases - releasedAt: "2024-01-10T21:59:36Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-eventing@sha256:b73f3cb717604c65b08d6de05d7cc4d7d9cddb7b6c28d31da1bd0cd52f8828ca - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - default_broker: - additionalProperties: false - description: Configuration for the default in-memory broker - properties: - enabled: - default: false - description: Whether to install the default in-memory broker - type: boolean - namespace: - default: default - description: The namespace where to install the default broker - type: string - type: object - type: object - version: 1.12.3 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.12.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.12.0.yml deleted file mode 100644 index 96ec843..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.12.0.yml +++ /dev/null @@ -1,278 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.12.0 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-11-11T14:24:12Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:0d01c53ac67801d397f0ba98b12f59e39a480133257b6d0595771b41def5282c - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.12.0 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.12.1.yml b/repo/packages/knative-serving.packages.kadras.io/1.12.1.yml deleted file mode 100644 index 0c5907b..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.12.1.yml +++ /dev/null @@ -1,278 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.12.1 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-11-25T17:24:34Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:8f8e2623387d7c14bcb0c89a65927d1446939fba937ee00ad0a00af8d3b395aa - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.12.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.12.2.yml b/repo/packages/knative-serving.packages.kadras.io/1.12.2.yml deleted file mode 100644 index 2b5c4b9..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.12.2.yml +++ /dev/null @@ -1,278 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.12.2 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2023-12-15T23:54:47Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:1f68d5372e9e611e909ddaf93e1387f04e1178a4c3c57a86634d1abc29443f0b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.12.2 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.12.3.yml b/repo/packages/knative-serving.packages.kadras.io/1.12.3.yml deleted file mode 100644 index c3d553d..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.12.3.yml +++ /dev/null @@ -1,278 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.12.3 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2024-01-10T22:10:40Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:0e481f8460615deacc653589c9544226b3265c7a315472569ce672082efb6afd - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - type: integer - type: object - type: object - type: object - version: 1.12.3 diff --git a/repo/packages/kpack.packages.kadras.io/0.12.2.yml b/repo/packages/kpack.packages.kadras.io/0.12.2.yml deleted file mode 100644 index 7dcc967..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.12.2.yml +++ /dev/null @@ -1,156 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.12.2 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kpack/releases - releasedAt: "2023-10-12T15:42:02Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kpack@sha256:b32514f89c851fa29da7db20e1cc1461c01e2d9032cc4ed920654531df788408 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'PEM-encoded certificate data that kpack controller will use - to trust TLS connections based on a custom CA with a container registry. - Note: This will not be injected into builds, you need to use the cert - injection webhook with the `kpack.io/build` label value.' - type: string - config: - additionalProperties: false - description: Settings for kpack. - properties: - injected_sidecar_support: - default: false - description: Enable support for injected sidecars. - type: boolean - type: object - controller: - additionalProperties: false - description: Settings for the the kpack controller. - properties: - resources: - additionalProperties: false - description: Resource configuration for the kpack-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory limits configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `500Mi`. - type: string - type: object - requests: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory requests configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `100Mi`. - type: string - type: object - type: object - type: object - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to access the default container repository - if the registry is on AWS. - nullable: true - type: string - credentials: - additionalProperties: false - description: Read/write credentials to access the default container - repository. - nullable: true - properties: - password: - default: "" - description: 'Token to access the default container repository. - Note: Use contents of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the default container repository. - Note: Use `_json_key` for GCR.' - type: string - type: object - name: - default: "" - description: The default repository to use for builder images and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the default container repository. - nullable: true - properties: - create_export: - default: false - description: Whether to create a SecretExport resource to export - the Secret from the source namespace to the kpack namespace. Not - needed when installing kpack as part of the Kadras Enginnering - Platform. - type: boolean - name: - default: "" - description: The name of the Secret holding the credentials to access - the default container repository. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the default container repository. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy (e.g. Kubernetes - API address). - type: string - type: object - type: object - version: 0.12.2 diff --git a/repo/packages/kpack.packages.kadras.io/0.12.3.yml b/repo/packages/kpack.packages.kadras.io/0.12.3.yml deleted file mode 100644 index af40411..0000000 --- a/repo/packages/kpack.packages.kadras.io/0.12.3.yml +++ /dev/null @@ -1,156 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kpack.packages.kadras.io.0.12.3 -spec: - capacityRequirementsDescription: Container registry with > 1GB available space - licenses: - - Apache 2.0 - refName: kpack.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kpack/releases - releasedAt: "2023-11-25T17:33:05Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kpack@sha256:d48310adb41cc077f1828209e33b5e29b038070fc3b6fc2ecdd9bbe80e3002f6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: 'PEM-encoded certificate data that kpack controller will use - to trust TLS connections based on a custom CA with a container registry. - Note: This will not be injected into builds, you need to use the cert - injection webhook with the `kpack.io/build` label value.' - type: string - config: - additionalProperties: false - description: Settings for kpack. - properties: - injected_sidecar_support: - default: false - description: Enable support for injected sidecars. - type: boolean - type: object - controller: - additionalProperties: false - description: Settings for the the kpack controller. - properties: - resources: - additionalProperties: false - description: Resource configuration for the kpack-controller Deployment. - properties: - limits: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory limits configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `500Mi`. - type: string - type: object - requests: - additionalProperties: false - properties: - memory: - default: 1Gi - description: Memory requests configuration for the kpack-controller - Deployment. In a resource-constrained environment, you can - lower this up to `100Mi`. - type: string - type: object - type: object - type: object - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - properties: - aws_iam_role_arn: - default: null - description: IAM credentials to access the default container repository - if the registry is on AWS. - nullable: true - type: string - credentials: - additionalProperties: false - description: Read/write credentials to access the default container - repository. - nullable: true - properties: - password: - default: "" - description: 'Token to access the default container repository. - Note: Use contents of service account key json for GCR.' - type: string - username: - default: "" - description: 'Username to access the default container repository. - Note: Use `_json_key` for GCR.' - type: string - type: object - name: - default: "" - description: The default repository to use for builder images and dependencies. - example: ghcr.io/thomasvitale/buildpacks - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the default container repository. - nullable: true - properties: - create_export: - default: false - description: Whether to create a SecretExport resource to export - the Secret from the source namespace to the kpack namespace. Not - needed when installing kpack as part of the Kadras Enginnering - Platform. - type: boolean - name: - default: "" - description: The name of the Secret holding the credentials to access - the default container repository. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the default container repository. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy (e.g. Kubernetes - API address). - type: string - type: object - type: object - version: 0.12.3 diff --git a/repo/packages/kyverno.packages.kadras.io/1.10.4.yml b/repo/packages/kyverno.packages.kadras.io/1.10.4.yml deleted file mode 100644 index b329eb8..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.10.4.yml +++ /dev/null @@ -1,170 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.10.4 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2023-11-11T08:08:19Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:e2faab0fb010f51250b268d3ec6a44cf135083e4d135a3e132de090e46ec00dd - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.10.4 diff --git a/repo/packages/kyverno.packages.kadras.io/1.10.5.yml b/repo/packages/kyverno.packages.kadras.io/1.10.5.yml deleted file mode 100644 index 8d18895..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.10.5.yml +++ /dev/null @@ -1,170 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.10.5 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2023-11-25T17:44:22Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:0ff3ed9ab6deac9c1f639822c8eb892b1a8fdd36a25a2819ba1c45a8cecb332b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.10.5 diff --git a/repo/packages/kyverno.packages.kadras.io/1.11.1.yml b/repo/packages/kyverno.packages.kadras.io/1.11.1.yml deleted file mode 100644 index e244794..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.11.1.yml +++ /dev/null @@ -1,170 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.11.1 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2023-12-15T23:36:50Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:55c88b2104f0bf296f689b62e447d0eb1b6a26c3d172a8e824cb78f192c88853 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.11.1 diff --git a/repo/packages/kyverno.packages.kadras.io/1.11.3.yml b/repo/packages/kyverno.packages.kadras.io/1.11.3.yml deleted file mode 100644 index 6eed803..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.11.3.yml +++ /dev/null @@ -1,170 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.11.3 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2024-01-10T22:20:31Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:35bd1342b4c2ae27bce3c4af3419270e071fca73a00d9fc63816658aa85c9671 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.11.3 diff --git a/repo/packages/metrics-server.packages.kadras.io/0.6.4.yml b/repo/packages/metrics-server.packages.kadras.io/0.6.4.yml deleted file mode 100644 index d518635..0000000 --- a/repo/packages/metrics-server.packages.kadras.io/0.6.4.yml +++ /dev/null @@ -1,148 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: metrics-server.packages.kadras.io.0.6.4 -spec: - licenses: - - Apache 2.0 - refName: metrics-server.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases - releasedAt: "2023-08-12T13:10:54Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-metrics-server@sha256:b17b5f6f266b64df37adc5dd56a78dd35ff19dc5ebcc59d9dc688dba0c51e5a3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - daemonset: - additionalProperties: false - properties: - updateStrategy: - default: null - description: Update strategy of daemonsets - nullable: true - type: string - type: object - deployment: - additionalProperties: false - properties: - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: null - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - nullable: true - type: integer - maxUnavailable: - default: null - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - nullable: true - type: integer - type: object - updateStrategy: - default: null - description: Update strategy of deployments - nullable: true - type: string - type: object - metricsServer: - additionalProperties: false - properties: - config: - additionalProperties: false - properties: - apiServiceInsecureTLS: - default: true - description: Whether to enable insecure TLS for metrics-server api - service - type: boolean - args: - default: [] - description: Arguments passed into metrics-server container - items: - default: "" - type: string - type: array - probe: - additionalProperties: false - properties: - failureThreshold: - default: 3 - description: Probe failureThreshold of metrics-server deployment - type: integer - periodSeconds: - default: 10 - description: Probe period of metrics-server deployment - type: integer - type: object - securePort: - default: 4443 - description: The HTTPS secure port used by metrics-server - type: integer - tolerations: - default: [] - description: Metrics-server deployment tolerations - nullable: true - updateStrategy: - default: RollingUpdate - description: The update strategy of the metrics-server deployment - type: string - type: object - createNamespace: - default: true - description: Whether to create namespace specified for metrics-server - type: boolean - image: - additionalProperties: false - properties: - name: - default: "" - description: The path of image - type: string - pullPolicy: - default: IfNotPresent - description: The pull policy of image - type: string - repository: - default: "" - description: The repository of metrics-server image - type: string - tag: - default: "" - description: The image tag - type: string - type: object - namespace: - default: null - description: The namespace value used by older templates, will be overwriten - if top level namespace is present, kept for backward compatibility - nullable: true - type: string - type: object - namespace: - default: kube-system - description: The namespace in which metrics-server is deployed - type: string - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - type: object - version: 0.6.4 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.15.1.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.15.1.yml deleted file mode 100644 index e502ca1..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.15.1.yml +++ /dev/null @@ -1,35 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.15.1 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases - releasedAt: "2023-11-11T13:47:19Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:65dc381af4a8da10bd3f3fc192b7da7c6b750e732db7f6b5e3244669d539f866 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.15.1 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.16.0.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.16.0.yml deleted file mode 100644 index d42d69e..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.16.0.yml +++ /dev/null @@ -1,35 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.16.0 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases - releasedAt: "2023-12-16T00:05:18Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:ff1486260339593ccba44e94aa853b14aa624a71703db43c93624c4cc55d44a3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.16.0 diff --git a/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.2.yml b/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.2.yml deleted file mode 100644 index 9ed4653..0000000 --- a/repo/packages/spring-boot-conventions.packages.kadras.io/0.3.2.yml +++ /dev/null @@ -1,67 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: spring-boot-conventions.packages.kadras.io.0.3.2 -spec: - licenses: - - Apache 2.0 - refName: spring-boot-conventions.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-spring-boot-conventions/releases - releasedAt: "2023-11-11T15:23:26Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-spring-boot-conventions@sha256:3142ac17c4c8677af95c7a423db1eb10222197c39a32d4546b7e8090d4c79f94 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - namespace: - default: spring-boot-conventions - description: The namespace where to install Spring Boot Conventions - type: string - resources: - additionalProperties: false - description: Resource configuration for the Convention Server - properties: - limits: - additionalProperties: false - description: Resource limits - properties: - cpu: - default: 100m - description: CPU limits - type: string - memory: - default: 256Mi - description: Memory limits - type: string - type: object - requests: - additionalProperties: false - description: Resource requests - properties: - cpu: - default: 100m - description: CPU requests - type: string - memory: - default: 20Mi - description: Memory requests - type: string - type: object - type: object - type: object - version: 0.3.2 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.53.0.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.53.0.yml deleted file mode 100644 index e5f6ad7..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.53.0.yml +++ /dev/null @@ -1,684 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.53.0 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-11-11T13:49:25Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:db2fab6fe0de203fc15fb2bd43ee6a2c96d5a218d2258ec8c948b76344b81f66 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config-defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - default-affinity-assistant-pod-template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - default-forbidden-env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - default-managed-by-label-value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - default-max-matrix-combinations-count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - default-pod-template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - default-resolver-type: - default: "" - description: The default resolver type to be used in the cluster. - type: string - default-service-account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - default-task-run-workspace-binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - default-timeout-minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - config-events: - additionalProperties: false - description: Events configuration stored in the `config-events` ConfigMap. - properties: - sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, and - CustomRun. If no sink is specified, no CloudEvent is generated. - type: string - type: object - config-leader-election-controller: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election-controller` - ConfigMap. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-leader-election-events: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election-events` - ConfigMap. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-leader-election-resolvers: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election-resolvers` - ConfigMap. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-leader-election-webhook: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election-webhook` - ConfigMap. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel.controller: - default: info - description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` - Deployments. - type: string - loglevel.webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - zap-logger-config: - default: | - { - "level": "info", - "development": false, - "sampling": { - "initial": 100, - "thereafter": 100 - }, - "outputPaths": ["stdout"], - "errorOutputPaths": ["stderr"], - "encoding": "json", - "encoderConfig": { - "timeKey": "timestamp", - "levelKey": "severity", - "nameKey": "logger", - "callerKey": "caller", - "messageKey": "message", - "stacktraceKey": "stacktrace", - "lineEnding": "", - "levelEncoder": "", - "timeEncoder": "iso8601", - "durationEncoder": "", - "callerEncoder": "" - } - } - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - config-observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics.allow-stackdriver-custom-metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver using - 'global' resource type and custom metric type. Ignore if `backend_destination` - is not `stackdriver`. - type: string - metrics.backend-destination: - default: prometheus - description: The destination for the metrics produced by the Tekton - components. - type: string - metrics.count.enable-reason: - default: "false" - description: Whether to include the reason as part of the count metrics - for failed PipelineRuns and TaskRuns. - type: string - metrics.pipelinerun.duration-type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram value - isn’t available when the `pipelinerun` level is selected. - type: string - metrics.pipelinerun.level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling which labels - are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), - (namespace).' - type: string - metrics.stackdriver-project-id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the cluster's - project if this field is not provided. - type: string - metrics.taskrun.duration-type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram value - isn’t available when the `taskrun` level is selected. - type: string - metrics.taskrun.level: - default: task - description: 'Level for the TaskRun metrics controlling which labels - are included: (taskrun, task, namespace), (task, namespace), (namespace).' - type: string - type: object - config-tracing: - additionalProperties: false - description: Tracing configuration stored in the `config-tracing` ConfigMap. - properties: - enabled: - default: "false" - description: Enable sending traces to defined endpoint by setting this - to `true`. - type: string - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces using the Jaeger protocol. - example: http://tempo.observability.svc.cluster.local:14268/api/traces - type: string - x-example-description: Grafana Tempo tracing backend - type: object - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - events: - additionalProperties: false - description: Settings for the `tekton-events-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-events-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - artifact_hub_url: - default: https://artifacthub.io/ - description: The Artifact Hub API used by the Hub Resolver to resolve - remote pipelines and tasks. - type: string - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - tekton_hub_url: - default: https://api.hub.tekton.dev/ - description: The Tekton Hub API used by the Hub Resolver to resolve - remote pipelines and tasks. - type: string - type: object - type: object - feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await-sidecar-readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - coschedule: - default: workspaces - description: 'Setting this flag will determine how PipelineRun Pods - are scheduled with Affinity Assistant. Options: `workspaces`, `pipelineruns`, - `isolate-pipelinerun`, `disabled`.' - type: string - disable-creds-init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable-api-fields: - default: beta - description: Setting this flag will determine which gated features are - enabled. - type: string - enable-cel-in-whenexpression: - default: "false" - description: Setting this flag to `true` will enable the CEL evaluation - in WhenExpression. - type: string - enable-provenance-in-status: - default: "true" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable-step-actions: - default: "false" - description: 'Setting this flag to `true` will enable the use of StepActions - in Steps. This feature is in preview mode and not implemented yet. - Please check #7259 for updates.' - type: string - enable-tekton-oci-bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce-nonfalsifiability: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - keep-pod-on-cancel: - default: "false" - description: Setting this flag to `true` will keep pod on cancellation - allowing examination of the logs on the pods from cancelled taskruns. - type: string - max-result-size: - default: "4096" - description: Setting this flag will determine the upper limit of each - task result. This flag is optional and only associated with the previous - flag, `results-from`. When `results-from` is set to `sidecar-logs`, - this flag can be used to configure the upper limit of a task result. - type: string - require-git-ssh-secret-known-hosts: - default: "true" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - results-from: - default: termination-message - description: Setting this flag will determine how Tekton pipelines will - handle extracting results from the task. Acceptable values are `termination-message` - or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus - should still be considered an alpha feature. - type: string - running-in-environment-with-injected-sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send-cloudevents-for-runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - set-security-context: - default: "false" - description: Setting this flag to `true` will limit privileges for containers - injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces - with `restricted` pod security standards. Not all Kubernetes implementations - support this option. - type: string - trusted-resources-verification-no-match-policy: - default: ignore - description: This flag affects the behavior of taskruns and pipelineruns - in cases where no VerificationPolicies match them. If it is set to - `fail`, TaskRuns and PipelineRuns will fail verification if no matching - policies are found. If it is set to `warn`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and an error - will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and no error - will be logged. - type: string - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundleresolver-config: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default-kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default-service-account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster-resolver-config: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - git-resolver-config: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api-token-secret-key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api-token-secret-name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api-token-secret-namespace: - default: default - description: The namespace containing the API token secret. - type: string - default-org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default-revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default-url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch-timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm-type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server-url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hubresolver-config: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default-artifact-hub-pipeline-catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default-artifact-hub-task-catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-tekton-hub-catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default-type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - resolvers-feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable-bundles-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable-cluster-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable-git-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable-hub-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.53.0 diff --git a/repo/packages/tekton-pipelines.packages.kadras.io/0.53.2.yml b/repo/packages/tekton-pipelines.packages.kadras.io/0.53.2.yml deleted file mode 100644 index a2204e0..0000000 --- a/repo/packages/tekton-pipelines.packages.kadras.io/0.53.2.yml +++ /dev/null @@ -1,684 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tekton-pipelines.packages.kadras.io.0.53.2 -spec: - licenses: - - Apache 2.0 - refName: tekton-pipelines.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tekton-pipelines/releases - releasedAt: "2023-11-25T17:59:22Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tekton-pipelines@sha256:5272bb1bedbada40bdb1df31fb1dd4b0852ab7a0927b551ea0a21424540e2431 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config-defaults: - additionalProperties: false - description: Default configuration stored in the `config-defaults` ConfigMap. - properties: - default-affinity-assistant-pod-template: - default: "" - description: Pod template to use for affinity assistant Pods. - type: string - default-forbidden-env: - default: "" - description: Comma seperated environment variables that cannot be overridden - by PodTemplate. - type: string - default-managed-by-label-value: - default: tekton-pipelines - description: Value given to the `app.kubernetes.io/managed-by` label - applied to all Pods created for TaskRuns. - type: string - default-max-matrix-combinations-count: - default: "256" - description: Maximum number of combinations from a Matrix, if none is - specified. - type: string - default-pod-template: - default: "" - description: Pod template to use for TaskRun and PipelineRun. - type: string - default-resolver-type: - default: "" - description: The default resolver type to be used in the cluster. - type: string - default-service-account: - default: default - description: Service account name to use for TaskRun and PipelineRun, - if none is specified. - type: string - default-task-run-workspace-binding: - default: | - emptyDir: {} - description: Workspace configuration provided for any Workspaces that - a Task declares but that a TaskRun does not explicitly provide. - type: string - default-timeout-minutes: - default: "60" - description: Number of minutes to use for TaskRun and PipelineRun, if - none is specified. - type: string - type: object - config-events: - additionalProperties: false - description: Events configuration stored in the `config-events` ConfigMap. - properties: - sink: - default: "" - description: CloudEvents sink to be used for TaskRun, PipelineRun, and - CustomRun. If no sink is specified, no CloudEvent is generated. - type: string - type: object - config-leader-election-controller: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election-controller` - ConfigMap. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-leader-election-events: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election-events` - ConfigMap. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-leader-election-resolvers: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election-resolvers` - ConfigMap. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-leader-election-webhook: - additionalProperties: false - description: Leader election configuration stored in the `config-leader-election-webhook` - ConfigMap. - properties: - buckets: - default: "1" - description: The number of buckets used to partition key space of each - Reconciler. If this number is M and the replica number of the controller - is N, the N replicas will compete for the M buckets. The owner of - a bucket will take care of the reconciling for the keys partitioned - into that bucket. The maximum value of at this time is 10. - type: string - lease-duration: - default: 60s - description: How long non-leaders will wait to try to acquire the lock; - 15 seconds is the value used by core Kubernetes controllers. - type: string - renew-deadline: - default: 40s - description: How long a leader will try to renew the lease before giving - up; 10 seconds is the value used by core Kubernetes controllers. - type: string - retry-period: - default: 10s - description: How long the leader election client waits between tries - of actions; 2 seconds is the value used by core Kubernetes controllers. - type: string - type: object - config-logging: - additionalProperties: false - description: Logging configuration stored in the `config-logging` ConfigMaps - and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - loglevel.controller: - default: info - description: Log level for the `tekton-pipelines-controller` and `tekton-pipelines-resolvers` - Deployments. - type: string - loglevel.webhook: - default: info - description: Log level for the `tekton-pipelines-webhook` Deployment. - type: string - zap-logger-config: - default: | - { - "level": "info", - "development": false, - "sampling": { - "initial": 100, - "thereafter": 100 - }, - "outputPaths": ["stdout"], - "errorOutputPaths": ["stderr"], - "encoding": "json", - "encoderConfig": { - "timeKey": "timestamp", - "levelKey": "severity", - "nameKey": "logger", - "callerKey": "caller", - "messageKey": "message", - "stacktraceKey": "stacktrace", - "lineEnding": "", - "levelEncoder": "", - "timeEncoder": "iso8601", - "durationEncoder": "", - "callerEncoder": "" - } - } - description: Configuration for the zap logger used by all Tekton containers. - type: string - type: object - config-observability: - additionalProperties: false - description: Observability configuration stored in the `config-observability` - ConfigMaps and used in both Tekton Pipelines and Tekton Pipelines Resolvers. - properties: - metrics.allow-stackdriver-custom-metrics: - default: "false" - description: Whether it is allowed to send metrics to Stackdriver using - 'global' resource type and custom metric type. Ignore if `backend_destination` - is not `stackdriver`. - type: string - metrics.backend-destination: - default: prometheus - description: The destination for the metrics produced by the Tekton - components. - type: string - metrics.count.enable-reason: - default: "false" - description: Whether to include the reason as part of the count metrics - for failed PipelineRuns and TaskRuns. - type: string - metrics.pipelinerun.duration-type: - default: histogram - description: Duration type for the PipelineRun metrics. Histogram value - isn’t available when the `pipelinerun` level is selected. - type: string - metrics.pipelinerun.level: - default: pipeline - description: 'Level for the PipelineRun metrics controlling which labels - are included: (pipelinerun, pipeline, namespace), (pipeline, namespace), - (namespace).' - type: string - metrics.stackdriver-project-id: - default: "" - description: The Stackdriver project ID. When running on GCE, application - default credentials will be used and metrics will be sent to the cluster's - project if this field is not provided. - type: string - metrics.taskrun.duration-type: - default: histogram - description: Duration type for the TaskRun metrics. Histogram value - isn’t available when the `taskrun` level is selected. - type: string - metrics.taskrun.level: - default: task - description: 'Level for the TaskRun metrics controlling which labels - are included: (taskrun, task, namespace), (task, namespace), (namespace).' - type: string - type: object - config-tracing: - additionalProperties: false - description: Tracing configuration stored in the `config-tracing` ConfigMap. - properties: - enabled: - default: "false" - description: Enable sending traces to defined endpoint by setting this - to `true`. - type: string - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces using the Jaeger protocol. - example: http://tempo.observability.svc.cluster.local:14268/api/traces - type: string - x-example-description: Grafana Tempo tracing backend - type: object - controllers: - additionalProperties: false - description: Settings for the Tekton Pipelines controllers. - properties: - events: - additionalProperties: false - description: Settings for the `tekton-events-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-events-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - pipelines: - additionalProperties: false - description: Settings for the `tekton-pipelines-controller` Deployment. - properties: - replicas: - default: 1 - description: The number of replicas for the `tekton-pipelines-controller` - Deployment. In order to enable high availability, it should be - greater than 1. - type: integer - type: object - resolvers: - additionalProperties: false - description: Settings for the `tekton-pipelines-remote-resolvers` Deployment. - properties: - artifact_hub_url: - default: https://artifacthub.io/ - description: The Artifact Hub API used by the Hub Resolver to resolve - remote pipelines and tasks. - type: string - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - it should be greater than 1. - type: integer - tekton_hub_url: - default: https://api.hub.tekton.dev/ - description: The Tekton Hub API used by the Hub Resolver to resolve - remote pipelines and tasks. - type: string - type: object - type: object - feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `feature-flags` ConfigMap. - properties: - await-sidecar-readiness: - default: "true" - description: Setting this flag to `false` will stop Tekton from waiting - for a TaskRun's sidecar containers to be running before starting the - first step. This will allow Tasks to be run in environments that don't - support the DownwardAPI volume type, but may lead to unintended behaviour - if sidecars are used. - type: string - coschedule: - default: workspaces - description: 'Setting this flag will determine how PipelineRun Pods - are scheduled with Affinity Assistant. Options: `workspaces`, `pipelineruns`, - `isolate-pipelinerun`, `disabled`.' - type: string - disable-creds-init: - default: "false" - description: Setting this flag to `true` will prevent Tekton scanning - attached service accounts and injecting any credentials it finds into - your Steps. - type: string - enable-api-fields: - default: beta - description: Setting this flag will determine which gated features are - enabled. - type: string - enable-cel-in-whenexpression: - default: "false" - description: Setting this flag to `true` will enable the CEL evaluation - in WhenExpression. - type: string - enable-provenance-in-status: - default: "true" - description: Setting this flag to `true` enables populating the `provenance` - field in TaskRun and PipelineRun status. This field contains metadata - about resources used in the TaskRun/PipelineRun such as the source - from where a remote Task/Pipeline definition was fetched. - type: string - enable-step-actions: - default: "false" - description: 'Setting this flag to `true` will enable the use of StepActions - in Steps. This feature is in preview mode and not implemented yet. - Please check #7259 for updates.' - type: string - enable-tekton-oci-bundles: - default: "false" - description: Setting this flag to `true` enables the use of Tekton OCI - bundle. This is an experimental feature and thus should still be considered - an alpha feature. - type: string - enforce-nonfalsifiability: - default: none - description: Setting this flag will determine how Tekton Pipelines will - handle non-falsifiable provenance. If set to `spire`, then SPIRE will - be used to ensure non-falsifiable provenance. If set to `none`, then - Tekton will not have non-falsifiable provenance. This is an experimental - feature and thus should still be considered an alpha feature. - type: string - keep-pod-on-cancel: - default: "false" - description: Setting this flag to `true` will keep pod on cancellation - allowing examination of the logs on the pods from cancelled taskruns. - type: string - max-result-size: - default: "4096" - description: Setting this flag will determine the upper limit of each - task result. This flag is optional and only associated with the previous - flag, `results-from`. When `results-from` is set to `sidecar-logs`, - this flag can be used to configure the upper limit of a task result. - type: string - require-git-ssh-secret-known-hosts: - default: "true" - description: Setting this flag to `true` will require that any Git SSH - Secret offered to Tekton must have `known_hosts` included. - type: string - results-from: - default: termination-message - description: Setting this flag will determine how Tekton pipelines will - handle extracting results from the task. Acceptable values are `termination-message` - or `sidecar-logs`. `sidecar-logs` is an experimental feature and thus - should still be considered an alpha feature. - type: string - running-in-environment-with-injected-sidecars: - default: "true" - description: This option should be set to `false` when Pipelines is - running in a cluster that does not use injected sidecars such as Istio. - Setting it to false should decrease the time it takes for a TaskRun - to start running. For clusters that use injected sidecars, setting - this option to false can lead to unexpected behavior. - type: string - send-cloudevents-for-runs: - default: "false" - description: Setting this flag to `true` enables CloudEvents for CustomRuns - and Runs, as long as a CloudEvents sink is configured in the `config-defaults` - ConfigMap. - type: string - set-security-context: - default: "false" - description: Setting this flag to `true` will limit privileges for containers - injected by Tekton into TaskRuns. This allows TaskRuns to run in namespaces - with `restricted` pod security standards. Not all Kubernetes implementations - support this option. - type: string - trusted-resources-verification-no-match-policy: - default: ignore - description: This flag affects the behavior of taskruns and pipelineruns - in cases where no VerificationPolicies match them. If it is set to - `fail`, TaskRuns and PipelineRuns will fail verification if no matching - policies are found. If it is set to `warn`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and an error - will be logged. If it is set to `ignore`, TaskRuns and PipelineRuns - will run to completion if no matching policies are found, and no error - will be logged. - type: string - type: object - opentelemetry: - additionalProperties: false - description: Settings for the OpenTelemetry support. - properties: - exporter: - additionalProperties: false - description: Settings for the OpenTelemetry exporter - properties: - jaeger: - additionalProperties: false - description: Configuration for the OpenTelemetry exporter based - on the Jaeger protocol. - properties: - password: - default: "" - description: The password/token to authenticate with the distributed - tracing backend. - type: string - username: - default: "" - description: The username to access the distributed tracing - backend. - type: string - type: object - type: object - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - resolvers: - additionalProperties: false - description: Configuration for the Tekton Resolvers, responsible for resolving - requests for Tasks and Pipelines from remote locations. - properties: - bundleresolver-config: - additionalProperties: false - description: Configuration for the bundle resolver stored in the `bundleresolver-config` - ConfigMap. - properties: - default-kind: - default: task - description: The default resource kind to pull out of the bundle. - type: string - default-service-account: - default: default - description: The default name of the service account to use when - constructing registry credentials. - type: string - type: object - cluster-resolver-config: - additionalProperties: false - description: Configuration for the cluster resolver stored in the `cluster-resolver-config` - ConfigMap. - properties: - allowed-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is allowed to access. Defaults to empty, meaning all namespaces - are allowed. - type: string - blocked-namespaces: - default: "" - description: A comma-separated list of namespaces which the resolver - is blocked from accessing. Defaults to empty, meaning all namespaces - are allowed. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-namespace: - default: "" - description: The default namespace to fetch resources from. - type: string - type: object - git-resolver-config: - additionalProperties: false - description: Configuration for the git resolver stored in the `git-resolver-config` - ConfigMap. - properties: - api-token-secret-key: - default: "" - description: The key in the API token secret containing the actual - token. Required when using the authenticated API. - type: string - api-token-secret-name: - default: "" - description: The Kubernetes secret containing the API token for - the SCM provider. Required when using the authenticated API. - type: string - api-token-secret-namespace: - default: default - description: The namespace containing the API token secret. - type: string - default-org: - default: "" - description: The default organization to look for repositories under - when using the authenticated API. - type: string - default-revision: - default: main - description: The git revision to fetch the remote resource from - with either anonymous cloning or the authenticated API. - type: string - default-url: - default: https://github.com/tektoncd/catalog.git - description: The git url to fetch the remote resource from when - using anonymous cloning. - type: string - fetch-timeout: - default: 1m - description: The maximum amount of time a single anonymous cloning - resolution may take. - type: string - scm-type: - default: github - description: The SCM type to use with the authenticated API. - type: string - server-url: - default: "" - description: The SCM server URL to use with the authenticated API. - Not needed when using github.com, gitlab.com, or BitBucket Cloud. - type: string - type: object - hubresolver-config: - additionalProperties: false - description: Configuration for the hub resolver stored in the `hubresolver-config` - ConfigMap. - properties: - default-artifact-hub-pipeline-catalog: - default: tekton-catalog-pipelines - description: The default Artifact Hub Pipeline catalog from where - to pull the resource. - type: string - default-artifact-hub-task-catalog: - default: tekton-catalog-tasks - description: The default Artifact Hub Task catalog from where to - pull the resource. - type: string - default-kind: - default: task - description: The default resource kind to fetch. - type: string - default-tekton-hub-catalog: - default: Tekton - description: The default Tekton Hub catalog from where to pull the - resource. - type: string - default-type: - default: artifact - description: The default hub from where to pull the resource. - type: string - type: object - resolvers-feature-flags: - additionalProperties: false - description: Feature flags configuration stored in the `resolvers-feature-flags` - ConfigMap. - properties: - enable-bundles-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of Tekton OCI bundles. - type: string - enable-cluster-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from other namespaces within the cluster. - type: string - enable-git-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines from Git repositories. - type: string - enable-hub-resolver: - default: "true" - description: Setting this flag to `true` enables remote resolution - of tasks and pipelines via the Tekton Hub. - type: string - type: object - type: object - webhook: - additionalProperties: false - description: Settings for the `tekton-pipelines-webhook` Deployment. - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than 1. - type: integer - type: object - type: object - version: 0.53.2 From bb16f82539a7bd6ab7d3b2c014348058a5c3ee8c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 15:22:03 +0100 Subject: [PATCH 384/601] Add Dapr docs --- README.md | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index e3b073e..409570b 100644 --- a/README.md +++ b/README.md @@ -21,6 +21,7 @@ This repository contains the following Carvel packages. | [cert-manager-issuers](https://github.com/kadras-io/cert-manager-issuers) | A collection of issuers for Cert Manager, used by the Kadras platform to support TLS via a private CA or Let's Encrypt. | | [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | | [crossplane](https://github.com/kadras-io/package-for-crossplane) | A Kubernetes extension that transforms your Kubernetes cluster into a universal control plane. | +| [dapr](https://github.com/kadras-io/package-for-dapr) | A Kubernetes extension that provides integrated APIs for communication, state, and workflow. | | [engineering-platform](https://github.com/kadras-io/engineering-platform) | A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes. | | [flux](https://github.com/kadras-io/package-for-flux) | A continuous deployment solution for Kubernetes, powered by the GitOps Toolkit. | | [knative-eventing](https://github.com/kadras-io/package-for-knative-eventing) | A solution for routing events from event producers to sinks, enabling developers to use an event-driven architecture with their applications. | @@ -38,7 +39,7 @@ This repository contains the following Carvel packages. ### Prerequisites -* Kubernetes 1.26+ +* Kubernetes 1.27+ * Carvel [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI. * Carvel [kapp-controller](https://carvel.dev/kapp-controller) deployed in your Kubernetes cluster. You can install it with Carvel [`kapp`](https://carvel.dev/kapp/docs/latest/install) (recommended choice) or `kubectl`. From 6a3d64ae290ac04937929941ea524a1e473df49e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 15:23:03 +0100 Subject: [PATCH 385/601] chore(deps): Update workflow dependencies --- .github/workflows/release.yml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index ca037db..e80a7e3 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.14.2 + VERSION: 0.15.0-RC1 jobs: build: @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.2.0 + uses: sigstore/cosign-installer@v3.4.0 - name: Log into container registry uses: redhat-actions/podman-login@v1.6 From 2e774fb0a00fce02dde6c9af180a3a30418989c9 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 19:34:56 +0100 Subject: [PATCH 386/601] Update Engineering Platform metadata and add version 0.13.0 (#352) Co-authored-by: github-actions --- .../0.13.0.yml | 305 ++++++++++++++++++ 1 file changed, 305 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.13.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.13.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.13.0.yml new file mode 100644 index 0000000..4da24d7 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.13.0.yml @@ -0,0 +1,305 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.13.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/engineering-platform/releases + releasedAt: "2024-02-25T18:33:14Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/engineering-platform@sha256:cf18358bd23f06cf01395af026c2c119c75e1284c0bc5271ccbecfa01932d349 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + buildpacks: + additionalProperties: false + description: Configuration for Buildpacks related packages. + properties: + catalog: + default: {} + description: Configuration for the Buildpacks Catalog package. + nullable: true + kpack: + default: {} + description: Configuration for the Kpack package. + nullable: true + type: object + cartographer: + additionalProperties: false + description: Configuration for Cartographer related packages. + properties: + core: + default: {} + description: Configuration for the Cartographer Core package including + Cartographer and Cartographer Conventions. + nullable: true + supply_chains: + default: {} + description: Configuration for the Cartographer Supply Chains package. + nullable: true + type: object + cert_manager: + additionalProperties: false + description: Configuration for the Cert Manager related packages. + properties: + core: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + issuers: + default: {} + description: Configuration for the Cert Manager Issuers package. + nullable: true + type: object + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + conventions: + additionalProperties: false + description: Configuration for Cartographer Conventions related packages. + properties: + spring_boot: + default: {} + description: Configuration for the Spring Boot Conventions package. + nullable: true + type: object + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dapr: + default: {} + description: Configuration for the Dapr package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + infrastructure_provider: + default: null + description: The underlying infrastructure provider. Options are `local` + and `vsphere`. This field is not required, but it enables better validation + and defaulting if provided. + nullable: true + type: string + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + type: string + type: object + type: object + namespace: + default: kadras-packages + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-packages + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `dev`, `build`, `run`.' + type: string + supply_chain: + default: basic + description: 'The type of supply chain to deploy. Options: `basic`, + `advanced`.' + type: string + type: object + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + tekton: + additionalProperties: false + description: Configuration for Tekton related packages. + properties: + pipelines: + default: {} + description: Configuration for the Tekton Pipelines package. + nullable: true + type: object + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.13.0 From ffca2d1949ffaf0a9e39f9ac1187ded5f48fbf2f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 19:43:02 +0100 Subject: [PATCH 387/601] chore(deps): Remove deprecated dependencies --- .../0.12.1.yml | 290 ------------------ .../0.12.2.yml | 290 ------------------ 2 files changed, 580 deletions(-) delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.12.1.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.12.2.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.12.1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.12.1.yml deleted file mode 100644 index 3ff9832..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.12.1.yml +++ /dev/null @@ -1,290 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.12.1 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-11-11T17:38:55Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:a8f5d658dc46de74c1c05aea84680fd56ec5d1d083810241d9311f6603159a7e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `dev`, `build`, `run`.' - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, - `advanced`.' - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.12.1 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.12.2.yml b/repo/packages/engineering-platform.packages.kadras.io/0.12.2.yml deleted file mode 100644 index ff3f1b0..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.12.2.yml +++ /dev/null @@ -1,290 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.12.2 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/engineering-platform/releases - releasedAt: "2023-11-25T18:15:29Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/engineering-platform@sha256:b6548a0a69bcaf318d9e6f6f8cd19d41147e46b0a0a30f6ec2beb55f63e6133d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - buildpacks: - additionalProperties: false - description: Configuration for Buildpacks related packages. - properties: - catalog: - default: {} - description: Configuration for the Buildpacks Catalog package. - nullable: true - kpack: - default: {} - description: Configuration for the Kpack package. - nullable: true - type: object - cartographer: - additionalProperties: false - description: Configuration for Cartographer related packages. - properties: - core: - default: {} - description: Configuration for the Cartographer Core package including - Cartographer and Cartographer Conventions. - nullable: true - supply_chains: - default: {} - description: Configuration for the Cartographer Supply Chains package. - nullable: true - type: object - cert_manager: - additionalProperties: false - description: Configuration for the Cert Manager related packages. - properties: - core: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - issuers: - default: {} - description: Configuration for the Cert Manager Issuers package. - nullable: true - type: object - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - conventions: - additionalProperties: false - description: Configuration for Cartographer Conventions related packages. - properties: - spring_boot: - default: {} - description: Configuration for the Spring Boot Conventions package. - nullable: true - type: object - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - infrastructure_provider: - default: null - description: The underlying infrastructure provider. Options are `local` - and `vsphere`. This field is not required, but it enables better validation - and defaulting if provided. - nullable: true - type: string - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - type: string - type: object - type: object - namespace: - default: kadras-packages - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-packages - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `dev`, `build`, `run`.' - type: string - supply_chain: - default: basic - description: 'The type of supply chain to deploy. Options: `basic`, - `advanced`.' - type: string - type: object - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - tekton: - additionalProperties: false - description: Configuration for Tekton related packages. - properties: - pipelines: - default: {} - description: Configuration for the Tekton Pipelines package. - nullable: true - type: object - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.12.2 From 388c2b52cdc0b3b4264d9356e50a0b0ab82fa26b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 25 Feb 2024 19:43:23 +0100 Subject: [PATCH 388/601] chore(build): Set version 0.15.0 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index e80a7e3..372859e 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.15.0-RC1 + VERSION: 0.15.0 jobs: build: From cafbed209dd610d29568df8cf191e1b5d6a9561b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 29 Feb 2024 16:56:02 +0100 Subject: [PATCH 389/601] Update Service Binding metadata and add version 0.7.0 (#353) Co-authored-by: github-actions --- .../0.7.0.yml | 31 +++++++++++++++++++ .../metadata.yml | 23 ++++++++++++++ 2 files changed, 54 insertions(+) create mode 100644 repo/packages/service-binding.packages.kadras.io/0.7.0.yml create mode 100644 repo/packages/service-binding.packages.kadras.io/metadata.yml diff --git a/repo/packages/service-binding.packages.kadras.io/0.7.0.yml b/repo/packages/service-binding.packages.kadras.io/0.7.0.yml new file mode 100644 index 0000000..a83b468 --- /dev/null +++ b/repo/packages/service-binding.packages.kadras.io/0.7.0.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: service-binding.packages.kadras.io.0.7.0 +spec: + licenses: + - Apache 2.0 + refName: service-binding.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-service-binding/releases + releasedAt: "2024-02-26T21:32:16Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-service-binding@sha256:83230a161c772fb65eef79cae4d04e346c75a817ab19a1e0bf7c10a41090b3f5 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.7.0 diff --git a/repo/packages/service-binding.packages.kadras.io/metadata.yml b/repo/packages/service-binding.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..eeb4854 --- /dev/null +++ b/repo/packages/service-binding.packages.kadras.io/metadata.yml @@ -0,0 +1,23 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: service-binding.packages.kadras.io +spec: + categories: + - service-binding + displayName: service-binding + iconSVGBase64: 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 + longDescription: This project specifies a Kubernetes-wide specification for communicating + service secrets to workloads in an automated way. It aims to create a widely applicable + mechanism but without excluding other strategies for systems that it does not + fit easily. The benefit of Kubernetes-wide specification is that all of the actors + in an ecosystem can work towards a clearly defined abstraction at the edge of + their expertise and depend on other parties to complete the chain. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: A Kubernetes-wide specification for communicating service secrets + to workloads in an automated way. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-service-binding + for community support. From 021aacae653896ed7471dc2fb23a3ac3a1c5c07c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 29 Feb 2024 16:56:41 +0100 Subject: [PATCH 390/601] Update Crossplane metadata and add version 1.15.0+kadras.1 (#354) Co-authored-by: github-actions --- .../1.15.0+kadras.1.yml | 345 ++++++++++++++++++ 1 file changed, 345 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.15.0+kadras.1.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.15.0+kadras.1.yml b/repo/packages/crossplane.packages.kadras.io/1.15.0+kadras.1.yml new file mode 100644 index 0000000..2d80c49 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.15.0+kadras.1.yml @@ -0,0 +1,345 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.15.0+kadras.1 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2024-02-29T15:54:54Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:15cc66eb3e9878182c8ef90bc081b98a23d30cb6265b7a4589e9d9f5f34da586 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: {} + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + type: object + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + serviceAccount: + properties: + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.15.0+kadras.1 From 9a2b7c99a0b31a4031db657e20f9872071a91c6a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 29 Feb 2024 18:37:55 +0100 Subject: [PATCH 391/601] Update Crossplane metadata and add version 1.15.0+kadras.2 (#355) Co-authored-by: github-actions --- .../1.15.0+kadras.2.yml | 345 ++++++++++++++++++ 1 file changed, 345 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.15.0+kadras.2.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.15.0+kadras.2.yml b/repo/packages/crossplane.packages.kadras.io/1.15.0+kadras.2.yml new file mode 100644 index 0000000..c6ee1a2 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.15.0+kadras.2.yml @@ -0,0 +1,345 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.15.0+kadras.2 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2024-02-29T17:36:04Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:524e393a7358362a3eff8124defe1b2234db0ad8ac8bebce7a17f2ec69bc581f + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: {} + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + type: object + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + serviceAccount: + properties: + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.15.0+kadras.2 From 582fc56ada7530dff1b113ebf48984c214e6e251 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 1 Mar 2024 22:17:26 +0100 Subject: [PATCH 392/601] Update Weaviate metadata and add version 1.24.0 (#356) Co-authored-by: github-actions --- .../weaviate.packages.kadras.io/1.24.0.yml | 2599 +++++++++++++++++ .../weaviate.packages.kadras.io/metadata.yml | 22 + 2 files changed, 2621 insertions(+) create mode 100644 repo/packages/weaviate.packages.kadras.io/1.24.0.yml create mode 100644 repo/packages/weaviate.packages.kadras.io/metadata.yml diff --git a/repo/packages/weaviate.packages.kadras.io/1.24.0.yml b/repo/packages/weaviate.packages.kadras.io/1.24.0.yml new file mode 100644 index 0000000..d3f2c4f --- /dev/null +++ b/repo/packages/weaviate.packages.kadras.io/1.24.0.yml @@ -0,0 +1,2599 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: weaviate.packages.kadras.io.1.24.0 +spec: + refName: weaviate.packages.kadras.io + releasedAt: "2024-03-01T21:15:34Z" + template: + spec: + deploy: + - kapp: + intoNs: weaviate + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-weaviate@sha256:b6636173424477f4d75f61f4982d275b67637991913f008bc817cf0f3b5fdebf + template: + - helmTemplate: + name: weaviate + namespace: weaviate + path: config/helm/upstream/weaviate + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + properties: + podAntiAffinity: + properties: + preferredDuringSchedulingIgnoredDuringExecution: + default: [] + items: + properties: + podAffinityTerm: + properties: + labelSelector: + properties: + matchExpressions: + default: [] + items: + properties: + key: + default: app + type: string + operator: + default: In + type: string + values: + default: [] + items: + default: weaviate + type: string + type: array + type: object + type: array + type: object + topologyKey: + default: kubernetes.io/hostname + type: string + type: object + weight: + default: 1 + type: integer + type: object + type: array + type: object + type: object + annotations: + default: "" + description: Pass any annotations to Weaviate pods + type: string + args: + default: [] + items: + default: --host + type: string + type: array + authentication: + description: Weaviate Config The following settings allow you to customize + Weaviate to your needs, for example set authentication and authorization + options. See weaviate docs (https://www.weaviate.io/developers/weaviate/) + for all configuration. + properties: + anonymous_access: + properties: + enabled: + default: true + type: boolean + type: object + oidc: + description: 'This configuration allows to add API keys to Weaviate. + This configuration allows only plain text API Keys, if you want to + store the API Keys in a Kubernetes secret you can configure the same + configuration with ENV Vars. Read the `env` section below on what + needs to be configured. If using ENV Vars over this make sure to comment + out the whole `apikey` section (as it is by default). ENV Vars has + priority over this config. apikey: enabled: false # Any number + of allowed API Keys as plain text allowed_keys: - readOnly-plainText-API-Key - + admin-plainText-API-Key # You can either set a single user for all + the listed Allowed API keys OR # one user per API Key, i.e. length(apikey.allowed_keys) + == length(apikey.users) OR # length(apikey.users) == 1 # NOTE: + Make sure the lister Users are added to the Authorization as well. users: - + api-key-user-readOnly - api-key-user-admin' + properties: + enabled: + default: false + type: boolean + type: object + type: object + authorization: + properties: + admin_list: + properties: + enabled: + default: false + type: boolean + type: object + type: object + backups: + description: |- + create a Kubernetes secret with AUTHENTICATION_APIKEY_ALLOWED_KEYS key and its respective value AUTHENTICATION_APIKEY_ALLOWED_KEYS: name-of-the-k8s-secret-containing-the-comma-separated-api-keys + Configure backup providers + properties: + azure: + properties: + enabled: + default: false + type: boolean + envSecrets: + default: {} + description: 'If one has already defined secrets with Azure Storage + credentials one can pass them using this setting:' + type: object + envconfig: + properties: + BACKUP_AZURE_CONTAINER: + default: weaviate-backups + description: Configure container where backups should be saved, + this setting is mandatory + type: string + type: object + secrets: + default: {} + description: 'For Weaviate to be able to create container objects + it needs a user credentials to authenticate to Azure Storage. + The User must have permissions to read/create/delete container + objects. You can pass the User credentials (account-name id and + account-key or connection-string) in 2 ways: 1. by setting the + AZURE_STORAGE_ACCOUNT and AZURE_STORAGE_KEY or AZURE_STORAGE_CONNECTION_STRING + plain values in the `secrets` section below this chart will + create a kubernetes secret for you with these key-values pairs + 2. create Kubernetes secret/s with AZURE_STORAGE_ACCOUNT and AZURE_STORAGE_KEY or + AZURE_STORAGE_CONNECTION_STRING and their respective values Set + the Key and the secret where it is set in `envSecrets` section + below' + type: object + type: object + filesystem: + description: The backup-filesystem module enables creation of the DB + backups in the local filesystem + properties: + enabled: + default: false + type: boolean + envconfig: + properties: + BACKUP_FILESYSTEM_PATH: + default: /tmp/backups + description: Configure folder where backups should be saved + type: string + type: object + type: object + gcs: + properties: + enabled: + default: false + type: boolean + envSecrets: + default: {} + description: 'If one has already defined a secret with GOOGLE_APPLICATION_CREDENTIALS + one can pass them using this setting:' + type: object + envconfig: + properties: + BACKUP_GCS_BUCKET: + default: weaviate-backups + description: Configure bucket where backups should be saved, + this setting is mandatory + type: string + type: object + secrets: + default: {} + description: 'For Weaviate to be able to create bucket objects it + needs a ServiceAccount credentials to authenticate to GCP. The + ServiceAccount must have permissions to read/create/delete bucket + objects. You can pass the ServiceAccount credentials (as JSON) + in 2 ways: 1. by setting the GOOGLE_APPLICATION_CREDENTIALS json + as plain text in the `secrets` section below this chart will + create a kubernetes secret for you with this key-values pairs + 2. create a Kubernetes secret with GOOGLE_APPLICATION_CREDENTIALS + key and its respective value Set the Key and the secret where + it is set in `envSecrets` section below' + type: object + type: object + s3: + properties: + enabled: + default: false + type: boolean + envSecrets: + default: {} + description: 'If one has already defined secrets with AWS credentials + one can pass them using this setting:' + type: object + envconfig: + properties: + BACKUP_S3_BUCKET: + default: weaviate-backups + description: Configure bucket where backups should be saved, + this setting is mandatory + type: string + type: object + secrets: + default: {} + description: 'For Weaviate to be able to create bucket objects it + needs a user credentials to authenticate to AWS. The User must + have permissions to read/create/delete bucket objects. You can + pass the User credentials (access-key id and access-secret-key) + in 2 ways: 1. by setting the AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY + plain values in the `secrets` section below this chart will + create a kubernetes secret for you with these key-values pairs + 2. create Kubernetes secret/s with AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY keys + and their respective values Set the Key and the secret where + it is set in `envSecrets` section below' + type: object + serviceAccountName: + default: "" + description: 'If one is using AWS EKS and has already configured + K8s Service Account that holds the AWS credentials one can pass + a name of that service account here using this setting. NOTE: + the root `serviceAccountName` config has priority over this one, + and if the root one is set this one will NOT overwrite it. This + one is here for backwards compatibility.' + type: string + type: object + type: object + clusterDomain: + default: cluster.local. + description: 'Kubernetes Cluster domain name, used for resolving intra-cluster + requests, i.e between instances of weaviate. Note: The final ''.'' on + the end of the hostname makes it a FQDN, and is required for DNS to resolve + in all kubernetes environments. See https://github.com/weaviate/weaviate-helm/issues/175 + for details.' + type: string + command: + default: [] + description: overwrite command and args if you want to run specific startup + scripts, for example setting the nofile limit + items: + default: /bin/weaviate + type: string + type: array + custom_config_map: + description: It is also possible to configure authentication and authorization + through a custom configmap The authorization and authentication values + defined in values.yaml will be ignored when defining a custom config map. + properties: + enabled: + default: false + type: boolean + name: + default: custom-config + type: string + type: object + debug: + default: false + type: boolean + env: + description: Insert any custom environment variables or envSecrets by putting + the exact name and desired value into the settings below. Any env name + passed will be automatically set for the statefulSet. + properties: + CLUSTER_DATA_BIND_PORT: + default: 7001 + type: integer + CLUSTER_GOSSIP_BIND_PORT: + default: 7000 + type: integer + GOGC: + default: 100 + description: The aggressiveness of the Go Garbage Collector. 100 is + the default value. + type: integer + PROMETHEUS_MONITORING_ENABLED: + default: false + description: Expose metrics on port 2112 for Prometheus to scrape + type: boolean + PROMETHEUS_MONITORING_GROUP: + default: false + type: boolean + QUERY_MAXIMUM_RESULTS: + default: 100000 + description: |- + Set a MEM limit for the Weaviate Pod so it can help you both increase GC-related performance as well as avoid GC-related out-of-memory (“OOM”) situations GOMEMLIMIT: 6GiB + Maximum results Weaviate can query with/without pagination NOTE: Affects performance, do NOT set to a very high value. The default is 100K + type: integer + REINDEX_VECTOR_DIMENSIONS_AT_STARTUP: + default: false + description: whether to re-index/-compute the vector dimensions metric + (needed if upgrading from weaviate < v1.16.0) + type: boolean + TRACK_VECTOR_DIMENSIONS: + default: false + description: whether to enable vector dimensions tracking metric + type: boolean + type: object + envSecrets: + default: "" + type: string + extraVolumeMounts: + default: "" + type: string + extraVolumes: + default: "" + type: string + globalPriorityClassName: + default: "" + type: string + grpcService: + description: The service controls how weaviate gRPC endpoint is exposed + to the outside world. If you don't want a public load balancer, you can + also choose 'ClusterIP' to make weaviate gRPC port be only accessible + within your cluster. + properties: + annotations: + default: {} + type: object + clusterIP: + default: "" + description: optionally set cluster IP if you want to set a static IP + type: string + enabled: + default: false + description: Set this to true in order to deploy Weaviate gRPC service + type: boolean + loadBalancerSourceRanges: + default: [] + items: {} + type: array + name: + default: weaviate-grpc + type: string + ports: + default: [] + items: + properties: + name: + default: grpc + type: string + port: + default: 50051 + type: integer + protocol: + default: TCP + type: string + type: object + type: array + type: + default: NodePort + type: string + type: object + image: + properties: + pullPolicy: + default: IfNotPresent + description: 'Image pull policy: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' + type: string + pullSecrets: + default: [] + items: {} + type: array + registry: + default: docker.io + description: where weaviate image is stored + type: string + repo: + default: semitechnologies/weaviate + type: string + tag: + default: 1.23.7 + description: 'Tag of weaviate image to deploy Note: We strongly recommend + you overwrite this value in your own values.yaml. Otherwise a mere + upgrade of the chart could lead to an unexpected upgrade of weaviate. + In accordance with Infra-as-code, you should pin this value down and + only change it if you explicitly want to upgrade the Weaviate version.' + type: string + type: object + initContainers: + description: |- + below is an example that can be used to set an arbitrary nofile limit at startup: command: - "/bin/sh" args: - "-c" - "ulimit -n 65535 && /bin/weaviate --host 0.0.0.0 --port 8080 --scheme http --config-file /weaviate-config/conf.yaml" + it is possible to change the sysctl's 'vm.max_map_count' using initContainer for Weaviate, the init Container runs before Weaviate Container and sets the value for the WHOLE node to the one provided below. it is possible to run additional initContainer before Weaviate is up and running. You can specify the containers as a list in `extraInitContainers`, exactly how they are defined in a kubernetes manifest: https://kubernetes.io/docs/concepts/workloads/pods/init-containers/ + properties: + extraInitContainers: + default: {} + type: object + sysctlInitContainer: + properties: + enabled: + default: true + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + type: string + registry: + default: docker.io + type: string + repo: + default: alpine + type: string + tag: + default: latest + type: string + type: object + sysctlVmMaxMapCount: + default: 524288 + type: integer + type: object + type: object + livenessProbe: + properties: + failureThreshold: + default: 30 + type: integer + initialDelaySeconds: + default: 900 + type: integer + periodSeconds: + default: 10 + type: integer + successThreshold: + default: 1 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + modules: + description: are extensions to Weaviate, they can be used to support various + ML-models, but also other features unrelated to model inference. An inference/vectorizer + module is not required, you can also run without any modules and import + your own vectors. + properties: + default_vectorizer_module: + default: none + description: by choosing the default vectorizer module, you can tell + Weaviate to always use this module as the vectorizer if nothing else + is specified. Can be overwritten on a per-class basis. set to text2vec-transformers + if running with transformers instead + type: string + generative-anyscale: + description: 'The generative-anyscale module uses Anyscale API More + information about Anyscale API can be found here: https://docs.anyscale.com/endpoints/overview' + properties: + apiKey: + default: "" + description: Set your Anyscale API Key to be passed to Weaviate + pod as an environment variable. + type: string + enabled: + default: false + description: enable if you want to use Anyscale module + type: boolean + type: object + generative-aws: + description: 'The generative-aws module uses AWS Bedrock service. More + information about AWS Bedrock service can be found here: https://docs.aws.amazon.com/bedrock/' + properties: + enabled: + default: false + description: enable if you want to use AWS module + type: boolean + envSecrets: + default: {} + description: 'If one has already defined secrets with AWS credentials + one can pass them using this setting:' + type: object + secrets: + default: {} + description: 'For Weaviate to be able to use AWS Bedrock service + it needs a user credentials to authenticate to AWS. The User must + have permissions to use AWS Bedrock service AI. You can pass the + User credentials (access-key id and access-secret-key) in 2 ways: + 1. by setting the AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY + plain values in the `secrets` section below this chart will + create a kubernetes secret for you with these key-values pairs + 2. create Kubernetes secret/s with AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY + keys and their respective values Set the Key and the secret + where it is set in `envSecrets` section below' + type: object + type: object + generative-cohere: + description: 'The generative-cohere module uses Cohere Generate API + More information about Cohere''s Generate API can be found here: https://docs.cohere.com/reference/generate' + properties: + apiKey: + default: "" + description: Set your Cohere API Key to be passed to Weaviate pod + as an environment variable + type: string + enabled: + default: false + description: enable if you want to use Cohere generative module + type: boolean + type: object + generative-openai: + description: 'The generative-openai module uses OpenAI Completions API + along with text-davinci-003 model to behave as ChatGPT. More information + about OpenAI Completions API can be found here: https://beta.openai.com/docs/api-reference/completions' + properties: + apiKey: + default: "" + description: Set your OpenAI API Key to be passed to Weaviate pod + as an environment variable. You can set either the OpenAI's Service + API key OR the Azure OpenAI's Service Key. Note that you cannot + set both of the at the same time. + type: string + azureApiKey: + default: "" + type: string + enabled: + default: false + description: enable if you want to use OpenAI module + type: boolean + type: object + generative-palm: + description: 'The generative-palm module uses Google PaLM API. More + information about Google PaLM API can be found here: https://developers.generativeai.google/' + properties: + apiKey: + default: "" + description: Set your Google PaLM API Key to be passed to Weaviate + pod as an environment variable + type: string + enabled: + default: false + description: enable if you want to use Google PaLM module + type: boolean + type: object + img2vec-neural: + description: The img2vec-neural module uses neural networks, to generate + a vector representation of the image + properties: + affinity: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster needs + to be configured accordingly and you need to explicitly set + GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: img2vec-neural + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled on a per-module + basis, as well as for Weaviate overall. Each module accepts nodeSelector, + tolerations, and affinity configuration. If it is set on a per- + module basis, this configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/img2vec-pytorch + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: resnet50 + type: string + tolerations: + default: "" + type: string + type: object + multi2vec-bind: + description: 'The multi2vec-bind is a multi modal inference container + it uses Meta''s open source ImageBind implementation as base for this + module: https://github.com/facebookresearch/ImageBind It is possible + to create your own version of this module by following the instructions + here: https://github.com/weaviate/multi2vec-bind-inference' + properties: + annotations: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster needs + to be configured accordingly and you need to explicitly set + GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: bind-inference + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/multi2vec-bind + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 7000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 7000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: imagebind + description: The configuration below is ignored if enabled==false + type: string + tolerations: + default: "" + type: string + type: object + multi2vec-clip: + description: The multi2vec-clip modules uses CLIP transformers to vectorize + both images and text in the same vector space. It is typically slow(er) + on CPUs and should run with CUDA-enabled GPUs for optimal performance. + properties: + annotations: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster needs + to be configured accordingly and you need to explicitly set + GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: clip-inference + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/multi2vec-clip + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: sentence-transformers-clip-ViT-B-32-multilingual-v1 + description: |- + The configuration below is ignored if enabled==false + replace with model of choice, see https://weaviate.io/developers/weaviate/modules/retriever-vectorizer-modules/multi2vec-clip for all supported models or build your own container. + type: string + tolerations: + default: "" + type: string + type: object + ner-transformers: + description: The ner-transformers module uses spellchecker library to + check misspellings in a given text + properties: + affinity: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster needs + to be configured accordingly and you need to explicitly set + GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: ner-transformers + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled on a per-module + basis, as well as for Weaviate overall. Each module accepts nodeSelector, + tolerations, and affinity configuration. If it is set on a per- + module basis, this configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/ner-transformers + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: dbmdz-bert-large-cased-finetuned-conll03-english + description: The configuration below is ignored if enabled==false + type: string + tolerations: + default: "" + type: string + type: object + qna-openai: + description: 'The qna-openai module uses OpenAI Completions API to dynamically + answer given questions. More information about OpenAI Completions + API can be found here: https://beta.openai.com/docs/api-reference/completions' + properties: + apiKey: + default: "" + description: Set your OpenAI API Key to be passed to Weaviate pod + as an environment variable. You can set either the OpenAI's Service + API key OR the Azure OpenAI's Service Key. Note that you cannot + set both of the at the same time. + type: string + azureApiKey: + default: "" + type: string + enabled: + default: false + description: enable if you want to use OpenAI module + type: boolean + type: object + qna-transformers: + description: The qna-transformers module uses neural networks, such + as BERT, DistilBERT, to find an answer in text to a given question + properties: + affinity: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster needs + to be configured accordingly and you need to explicitly set + GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: qna-transformers + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled on a per-module + basis, as well as for Weaviate overall. Each module accepts nodeSelector, + tolerations, and affinity configuration. If it is set on a per- + module basis, this configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/qna-transformers + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: bert-large-uncased-whole-word-masking-finetuned-squad + description: The configuration below is ignored if enabled==false + type: string + tolerations: + default: "" + type: string + type: object + ref2vec-centroid: + description: The ref2vec-centroid module + properties: + enabled: + default: false + description: enable if you want to use Centroid module + type: boolean + type: object + reranker-cohere: + description: 'The reranker-cohere module uses Cohere API to dynamically + compute a score for the relevance of the query with each of the initial + search results. More information about Cohere API can be found here: + https://docs.cohere.com/docs/rerank-guide' + properties: + apiKey: + default: "" + description: Set your Cohere API Key to be passed to Weaviate pod + as an environment variable + type: string + enabled: + default: false + description: enable if you want to use Cohere rerank module + type: boolean + type: object + reranker-transformers: + description: 'The reranker-transformers module uses Cross-Encoders for sentence + pair scoring and sentence pair classification tasks. More information + about Cross-Encoders can be found here: https://www.sbert.net/examples/applications/cross-encoder/README.html' + properties: + affinity: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster needs + to be configured accordingly and you need to explicitly set + GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: reranker-transformers + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled on a per-module + basis, as well as for Weaviate overall. Each module accepts nodeSelector, + tolerations, and affinity configuration. If it is set on a per- + module basis, this configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/reranker-transformers + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: cross-encoder-ms-marco-MiniLM-L-6-v2 + description: The configuration below is ignored if enabled==false + type: string + tolerations: + default: "" + type: string + type: object + sum-transformers: + description: The sum-transformers module makes result texts summarizations + properties: + affinity: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster needs + to be configured accordingly and you need to explicitly set + GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: sum-transformers + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled on a per-module + basis, as well as for Weaviate overall. Each module accepts nodeSelector, + tolerations, and affinity configuration. If it is set on a per- + module basis, this configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/sum-transformers + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: facebook-bart-large-cnn + description: The configuration below is ignored if enabled==false + type: string + tolerations: + default: "" + type: string + type: object + text-spellcheck: + description: The text-spellcheck module uses spellchecker library to + check misspellings in a given text + properties: + affinity: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + fullnameOverride: + default: text-spellcheck + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled on a per-module + basis, as well as for Weaviate overall. Each module accepts nodeSelector, + tolerations, and affinity configuration. If it is set on a per- + module basis, this configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/text-spellcheck-model + type: string + resources: + properties: + limits: + properties: + cpu: + default: 500m + type: string + memory: + default: 500Mi + type: string + type: object + requests: + properties: + cpu: + default: 400m + type: string + memory: + default: 400Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: pyspellchecker-en + description: The configuration below is ignored if enabled==false + type: string + tolerations: + default: "" + type: string + type: object + text2vec-aws: + description: 'The text2vec-aws module uses AWS Bedrock service to dynamically + compute vector embeddings based on the sentence''s context. More information + about AWS Bedrock service can be found here: https://docs.aws.amazon.com/bedrock/' + properties: + enabled: + default: false + description: enable if you want to use AWS module + type: boolean + envSecrets: + default: {} + description: 'If one has already defined secrets with AWS credentials + one can pass them using this setting:' + type: object + secrets: + default: {} + description: 'For Weaviate to be able to use AWS Bedrock service + it needs a user credentials to authenticate to AWS. The User must + have permissions to use AWS Bedrock service AI. You can pass the + User credentials (access-key id and access-secret-key) in 2 ways: + 1. by setting the AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY + plain values in the `secrets` section below this chart will + create a kubernetes secret for you with these key-values pairs + 2. create Kubernetes secret/s with AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY + keys and their respective values Set the Key and the secret + where it is set in `envSecrets` section below' + type: object + type: object + text2vec-cohere: + description: 'The text2vec-cohere module uses Cohere API to dynamically + compute vector embeddings based on the sentence''s context. More information + about Cohere API can be found here: https://docs.cohere.ai/' + properties: + apiKey: + default: "" + description: Set your Cohere API Key to be passed to Weaviate pod + as an environment variable + type: string + enabled: + default: false + description: enable if you want to use Cohere module + type: boolean + type: object + text2vec-contextionary: + description: The text2vec-contextionary module uses a fastText-based + vector-space to derive vector embeddings for your objects. It is very + efficient on CPUs, but in some situations it cannot reach the same + level of accuracy as transformers-based models. + properties: + affinity: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + envconfig: + properties: + enable_compound_splitting: + default: false + type: boolean + extensions_storage_mode: + default: weaviate + type: string + neighbor_occurrence_ignore_percentile: + default: 5 + type: integer + occurrence_weight_linear_factor: + default: 0.75 + format: float + type: number + type: object + fullnameOverride: + default: contextionary + description: The configuration below is ignored if enabled==false + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled on a per-module + basis, as well as for Weaviate overall. Each module accepts nodeSelector, + tolerations, and affinity configuration. If it is set on a per- + module basis, this configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/contextionary + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 500m + type: string + memory: + default: 500Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: en0.16.0-v1.2.1 + type: string + tolerations: + default: "" + type: string + type: object + text2vec-gpt4all: + description: 'The text2vec-gpt4all is a vectorizer module that allows + to run ML models from nomic-ai/gpt4all: https://docs.gpt4all.io/gpt4all_python_embedding.html + These models run only on CPU only and on x86_64 arch The ML model + is containerized in a Weaviate compatible way. If you want to run + a different model that published ones you can follow the tutorial + from here on how to create such a container: https://github.com/weaviate/t2v-gpt4all-models' + properties: + affinity: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + fullnameOverride: + default: gpt4all-inference + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled on a per-module + basis, as well as for Weaviate overall. Each module accepts nodeSelector, + tolerations, and affinity configuration. If it is set on a per- + module basis, this configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/gpt4all-inference + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Contextionary Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: all-MiniLM-L6-v2 + description: The configuration below is ignored if enabled==false + type: string + tolerations: + default: "" + type: string + type: object + text2vec-huggingface: + description: 'The text2vec-huggingface module uses HuggingFace API to + dynamically compute vector embeddings based on the sentence''s context. + More information about HuggingFace API can be found here: https://huggingface.co/docs/api-inference/detailed_parameters#feature-extraction-task' + properties: + apiKey: + default: "" + description: Set your HuggingFace API Key to be passed to Weaviate + pod as an environment variable + type: string + enabled: + default: false + description: enable if you want to use HuggingFace module + type: boolean + type: object + text2vec-jinaai: + description: 'The text2vec-jinaai module uses JinaAI Embeddings API + to dynamically compute vector embeddings based on the sentence''s + context. More information about JinaAI Embeddings API can be found + here: https://jina.ai/embeddings' + properties: + apiKey: + default: "" + description: Set your JinaAI API Key to be passed to Weaviate pod + as an environment variable + type: string + enabled: + default: false + description: enable if you want to use JinaAI module + type: boolean + type: object + text2vec-openai: + description: 'The text2vec-openai module uses OpenAI Embeddings API + to dynamically compute vector embeddings based on the sentence''s + context. More information about OpenAI Embeddings API can be found + here: https://beta.openai.com/docs/guides/embeddings/what-are-embeddings' + properties: + apiKey: + default: "" + description: Set your OpenAI API Key to be passed to Weaviate pod + as an environment variable. You can set either the OpenAI's Service + API key OR the Azure OpenAI's Service Key. Note that you cannot + set both of the at the same time. + type: string + azureApiKey: + default: "" + type: string + enabled: + default: false + description: enable if you want to use OpenAI module + type: boolean + type: object + text2vec-palm: + description: 'The text2vec-palm module uses Google PaLM Embeddings API + to dynamically compute vector embeddings based on the sentence''s + context. More information about Google PaLM Embeddings API can be + found here: https://developers.generativeai.google/' + properties: + apiKey: + default: "" + description: Set your Google PaLM API Key to be passed to Weaviate + pod as an environment variable + type: string + enabled: + default: false + description: enable if you want to use Google PaLM module + type: boolean + type: object + text2vec-transformers: + description: The text2vec-transformers modules uses neural networks, + such as BERT, DistilBERT, etc. to dynamically compute vector embeddings + based on the sentence's context. It is very slow on CPUs and should + run with CUDA-enabled GPUs for optimal performance. + properties: + affinity: + default: "" + type: string + enabled: + default: false + description: Enable deployment of this module + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster needs + to be configured accordingly and you need to explicitly set + GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: transformers-inference + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this module + without deploying it with this release. You can do so by setting + a value for the `inferenceUrl` here AND by setting the `enable` + to `false` + type: object + livenessProbe: + description: 'Deprecated setting use initialDelaySeconds instead + in each probe instead probeInitialDelaySeconds: 120' + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled on a per-module + basis, as well as for Weaviate overall. Each module accepts nodeSelector, + tolerations, and affinity configuration. If it is set on a per- + module basis, this configuration overrides the global config. + type: string + passageQueryServices: + properties: + passage: + properties: + affinity: + default: "" + type: string + enabled: + default: false + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster + needs to be configured accordingly and you need to + explicitly set GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: transformers-inference-passage + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this + module without deploying it with this release. You can + do so by setting a value for the `inferenceUrl` here AND + by setting the `enable` to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled + on a per-module basis, as well as for Weaviate overall. + Each module accepts nodeSelector, tolerations, and affinity + configuration. If it is set on a per- module basis, this + configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/transformers-inference + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Transformers Pods. + The configurations are the same as setting them as described + here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ + applies to passageQueryService below' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to + this module''s Pods, it can be used in cases where the + module is in a private registry and you want to give access + to the registry only to this pod. NOTE: if not set the + root `serviceAccountName` config will be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: facebook-dpr-ctx_encoder-single-nq-base + description: The configuration below is ignored if enabled==false + type: string + tolerations: + default: "" + type: string + type: object + query: + properties: + affinity: + default: "" + type: string + enabled: + default: false + type: boolean + envconfig: + properties: + enable_cuda: + default: false + description: enable for CUDA support. Your K8s cluster + needs to be configured accordingly and you need to + explicitly set GPU requests & limits below + type: boolean + ld_library_path: + default: /usr/local/nvidia/lib64 + description: only used when CUDA is enabled + type: string + nvidia_driver_capabilities: + default: compute,utility + type: string + nvidia_visible_devices: + default: all + description: only used when CUDA is enabled + type: string + type: object + fullnameOverride: + default: transformers-inference-query + type: string + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: [] + items: {} + type: array + inferenceUrl: + default: {} + description: You can set directly an inference URL of this + module without deploying it with this release. You can + do so by setting a value for the `inferenceUrl` here AND + by setting the `enable` to `false` + type: object + livenessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + nodeSelector: + default: "" + description: You can guide where the pods are scheduled + on a per-module basis, as well as for Weaviate overall. + Each module accepts nodeSelector, tolerations, and affinity + configuration. If it is set on a per- module basis, this + configuration overrides the global config. + type: string + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/transformers-inference + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ + applies to passageQueryService below' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to + this module''s Pods, it can be used in cases where the + module is in a private registry and you want to give access + to the registry only to this pod. NOTE: if not set the + root `serviceAccountName` config will be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: facebook-dpr-question_encoder-single-nq-base + description: The configuration below is ignored if enabled==false + type: string + tolerations: + default: "" + type: string + type: object + type: object + priorityClassName: + default: "" + type: string + readinessProbe: + properties: + initialDelaySeconds: + default: 120 + type: integer + periodSeconds: + default: 3 + type: integer + type: object + registry: + default: docker.io + type: string + replicas: + default: 1 + type: integer + repo: + default: semitechnologies/transformers-inference + type: string + resources: + properties: + limits: + properties: + cpu: + default: 1000m + type: string + memory: + default: 5000Mi + type: string + type: object + requests: + properties: + cpu: + default: 1000m + type: string + memory: + default: 3000Mi + type: string + type: object + type: object + securityContext: + default: {} + description: 'security Context for the Transformers Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/ + applies to passageQueryService below' + type: object + serviceAccountName: + default: "" + description: 'It is possible to add a ServiceAccount to this module''s + Pods, it can be used in cases where the module is in a private + registry and you want to give access to the registry only to this + pod. NOTE: if not set the root `serviceAccountName` config will + be used.' + type: string + strategy: + properties: + type: + default: RollingUpdate + type: string + type: object + tag: + default: sentence-transformers-paraphrase-multilingual-MiniLM-L12-v2 + description: |- + The configuration below is ignored if enabled==false + replace with model of choice, see https://weaviate.io/developers/weaviate/modules/retriever-vectorizer-modules/text2vec-transformers for all supported models or build your own container. + type: string + tolerations: + default: "" + type: string + type: object + type: object + nodeSelector: + default: "" + type: string + priorityClassName: + default: "" + description: 'Optionally specify priorityClass name for the pod ref: https://kubernetes.io/docs/concepts/scheduling-eviction/pod-priority-preemption/#pod-priority' + type: string + query_defaults: + properties: + limit: + default: 100 + type: integer + type: object + readinessProbe: + properties: + failureThreshold: + default: 3 + type: integer + initialDelaySeconds: + default: 3 + type: integer + periodSeconds: + default: 10 + type: integer + successThreshold: + default: 1 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + replicas: + default: 1 + description: Scale replicas of Weaviate. Note that as of v1.8.0 dynamic + scaling is limited to cases where no data is imported yet. Scaling down + after importing data may break usability. Full dynamic scalability will + be added in a future release. + type: integer + resources: + default: {} + type: object + securityContext: + default: {} + description: 'security Context for the Weaviate Pods. The configurations + are the same as setting them as described here: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/' + type: object + service: + description: The service controls how weaviate is exposed to the outside + world. If you don't want a public load balancer, you can also choose 'ClusterIP' + to make weaviate only accessible within your cluster. + properties: + annotations: + default: {} + type: object + clusterIP: + default: "" + description: optionally set cluster IP if you want to set a static IP + type: string + loadBalancerSourceRanges: + default: [] + items: {} + type: array + name: + default: weaviate + type: string + ports: + default: [] + items: + properties: + name: + default: http + type: string + port: + default: 80 + type: integer + protocol: + default: TCP + type: string + type: object + type: array + type: + default: LoadBalancer + type: string + type: object + serviceAccountName: + default: "" + description: Add a service account ot the Weaviate pods if you need Weaviate + to have permissions to access kubernetes resources or cloud provider resources. + For example for it to have access to a backup up bucket, or if you want + to restrict Weaviate pod in any way. By default, use the default ServiceAccount + type: string + serviceMonitor: + description: The service monitor defines prometheus monitoring for a set + of services https://github.com/prometheus-operator/prometheus-operator/blob/main/Documentation/api.md#monitoring.coreos.com/v1.ServiceMonitor + properties: + enabled: + default: false + type: boolean + interval: + default: 30s + type: string + scrapeTimeout: + default: 10s + type: string + type: object + startupProbe: + description: Adjust liveness, readiness and startup probes configuration + properties: + enabled: + default: false + description: For kubernetes versions prior to 1.18 startupProbe is not + supported thus can be disabled. + type: boolean + failureThreshold: + default: 50 + type: integer + initialDelaySeconds: + default: 300 + type: integer + periodSeconds: + default: 60 + type: integer + successThreshold: + default: 1 + type: integer + timeoutSeconds: + default: 3 + type: integer + type: object + storage: + description: The Persistent Volume Claim settings for Weaviate. If there's + a storage.fullnameOverride field set, then the default pvc will not be + created, instead the one defined in fullnameOverride will be used + properties: + size: + default: 32Gi + type: string + storageClassName: + default: "" + type: string + type: object + terminationGracePeriodSeconds: + default: 600 + type: integer + tolerations: + default: "" + type: string + updateStrategy: + properties: + type: + default: RollingUpdate + type: string + type: object + type: object + version: 1.24.0 diff --git a/repo/packages/weaviate.packages.kadras.io/metadata.yml b/repo/packages/weaviate.packages.kadras.io/metadata.yml new file mode 100644 index 0000000..2fe0ec3 --- /dev/null +++ b/repo/packages/weaviate.packages.kadras.io/metadata.yml @@ -0,0 +1,22 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: PackageMetadata +metadata: + creationTimestamp: null + name: weaviate.packages.kadras.io +spec: + categories: + - vector store + - ai + displayName: weaviate + iconSVGBase64: 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 + longDescription: Weaviate is an open source, AI-native vector database that helps + developers create intuitive and reliable AI-powered applications. Store and retrieve + data objects and vector embeddings. Seamlessly connect to your favorite ML models. + And build intuitive, reliable AI applications that scale. + maintainers: + - name: Thomas Vitale + providerName: Kadras + shortDescription: AI-native vector database that helps developers create intuitive + and reliable AI-powered applications. + supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-weaviate + for community support. From 30b8e69de7df54b7173fe48de2cb6e26ac2250c4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 3 Mar 2024 20:22:20 +0100 Subject: [PATCH 393/601] Update Kadras Developer Portal metadata and add version 0.1.0 (#357) Co-authored-by: github-actions --- .../0.1.0.yml | 545 ++++++++++++++++++ .../metadata.yml | 17 + 2 files changed, 562 insertions(+) create mode 100644 repo/packages/developer-portal.packages.kadras.io/0.1.0.yml create mode 100644 repo/packages/developer-portal.packages.kadras.io/metadata.yml diff --git a/repo/packages/developer-portal.packages.kadras.io/0.1.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.1.0.yml new file mode 100644 index 0000000..bf0b60d --- /dev/null +++ b/repo/packages/developer-portal.packages.kadras.io/0.1.0.yml @@ -0,0 +1,545 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: developer-portal.packages.kadras.io.0.1.0 +spec: + refName: developer-portal.packages.kadras.io + releasedAt: "2024-03-03T19:20:11Z" + template: + spec: + deploy: + - kapp: + intoNs: backstage + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-developer-portal@sha256:1f756c68fed121c2460163de3ae49f81dba0355842372444cfd63975e0c81236 + template: + - helmTemplate: + name: backstage + namespace: backstage + path: config/helm/upstream/backstage + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + backstage: + description: Backstage parameters @default -- See below + properties: + affinity: + default: {} + description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' + type: object + annotations: + default: {} + description: Additional custom annotations for the `Deployment` resource + type: object + appConfig: + default: {} + description: 'Allows to define the appConfig as a multiline string that + generates a ConfigMap automatically, not requiring to have it pre + provisioned as with the extraAppConfig key. DO NOT USE if you need + to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: + https://somedomain.tld -- Generates ConfigMap and configures it in + the Backstage pods' + type: object + args: + default: [] + description: Backstage container command arguments + items: {} + type: array + command: + default: [] + description: Backstage container command + items: + default: node + type: string + type: array + containerPorts: + description: Container ports on the Deployment + properties: + backend: + default: 7007 + type: integer + type: object + containerSecurityContext: + default: {} + description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' + type: object + extraAppConfig: + default: [] + description: Extra app configuration files to inline into command arguments + items: {} + type: array + extraContainers: + default: [] + description: Deployment sidecars + items: {} + type: array + extraEnvVars: + default: [] + description: Backstage container environment variables + items: {} + type: array + extraEnvVarsCM: + default: [] + description: Backstage container environment variables from existing + ConfigMaps + items: {} + type: array + extraEnvVarsSecrets: + default: [] + description: Backstage container environment variables from existing + Secrets + items: {} + type: array + extraVolumeMounts: + default: [] + description: Backstage container additional volume mounts + items: {} + type: array + extraVolumes: + default: [] + description: Backstage container additional volumes + items: {} + type: array + image: + properties: + pullPolicy: + default: Always + description: 'Specify a imagePullPolicy. Defaults to ''Always'' + if image tag is ''latest'', else set to ''IfNotPresent''
+ Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' + type: string + pullSecrets: + default: [] + description: 'Optionally specify an array of imagePullSecrets. Secrets + must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +
E.g: `pullSecrets: [myRegistryKeySecretName]`' + items: {} + type: array + registry: + default: ghcr.io + description: Backstage image registry + type: string + repository: + default: backstage/backstage + description: Backstage image repository + type: string + tag: + default: latest + description: Backstage image tag (immutable tags are recommended) + type: string + type: object + initContainers: + default: [] + description: Backstage container init containers + items: {} + type: array + installDir: + default: /app + description: Directory containing the backstage installation + type: string + livenessProbe: + default: {} + description: 'Liveness Probe Backstage doesn''t provide any health endpoints + by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks +
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + default: {} + description: 'Startup Probe Backstage doesn''t provide any health endpoints + by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks +
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + default: {} + description: 'Startup Probe Backstage doesn''t provide any health endpoints + by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks +
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - default: {} - description: 'Startup Probe Backstage doesn''t provide any health endpoints - by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks -
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + default: {} + description: 'Startup Probe Backstage doesn''t provide any health endpoints + by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks +
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - default: {} - description: 'Startup Probe Backstage doesn''t provide any health endpoints - by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks -
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + default: {} + description: 'Startup Probe Backstage doesn''t provide any health endpoints + by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks +
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - default: {} - description: 'Startup Probe Backstage doesn''t provide any health endpoints - by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks -
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + items: {} + type: array + extraTls: + default: [] + description: 'The TLS configuration for additional hostnames to be covered + with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls + ' + items: {} + type: array + host: + default: "" + description: 'Hostname to be used to expose the route to access the + backstage application (e.g: backstage.IP.nip.io)' + type: string + path: + default: / + description: 'Path to be used to expose the full route to access the + backstage application (e.g: IP.nip.io/backstage)' + type: string + tls: + description: Ingress TLS parameters + properties: + enabled: + default: false + description: Enable TLS configuration for the host defined at `ingress.host` + parameter + type: boolean + secretName: + default: "" + description: The name to which the TLS Secret will be called + type: string + type: object + type: object + kubeVersion: + default: "" + description: |- + Common parameters + -- Override Kubernetes version + type: string + metrics: + description: Metrics configuration + properties: + serviceMonitor: + description: ServiceMonitor configuration
Allows configuring + your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) + using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) + can understand. + properties: + annotations: + default: {} + description: ServiceMonitor annotations + type: object + enabled: + default: false + description: If enabled, a ServiceMonitor resource for Prometheus + Operator is created
Prometheus Operator must be installed + in your cluster prior to enabling. + type: boolean + interval: + default: "null" + description: ServiceMonitor scrape interval + type: "null" + labels: + default: {} + description: Additional ServiceMonitor labels + type: object + path: + default: /metrics + description: ServiceMonitor endpoint path
Note that the /metrics + endpoint is NOT present in a freshly scaffolded Backstage app. + To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). + type: string + type: object + type: object + nameOverride: + default: "" + description: String to partially override common.names.fullname + type: string + networkPolicy: + description: '@section NetworkPolicy parameters' + properties: + egressRules: + description: Egress Rules + properties: + customRules: + default: [] + description: Additional custom egress rules + items: {} + type: array + denyConnectionsToExternal: + default: false + description: Deny external connections. Should not be enabled when + working with an external database. + type: boolean + type: object + enabled: + default: false + description: Specifies whether a NetworkPolicy should be created + type: boolean + ingressRules: + description: Ingress Rules + properties: + customRules: + default: [] + description: Additional custom ingress rules + items: {} + type: array + namespaceSelector: + default: {} + description: Namespace selector label allowed to access the Backstage + instance + type: object + podSelector: + default: {} + description: Pod selector label allowed to access the Backstage + instance + type: object + type: object + type: object + postgresql: + description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) + @default -- See below + properties: + architecture: + default: standalone + description: PostgreSQL architecture (`standalone` or `replication`) + type: string + auth: + description: The authentication details of the Postgres database + properties: + existingSecret: + default: "" + description: Name of existing secret to use for PostgreSQL credentials + type: string + password: + default: "" + description: Password for the custom user to create + type: string + secretKeys: + description: The secret keys Postgres will look for to retrieve + the relevant password + properties: + adminPasswordKey: + default: admin-password + description: The key in which Postgres will look for, for the + admin password, in the existing Secret + type: string + replicationPasswordKey: + default: replication-password + description: The key in which Postgres will look for, for the + replication password, in the existing Secret + type: string + userPasswordKey: + default: user-password + description: The key in which Postgres will look for, for the + user password, in the existing Secret + type: string + type: object + username: + default: bn_backstage + description: Name for a custom user to create + type: string + type: object + enabled: + default: false + description: Switch to enable or disable the PostgreSQL helm chart + type: boolean + type: object + service: + description: |- + @section Traffic Exposure parameters + Service parameters -- Service parameters @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for Backstage service + type: object + clusterIP: + default: "" + description: 'Backstage service Cluster IP
E.g `clusterIP: None`' + type: string + externalTrafficPolicy: + default: Cluster + description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' + type: string + extraPorts: + default: [] + description: Extra ports to expose in the Backstage service (normally + used with the `sidecar` value) + items: {} + type: array + loadBalancerIP: + default: "" + description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' + type: string + loadBalancerSourceRanges: + default: [] + description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer +
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' + items: {} + type: array + nodePorts: + description: Node port for the Backstage client connections Choose port + between `30000-32767` + properties: + backend: + default: "" + type: string + type: object + ports: + description: Backstage svc port for client connections + properties: + backend: + default: 7007 + type: integer + name: + default: http-backend + description: Backstage svc port name + type: string + targetPort: + default: backend + description: Backstage svc target port referencing receiving pod + container port + type: string + type: object + sessionAffinity: + default: None + description: 'Control where client requests go, to the same pod or round-robin + (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' + type: string + type: + default: ClusterIP + description: Kubernetes Service type + type: string + type: object + serviceAccount: + description: Service Account Configuration @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for the ServiceAccount. + type: object + automountServiceAccountToken: + default: true + description: Auto-mount the service account token in the pod + type: boolean + create: + default: false + description: Enable the creation of a ServiceAccount for Backstage pods + type: boolean + labels: + default: {} + description: Additional custom labels to the service ServiceAccount. + type: object + name: + default: "" + description: Name of the ServiceAccount to use If not set and `serviceAccount.create` + is true, a name is generated + type: string + type: object + type: object + version: 0.4.0 From f7075e64d90d288c0d7b87934da517175609273b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 18:57:54 +0200 Subject: [PATCH 514/601] Update Kadras Engineering Platform metadata and add version 0.21.0 (#444) Co-authored-by: github-actions --- .../0.21.0.yml | 276 ++++++++++++++++++ 1 file changed, 276 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.21.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.21.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.21.0.yml new file mode 100644 index 0000000..68dffef --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.21.0.yml @@ -0,0 +1,276 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.21.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2024-10-23T16:56:28Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:8f7e2b7db5ebc6fc250229277e9d70762aca962811a5c7ccfaf1bc5f1a09d473 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dapr: + default: {} + description: Configuration for the Dapr package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `build`, `run`.' + enum: + - standalone + - build + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.21.0 From 1d958683f81d4e62a69cf9b4d24f8ef6d1d2f9f4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 19:00:04 +0200 Subject: [PATCH 515/601] chore: Remove deprecated packages --- README.md | 3 - .../0.12.3.yml | 48 -- .../metadata.yml | 19 - .../1.15.3.yml | 207 ------ .../crossplane.packages.kadras.io/1.17.1.yml | 377 ---------- .../4.11.7.yml | 211 ------ .../0.3.0.yml | 555 -------------- .../0.20.1.yml | 298 -------- .../flux.packages.kadras.io/2.3.0.yml | 107 --- .../1.15.2.yml | 304 -------- .../kpack.packages.kadras.io/0.15.0.yml | 157 ---- .../kpack.packages.kadras.io/metadata.yml | 20 - .../kyverno.packages.kadras.io/1.12.5.yml | 182 ----- .../1.24.0.yml | 31 - .../2.10.0.yml | 44 -- .../0.53.4.yml | 690 ------------------ .../metadata.yml | 19 - 17 files changed, 3272 deletions(-) delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.12.3.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.15.3.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.17.1.yml delete mode 100644 repo/packages/dependency-track.packages.kadras.io/4.11.7.yml delete mode 100644 repo/packages/developer-portal.packages.kadras.io/0.3.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.20.1.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.3.0.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.15.2.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.15.0.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.12.5.yml delete mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.24.0.yml delete mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.10.0.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.53.4.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml diff --git a/README.md b/README.md index 4fbf792..c3b20a3 100644 --- a/README.md +++ b/README.md @@ -13,7 +13,6 @@ This repository contains the following Carvel packages. | Package | Description | |---------|-------------| -| [buildpacks-catalog](https://github.com/kadras-io/buildpacks-catalog) | A curated set of buildpacks, stacks, and builders to use with kpack, a Kubernetes-native implementation of Cloud Native Buildpacks. | | [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates. | | [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | | [crossplane](https://github.com/kadras-io/package-for-crossplane) | A Kubernetes extension that transforms your Kubernetes cluster into a universal control plane. | @@ -24,7 +23,6 @@ This repository contains the following Carvel packages. | [flux](https://github.com/kadras-io/package-for-flux) | A continuous deployment solution for Kubernetes, powered by the GitOps Toolkit. | | [gitops-configurer](https://github.com/kadras-io/gitops-configurer) | Provides GitOps configuration for the Kadras Engineering Platform. | | [knative-serving](https://github.com/kadras-io/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | -| [kpack](https://github.com/kadras-io/package-for-kpack) | A Kubernetes-native implementation of Cloud Native Buildpacks to build source code into OCI images from within your cluster. | | [kyverno](https://github.com/kadras-io/package-for-kyverno) | A policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans. | | [metrics-server](https://github.com/kadras-io/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | | [postgresql-operator](https://github.com/kadras-io/package-for-postgresql-operator) | CloudNativePG, a Kubernetes operator that covers the full lifecycle of a PostgreSQL database cluster with a primary/standby architecture, using native streaming replication. | @@ -32,7 +30,6 @@ This repository contains the following Carvel packages. | [rbac-configurer](https://github.com/kadras-io/rbac-configurer) | Provides default roles and RBAC configuration for the Kadras Engineering Platform. | | [secretgen-controller](https://github.com/kadras-io/package-for-secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. | | [service-binding](https://github.com/kadras-io/package-for-service-binding) | A standard and automated way for communicating service secrets to workloads. | -| [tekton-pipelines](https://github.com/kadras-io/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | | [tempo-operator](https://github.com/kadras-io/package-for-tempo-operator) | A solution to manage Grafana Tempo on Kubernetes and OpenShift clusters. | | [workspace-provisioner](https://github.com/kadras-io/workspace-provisioner) | Provisions and configures workspaces (namespaces or virtual clusters) to work with the Kadras Engineering Platform. | diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.12.3.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.12.3.yml deleted file mode 100644 index 4c24710..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.12.3.yml +++ /dev/null @@ -1,48 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.12.3 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2024-09-23T20:24:21Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:eb9c8b125fc99ea872dd1d1ab8f698632df777ca5367a16b6a615bff4e5bc2e2 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - minLength: 1 - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.12.3 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml deleted file mode 100644 index 6cd36c4..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,19 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io -spec: - categories: - - build - displayName: buildpacks-catalog - iconSVGBase64: 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 - longDescription: A set of buildpacks, stacks, and builders to use with kpack, a - Kubernetes-native implementation of Cloud Native Buildpacks. It supports multiple - languages and frameworks. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: A set of buildpacks, stacks, and builders to use with kpack. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/buildpacks-catalog - for community support. diff --git a/repo/packages/cert-manager.packages.kadras.io/1.15.3.yml b/repo/packages/cert-manager.packages.kadras.io/1.15.3.yml deleted file mode 100644 index fbfe2f6..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.15.3.yml +++ /dev/null @@ -1,207 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.15.3 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2024-09-01T09:19:44Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:f61a4aff8862cdc31c33e1f5a85040243f5f6b55b953132417cad5d653119b3d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cainjector: - additionalProperties: false - description: Settings for the cainjector controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility.' - minLength: 1 - type: string - type: object - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - challenge: - additionalProperties: false - properties: - dns_provider: - default: digital_ocean - description: 'The DNS provider to use for the ACME dns01 challenge. - Valid options: `digital_ocean`.' - enum: - - digital_ocean - type: string - secret: - additionalProperties: false - properties: - key: - default: "" - description: The key within the Secret that contains the credentials - needed for the dns01 challenge. - type: string - name: - default: "" - description: Name of the Secret containing the credentials needed - for the dns01 challenge. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - needed for the dns01 challenge. - type: string - type: object - type: - default: http01 - description: 'The type of challenge used by the ACME CA Server. - Valid options: `http01`, `dns01`.' - enum: - - http01 - - dns01 - type: string - type: object - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - production: - default: false - description: Whether to use Let's Encrypt staging (recommended for non-production - environments) or production. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - minLength: 1 - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_pki: - additionalProperties: false - description: Settings for the built-in, private PKI - properties: - include: - default: true - description: Whether to include a ClusterIssuer for a private PKI. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - at least 3 replicas are recommended. - minimum: 1 - type: integer - secure_port: - default: 6443 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility.' - type: integer - type: object - type: object - version: 1.15.3 diff --git a/repo/packages/crossplane.packages.kadras.io/1.17.1.yml b/repo/packages/crossplane.packages.kadras.io/1.17.1.yml deleted file mode 100644 index df4e2ec..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.17.1.yml +++ /dev/null @@ -1,377 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.17.1 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2024-09-23T20:15:58Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:d9b049032f888539f415b03f1b6f4808527cbeb1f0561e1cbcc43d7e7f049dcf - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.17.1 diff --git a/repo/packages/dependency-track.packages.kadras.io/4.11.7.yml b/repo/packages/dependency-track.packages.kadras.io/4.11.7.yml deleted file mode 100644 index 144b4e3..0000000 --- a/repo/packages/dependency-track.packages.kadras.io/4.11.7.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dependency-track.packages.kadras.io.4.11.7 -spec: - licenses: - - Apache 2.0 - refName: dependency-track.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases - releasedAt: "2024-09-23T19:54:51Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dependency-track@sha256:143d73b7a7af4a9e55addb7ae816620e5baaaeaf46c7e157795bc6b6ce5cd6a6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - api_server: - additionalProperties: false - description: Settings for the API Server component. - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - format: - default: console - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `warn`, `error`.' - enum: - - trace - - debug - - info - - warn - - error - type: string - type: object - metrics: - additionalProperties: false - description: Settings for metrics. - properties: - enabled: - default: true - description: Whether to enable the generation of Prometheus metrics. - type: boolean - type: object - resources: - additionalProperties: false - description: Resource configuration for the API Server component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "4" - description: CPU limits configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory limits configuration for the API Server - component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: "0.5" - description: CPU requests configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory requests configuration for the API Server - component. - type: string - type: object - type: object - storage: - additionalProperties: false - description: Storage configuration for the API Server component. - properties: - class_name: - default: "" - description: Class name for the PersistenceVolume to create. - type: string - size: - default: 1Gi - description: Size of the PersistenceVolume to create. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Dependency Track. It must be a valid DNS name. - minLength: 4 - type: string - frontend: - additionalProperties: false - description: Settings for the Frontend component. - properties: - replicas: - default: 1 - description: The number of Frontend replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - resources: - additionalProperties: false - description: Resource configuration for the Frontend component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU limits configuration for the Frontend component. - type: string - memory: - default: 128Mi - description: Memory limits configuration for the Frontend component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 150m - description: CPU requests configuration for the Frontend component. - type: string - memory: - default: 64Mi - description: Memory requests configuration for the Frontend - component. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use for enabling TLS in - Dependency Track. - example: kadras-ca-issuer - minLength: 4 - type: string - x-example-description: Kadras private CA - postgresql: - additionalProperties: false - description: Settings for the PostgreSQL database. - properties: - instances: - default: 1 - description: Number of instances for the PostgreSQL database cluster. - Define at least 3 for production scenarios. - minimum: 1 - type: integer - storage: - additionalProperties: false - description: Storage configuration for each PostgreSQL instance. - properties: - size: - default: 1Gi - description: Size of the PersistenceVolume to create for each PostgreSQL - instance. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - system_requirement_check: - default: true - description: Whether Dependency Track will check for memory and CPU requirements - at startup time. - type: boolean - type: object - version: 4.11.7 diff --git a/repo/packages/developer-portal.packages.kadras.io/0.3.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.3.0.yml deleted file mode 100644 index aceb18c..0000000 --- a/repo/packages/developer-portal.packages.kadras.io/0.3.0.yml +++ /dev/null @@ -1,555 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: developer-portal.packages.kadras.io.0.3.0 -spec: - refName: developer-portal.packages.kadras.io - releasedAt: "2024-09-25T20:01:02Z" - template: - spec: - deploy: - - kapp: - intoNs: backstage - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-developer-portal@sha256:6a2d4d060cfe6e072c95ac69ed77a02dade7a86bb01db5587c4d5670dd574cb7 - template: - - helmTemplate: - name: backstage - namespace: backstage - path: config/helm/upstream/backstage - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - backstage: - description: Backstage parameters @default -- See below - properties: - affinity: - default: {} - description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' - type: object - annotations: - default: {} - description: Additional custom annotations for the `Deployment` resource - type: object - appConfig: - default: {} - description: 'Allows to define the appConfig as a multiline string that - generates a ConfigMap automatically, not requiring to have it pre - provisioned as with the extraAppConfig key. DO NOT USE if you need - to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: - https://somedomain.tld -- Generates ConfigMap and configures it in - the Backstage pods' - type: object - args: - default: [] - description: Backstage container command arguments - items: {} - type: array - command: - default: [] - description: Backstage container command - items: - default: node - type: string - type: array - containerPorts: - description: Container ports on the Deployment - properties: - backend: - default: 7007 - type: integer - type: object - containerSecurityContext: - default: {} - description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' - type: object - extraAppConfig: - default: [] - description: Extra app configuration files to inline into command arguments - items: {} - type: array - extraContainers: - default: [] - description: Deployment sidecars - items: {} - type: array - extraEnvVars: - default: [] - description: Backstage container environment variables - items: {} - type: array - extraEnvVarsCM: - default: [] - description: Backstage container environment variables from existing - ConfigMaps - items: {} - type: array - extraEnvVarsSecrets: - default: [] - description: Backstage container environment variables from existing - Secrets - items: {} - type: array - extraVolumeMounts: - default: [] - description: Backstage container additional volume mounts - items: {} - type: array - extraVolumes: - default: [] - description: Backstage container additional volumes - items: {} - type: array - image: - properties: - digest: - default: "" - description: Backstage image digest (digest takes precedence over - image tag) - type: string - pullPolicy: - default: Always - description: 'Specify a imagePullPolicy. Defaults to ''Always'' - if image tag is ''latest'', else set to ''IfNotPresent''
- Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' - type: string - pullSecrets: - default: [] - description: 'Optionally specify an array of imagePullSecrets. Secrets - must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -
E.g: `pullSecrets: [myRegistryKeySecretName]`' - items: {} - type: array - registry: - default: ghcr.io - description: Backstage image registry - type: string - repository: - default: backstage/backstage - description: Backstage image repository - type: string - tag: - default: latest - description: Backstage image tag (immutable tags are recommended) - type: string - type: object - initContainers: - default: [] - description: Backstage container init containers - items: {} - type: array - installDir: - default: /app - description: Directory containing the backstage installation - type: string - livenessProbe: - default: {} - description: 'Liveness Probe Backstage doesn''t provide any health endpoints - by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks -
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - default: {} - description: 'Startup Probe Backstage doesn''t provide any health endpoints - by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks -
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + items: {} + type: array + extraTls: + default: [] + description: 'The TLS configuration for additional hostnames to be covered + with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls + ' + items: {} + type: array + host: + default: "" + description: 'Hostname to be used to expose the route to access the + backstage application (e.g: backstage.IP.nip.io)' + type: string + path: + default: / + description: 'Path to be used to expose the full route to access the + backstage application (e.g: IP.nip.io/backstage)' + type: string + tls: + description: Ingress TLS parameters + properties: + enabled: + default: false + description: Enable TLS configuration for the host defined at `ingress.host` + parameter + type: boolean + secretName: + default: "" + description: The name to which the TLS Secret will be called + type: string + type: object + type: object + kubeVersion: + default: "" + description: |- + Common parameters + -- Override Kubernetes version + type: string + metrics: + description: Metrics configuration + properties: + serviceMonitor: + description: ServiceMonitor configuration
Allows configuring + your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) + using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) + can understand. + properties: + annotations: + default: {} + description: ServiceMonitor annotations + type: object + enabled: + default: false + description: If enabled, a ServiceMonitor resource for Prometheus + Operator is created
Prometheus Operator must be installed + in your cluster prior to enabling. + type: boolean + interval: + default: "null" + description: ServiceMonitor scrape interval + type: "null" + labels: + default: {} + description: Additional ServiceMonitor labels + type: object + path: + default: /metrics + description: ServiceMonitor endpoint path
Note that the /metrics + endpoint is NOT present in a freshly scaffolded Backstage app. + To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). + type: string + type: object + type: object + nameOverride: + default: "" + description: String to partially override common.names.fullname + type: string + networkPolicy: + description: '@section NetworkPolicy parameters' + properties: + egressRules: + description: Egress Rules + properties: + customRules: + default: [] + description: Additional custom egress rules + items: {} + type: array + denyConnectionsToExternal: + default: false + description: Deny external connections. Should not be enabled when + working with an external database. + type: boolean + type: object + enabled: + default: false + description: Specifies whether a NetworkPolicy should be created + type: boolean + ingressRules: + description: Ingress Rules + properties: + customRules: + default: [] + description: Additional custom ingress rules + items: {} + type: array + namespaceSelector: + default: {} + description: Namespace selector label allowed to access the Backstage + instance + type: object + podSelector: + default: {} + description: Pod selector label allowed to access the Backstage + instance + type: object + type: object + type: object + postgresql: + description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) + @default -- See below + properties: + architecture: + default: standalone + description: PostgreSQL architecture (`standalone` or `replication`) + type: string + auth: + description: The authentication details of the Postgres database + properties: + existingSecret: + default: "" + description: Name of existing secret to use for PostgreSQL credentials + type: string + password: + default: "" + description: Password for the custom user to create + type: string + secretKeys: + description: The secret keys Postgres will look for to retrieve + the relevant password + properties: + adminPasswordKey: + default: admin-password + description: The key in which Postgres will look for, for the + admin password, in the existing Secret + type: string + replicationPasswordKey: + default: replication-password + description: The key in which Postgres will look for, for the + replication password, in the existing Secret + type: string + userPasswordKey: + default: user-password + description: The key in which Postgres will look for, for the + user password, in the existing Secret + type: string + type: object + username: + default: bn_backstage + description: Name for a custom user to create + type: string + type: object + enabled: + default: false + description: Switch to enable or disable the PostgreSQL helm chart + type: boolean + type: object + service: + description: |- + @section Traffic Exposure parameters + Service parameters -- Service parameters @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for Backstage service + type: object + clusterIP: + default: "" + description: 'Backstage service Cluster IP
E.g `clusterIP: None`' + type: string + externalTrafficPolicy: + default: Cluster + description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' + type: string + extraPorts: + default: [] + description: Extra ports to expose in the Backstage service (normally + used with the `sidecar` value) + items: {} + type: array + loadBalancerIP: + default: "" + description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' + type: string + loadBalancerSourceRanges: + default: [] + description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer +
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' + items: {} + type: array + nodePorts: + description: Node port for the Backstage client connections Choose port + between `30000-32767` + properties: + backend: + default: "" + type: string + type: object + ports: + description: Backstage svc port for client connections + properties: + backend: + default: 7007 + type: integer + name: + default: http-backend + description: Backstage svc port name + type: string + targetPort: + default: backend + description: Backstage svc target port referencing receiving pod + container port + type: string + type: object + sessionAffinity: + default: None + description: 'Control where client requests go, to the same pod or round-robin + (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' + type: string + type: + default: ClusterIP + description: Kubernetes Service type + type: string + type: object + serviceAccount: + description: Service Account Configuration @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for the ServiceAccount. + type: object + automountServiceAccountToken: + default: true + description: Auto-mount the service account token in the pod + type: boolean + create: + default: false + description: Enable the creation of a ServiceAccount for Backstage pods + type: boolean + labels: + default: {} + description: Additional custom labels to the service ServiceAccount. + type: object + name: + default: "" + description: Name of the ServiceAccount to use If not set and `serviceAccount.create` + is true, a name is generated + type: string + type: object + type: object + version: 0.4.1 From 67a1e483c1f0a7935f736a7e52bb40e3d3f1240d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 11 Nov 2024 07:14:04 +0100 Subject: [PATCH 525/601] Update Kadras Engineering Platform metadata and add version 0.21.2 (#452) Co-authored-by: github-actions --- .../0.21.2.yml | 276 ++++++++++++++++++ 1 file changed, 276 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml b/repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml new file mode 100644 index 0000000..4c67417 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml @@ -0,0 +1,276 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.21.2 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2024-11-11T05:52:24Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:d863da4b71e20b4e22f5ac223b1bbb5672333ca6022906a58580a8047a9906de + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dapr: + default: {} + description: Configuration for the Dapr package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `build`, `run`.' + enum: + - standalone + - build + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.21.2 From 81b7ff04ca8cdd8bf5aab946bb33cbc5c586dbde Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 11 Nov 2024 07:16:07 +0100 Subject: [PATCH 526/601] chore: Remove deprecated packages --- .../contour.packages.kadras.io/1.30.0.yml | 226 ------- .../4.12.0.yml | 211 ------ .../0.4.0.yml | 607 ------------------ .../0.21.1.yml | 276 -------- .../kyverno.packages.kadras.io/1.12.6.yml | 182 ------ .../0.13.0.yml | 288 --------- 6 files changed, 1790 deletions(-) delete mode 100644 repo/packages/contour.packages.kadras.io/1.30.0.yml delete mode 100644 repo/packages/dependency-track.packages.kadras.io/4.12.0.yml delete mode 100644 repo/packages/developer-portal.packages.kadras.io/0.4.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.21.1.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.12.6.yml delete mode 100644 repo/packages/tempo-operator.packages.kadras.io/0.13.0.yml diff --git a/repo/packages/contour.packages.kadras.io/1.30.0.yml b/repo/packages/contour.packages.kadras.io/1.30.0.yml deleted file mode 100644 index 4f4e0ac..0000000 --- a/repo/packages/contour.packages.kadras.io/1.30.0.yml +++ /dev/null @@ -1,226 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.30.0 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2024-09-01T11:29:21Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:8d8a3cfbdac59f2c3b59c8280fc4b073f8661ceed8f305cfe9588b1cc011337e - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - enum: - - json - - text - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - enum: - - info - - debug - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configMapData: - default: {} - description: The YAML contents of the `contour` ConfigMap. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - enum: - - trace - - debug - - info - - warning - - warn - - error - - critical - - "off" - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service. - enum: - - Cluster - - Local - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy. - enum: - - NodePort - - ClusterIP - - LoadBalancer - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, `http` - & `https` are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - minimum: 30 - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - enum: - - Deployment - - DaemonSet - type: string - type: object - type: object - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - minLength: 1 - type: string - type: object - version: 1.30.0 diff --git a/repo/packages/dependency-track.packages.kadras.io/4.12.0.yml b/repo/packages/dependency-track.packages.kadras.io/4.12.0.yml deleted file mode 100644 index e213497..0000000 --- a/repo/packages/dependency-track.packages.kadras.io/4.12.0.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dependency-track.packages.kadras.io.4.12.0 -spec: - licenses: - - Apache 2.0 - refName: dependency-track.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases - releasedAt: "2024-10-23T15:53:31Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dependency-track@sha256:0097ca41b942d4d3132c7b6b5d40879015b1ec2a7db1076aaf814bfa990f281b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - api_server: - additionalProperties: false - description: Settings for the API Server component. - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - format: - default: console - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `warn`, `error`.' - enum: - - trace - - debug - - info - - warn - - error - type: string - type: object - metrics: - additionalProperties: false - description: Settings for metrics. - properties: - enabled: - default: true - description: Whether to enable the generation of Prometheus metrics. - type: boolean - type: object - resources: - additionalProperties: false - description: Resource configuration for the API Server component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "4" - description: CPU limits configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory limits configuration for the API Server - component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: "0.5" - description: CPU requests configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory requests configuration for the API Server - component. - type: string - type: object - type: object - storage: - additionalProperties: false - description: Storage configuration for the API Server component. - properties: - class_name: - default: "" - description: Class name for the PersistenceVolume to create. - type: string - size: - default: 1Gi - description: Size of the PersistenceVolume to create. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Dependency Track. It must be a valid DNS name. - minLength: 4 - type: string - frontend: - additionalProperties: false - description: Settings for the Frontend component. - properties: - replicas: - default: 1 - description: The number of Frontend replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - resources: - additionalProperties: false - description: Resource configuration for the Frontend component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU limits configuration for the Frontend component. - type: string - memory: - default: 128Mi - description: Memory limits configuration for the Frontend component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 150m - description: CPU requests configuration for the Frontend component. - type: string - memory: - default: 64Mi - description: Memory requests configuration for the Frontend - component. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use for enabling TLS in - Dependency Track. - example: kadras-ca-issuer - minLength: 4 - type: string - x-example-description: Kadras private CA - postgresql: - additionalProperties: false - description: Settings for the PostgreSQL database. - properties: - instances: - default: 1 - description: Number of instances for the PostgreSQL database cluster. - Define at least 3 for production scenarios. - minimum: 1 - type: integer - storage: - additionalProperties: false - description: Storage configuration for each PostgreSQL instance. - properties: - size: - default: 1Gi - description: Size of the PersistenceVolume to create for each PostgreSQL - instance. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - system_requirement_check: - default: true - description: Whether Dependency Track will check for memory and CPU requirements - at startup time. - type: boolean - type: object - version: 4.12.0 diff --git a/repo/packages/developer-portal.packages.kadras.io/0.4.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.4.0.yml deleted file mode 100644 index 8f6c805..0000000 --- a/repo/packages/developer-portal.packages.kadras.io/0.4.0.yml +++ /dev/null @@ -1,607 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: developer-portal.packages.kadras.io.0.4.0 -spec: - refName: developer-portal.packages.kadras.io - releasedAt: "2024-10-23T16:46:38Z" - template: - spec: - deploy: - - kapp: - intoNs: backstage - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-developer-portal@sha256:f9c1dd9e16caddeb91ca1cad1525969e4fa986eefb7e36c51dfcba99c65fdfd0 - template: - - helmTemplate: - name: backstage - namespace: backstage - path: config/helm/upstream/backstage - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - backstage: - description: Backstage parameters @default -- See below - properties: - affinity: - default: {} - description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' - type: object - annotations: - default: {} - description: Additional custom annotations for the `Deployment` resource - type: object - appConfig: - default: {} - description: 'Allows to define the appConfig as a multiline string that - generates a ConfigMap automatically, not requiring to have it pre - provisioned as with the extraAppConfig key. DO NOT USE if you need - to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: - https://somedomain.tld -- Generates ConfigMap and configures it in - the Backstage pods' - type: object - args: - default: [] - description: Backstage container command arguments - items: {} - type: array - command: - default: [] - description: Backstage container command - items: - default: node - type: string - type: array - containerPorts: - description: Container ports on the Deployment - properties: - backend: - default: 7007 - type: integer - type: object - containerSecurityContext: - default: {} - description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' - type: object - extraAppConfig: - default: [] - description: Extra app configuration files to inline into command arguments - items: {} - type: array - extraContainers: - default: [] - description: Deployment sidecars - items: {} - type: array - extraEnvVars: - default: [] - description: Backstage container environment variables - items: {} - type: array - extraEnvVarsCM: - default: [] - description: Backstage container environment variables from existing - ConfigMaps - items: {} - type: array - extraEnvVarsSecrets: - default: [] - description: Backstage container environment variables from existing - Secrets - items: {} - type: array - extraVolumeMounts: - default: [] - description: Backstage container additional volume mounts - items: {} - type: array - extraVolumes: - default: [] - description: Backstage container additional volumes - items: {} - type: array - image: - properties: - digest: - default: "" - description: Backstage image digest (digest takes precedence over - image tag) - type: string - pullPolicy: - default: Always - description: 'Specify a imagePullPolicy. Defaults to ''Always'' - if image tag is ''latest'', else set to ''IfNotPresent''
- Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' - type: string - pullSecrets: - default: [] - description: 'Optionally specify an array of imagePullSecrets. Secrets - must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -
E.g: `pullSecrets: [myRegistryKeySecretName]`' - items: {} - type: array - registry: - default: ghcr.io - description: Backstage image registry - type: string - repository: - default: backstage/backstage - description: Backstage image repository - type: string - tag: - default: latest - description: Backstage image tag (immutable tags are recommended) - type: string - type: object - initContainers: - default: [] - description: Backstage container init containers - items: {} - type: array - installDir: - default: /app - description: Directory containing the backstage installation - type: string - livenessProbe: - description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - items: {} - type: array - extraTls: - default: [] - description: 'The TLS configuration for additional hostnames to be covered - with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls - ' - items: {} - type: array - host: - default: "" - description: 'Hostname to be used to expose the route to access the - backstage application (e.g: backstage.IP.nip.io)' - type: string - path: - default: / - description: 'Path to be used to expose the full route to access the - backstage application (e.g: IP.nip.io/backstage)' - type: string - tls: - description: Ingress TLS parameters - properties: - enabled: - default: false - description: Enable TLS configuration for the host defined at `ingress.host` - parameter - type: boolean - secretName: - default: "" - description: The name to which the TLS Secret will be called - type: string - type: object - type: object - kubeVersion: - default: "" - description: |- - Common parameters - -- Override Kubernetes version - type: string - metrics: - description: Metrics configuration - properties: - serviceMonitor: - description: ServiceMonitor configuration
Allows configuring - your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) - using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) - can understand. - properties: - annotations: - default: {} - description: ServiceMonitor annotations - type: object - enabled: - default: false - description: If enabled, a ServiceMonitor resource for Prometheus - Operator is created
Prometheus Operator must be installed - in your cluster prior to enabling. - type: boolean - interval: - default: "null" - description: ServiceMonitor scrape interval - type: "null" - labels: - default: {} - description: Additional ServiceMonitor labels - type: object - path: - default: /metrics - description: ServiceMonitor endpoint path
Note that the /metrics - endpoint is NOT present in a freshly scaffolded Backstage app. - To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). - type: string - type: object - type: object - nameOverride: - default: "" - description: String to partially override common.names.fullname - type: string - networkPolicy: - description: '@section NetworkPolicy parameters' - properties: - egressRules: - description: Egress Rules - properties: - customRules: - default: [] - description: Additional custom egress rules - items: {} - type: array - denyConnectionsToExternal: - default: false - description: Deny external connections. Should not be enabled when - working with an external database. - type: boolean - type: object - enabled: - default: false - description: Specifies whether a NetworkPolicy should be created - type: boolean - ingressRules: - description: Ingress Rules - properties: - customRules: - default: [] - description: Additional custom ingress rules - items: {} - type: array - namespaceSelector: - default: {} - description: Namespace selector label allowed to access the Backstage - instance - type: object - podSelector: - default: {} - description: Pod selector label allowed to access the Backstage - instance - type: object - type: object - type: object - postgresql: - description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) - @default -- See below - properties: - architecture: - default: standalone - description: PostgreSQL architecture (`standalone` or `replication`) - type: string - auth: - description: The authentication details of the Postgres database - properties: - existingSecret: - default: "" - description: Name of existing secret to use for PostgreSQL credentials - type: string - password: - default: "" - description: Password for the custom user to create - type: string - secretKeys: - description: The secret keys Postgres will look for to retrieve - the relevant password - properties: - adminPasswordKey: - default: admin-password - description: The key in which Postgres will look for, for the - admin password, in the existing Secret - type: string - replicationPasswordKey: - default: replication-password - description: The key in which Postgres will look for, for the - replication password, in the existing Secret - type: string - userPasswordKey: - default: user-password - description: The key in which Postgres will look for, for the - user password, in the existing Secret - type: string - type: object - username: - default: bn_backstage - description: Name for a custom user to create - type: string - type: object - enabled: - default: false - description: Switch to enable or disable the PostgreSQL helm chart - type: boolean - type: object - service: - description: |- - @section Traffic Exposure parameters - Service parameters -- Service parameters @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for Backstage service - type: object - clusterIP: - default: "" - description: 'Backstage service Cluster IP
E.g `clusterIP: None`' - type: string - externalTrafficPolicy: - default: Cluster - description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' - type: string - extraPorts: - default: [] - description: Extra ports to expose in the Backstage service (normally - used with the `sidecar` value) - items: {} - type: array - loadBalancerIP: - default: "" - description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' - type: string - loadBalancerSourceRanges: - default: [] - description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer -
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' - items: {} - type: array - nodePorts: - description: Node port for the Backstage client connections Choose port - between `30000-32767` - properties: - backend: - default: "" - type: string - type: object - ports: - description: Backstage svc port for client connections - properties: - backend: - default: 7007 - type: integer - name: - default: http-backend - description: Backstage svc port name - type: string - targetPort: - default: backend - description: Backstage svc target port referencing receiving pod - container port - type: string - type: object - sessionAffinity: - default: None - description: 'Control where client requests go, to the same pod or round-robin - (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' - type: string - type: - default: ClusterIP - description: Kubernetes Service type - type: string - type: object - serviceAccount: - description: Service Account Configuration @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for the ServiceAccount. - type: object - automountServiceAccountToken: - default: true - description: Auto-mount the service account token in the pod - type: boolean - create: - default: false - description: Enable the creation of a ServiceAccount for Backstage pods - type: boolean - labels: - default: {} - description: Additional custom labels to the service ServiceAccount. - type: object - name: - default: "" - description: Name of the ServiceAccount to use If not set and `serviceAccount.create` - is true, a name is generated - type: string - type: object - type: object - version: 0.4.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.21.1.yml b/repo/packages/engineering-platform.packages.kadras.io/0.21.1.yml deleted file mode 100644 index e8e8477..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.21.1.yml +++ /dev/null @@ -1,276 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.21.1 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases - releasedAt: "2024-10-23T17:11:10Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:d2b2a1c51723d7c16d4e01fea5ff72ad4feb7d4cc35e80ba5e3e9ad903c8fb19 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - crossplane: - default: {} - description: Configuration for the Crossplane package. - nullable: true - dapr: - default: {} - description: Configuration for the Dapr package. - nullable: true - dependency_track: - default: {} - description: Configuration for the Dependency Track package. - nullable: true - developer_portal: - default: {} - description: Configuration for the Developer Portal package. - nullable: true - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - gitops_configurer: - default: {} - description: Configuration for the GitOps Configurer package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - additional_packages: - default: [] - description: A list of packages to include in the installation. - items: - default: "" - type: string - type: array - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - enum: - - private - - letsencrypt_staging - - letsencrypt - - custom - type: string - type: object - type: object - namespace: - default: kadras-system - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `build`, `run`.' - enum: - - standalone - - build - - run - type: string - type: object - postgresql_operator: - default: {} - description: Configuration for the PostgreSQL Operator package. - nullable: true - rabbitmq_operator: - default: {} - description: Configuration for the RabbitMQ Operator package. - nullable: true - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - service_binding: - default: {} - description: Configuration for the Service Binding package. - nullable: true - tempo_operator: - default: {} - description: Configuration for the Tempo Operator package. - nullable: true - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.21.1 diff --git a/repo/packages/kyverno.packages.kadras.io/1.12.6.yml b/repo/packages/kyverno.packages.kadras.io/1.12.6.yml deleted file mode 100644 index 2125e49..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.12.6.yml +++ /dev/null @@ -1,182 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.12.6 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2024-10-23T15:04:55Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:91dd7f089bcb66795555269a8b72cd4cb77e21aa62c8677af0aa8ea2aa9db66d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - minimum: 1 - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - enum: - - text - - json - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - maximum: 6 - minimum: 1 - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - enum: - - grpc - - prometheus - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.12.6 diff --git a/repo/packages/tempo-operator.packages.kadras.io/0.13.0.yml b/repo/packages/tempo-operator.packages.kadras.io/0.13.0.yml deleted file mode 100644 index e8d280f..0000000 --- a/repo/packages/tempo-operator.packages.kadras.io/0.13.0.yml +++ /dev/null @@ -1,288 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tempo-operator.packages.kadras.io.0.13.0 -spec: - licenses: - - Apache 2.0 - refName: tempo-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tempo-operator/releases - releasedAt: "2024-09-01T09:30:34Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tempo-operator@sha256:f8b1fd1b929e725d977a7b7fb88753cfc91e998a3d3173b326754a888fd98f2a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - configMapData: - default: {} - description: The YAML contents of the `tempo-operator-manager-config` ConfigMap. - See https://github.com/grafana/tempo-operator/blob/main/docs/operator/config.yaml - for more information. - nullable: true - controller: - additionalProperties: false - description: Settings for the Tempo Operator controller. - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order to - enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tempo: - additionalProperties: false - description: Settings for Tempo. - properties: - extraConfig: - default: {} - description: Additional configuration for Tempo that will be merged - with the one generated by the Operator. It has higher precedence than - the Operator. - nullable: true - jaegerui: - additionalProperties: false - description: Settings for Jaeger UI. - properties: - enabled: - default: false - description: Whether to enable the Jaeger UI to visualize traces. - type: boolean - type: object - namespace: - default: default - description: Namespace where to provision a Tempo installation, stack - or monolithic. - type: string - observability: - additionalProperties: false - description: Settings for observability. - properties: - grafana: - additionalProperties: false - properties: - createDatasource: - default: false - description: Whether a Datasource managed by Grafana Operator - should be created for Tempo. - type: boolean - type: object - metrics: - additionalProperties: false - properties: - createPrometheusRules: - default: false - description: Whether PrometheusRules for alerts managed by Prometheus - Operator should be created for Tempo. - type: boolean - createServiceMonitors: - default: false - description: Whether ServiceMonitors managed by Prometheus Operator - should be created for Tempo. - type: boolean - type: object - tracing: - additionalProperties: false - properties: - jaegerEndpoint: - default: "" - description: The Jaeger endpoint where to send traces. Only - for TempoStack. - type: string - samplingFraction: - default: "" - description: Sampling frequence for Tempo traces. Only for TempoStack. - type: string - type: object - type: object - resources: - additionalProperties: false - description: Settings for total resources. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 750m - type: string - memory: - default: 2Gi - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 500m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - storage: - additionalProperties: false - description: Settings for storage. - properties: - backend: - additionalProperties: false - description: Tracing backend object storage configuration. - properties: - secret: - additionalProperties: false - properties: - name: - default: "" - description: Name of the Secret containing the credentials - to access the configured object storage. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - to access the configured object storage. - type: string - type: object - type: - default: memory - description: 'Type of object storage that should be used. Valid - options: `azure`, `gcs`, `s3`, `memory` (only for TempoMonolithic).' - enum: - - azure - - gcs - - s3 - - memory - type: string - type: object - size: - default: 10Gi - description: The size of the storage used by Tempo. - type: string - type: object - tempoMonolithic: - additionalProperties: false - description: Settings for the built-in TempoMonolithic instance. - properties: - enabled: - default: false - description: Whether to deploy the built-in TempoMonolithic instance. - type: boolean - type: object - tempoStack: - additionalProperties: false - description: Settings for the built-in TempoStack instance. - properties: - compactor: - additionalProperties: false - description: Settings for the Tempo Compactor. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Compactor - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - distributor: - additionalProperties: false - description: Settings for the Tempo Distributor. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Distributor - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - enabled: - default: false - description: Whether to deploy the built-in TempoStack instance. - type: boolean - gateway: - additionalProperties: false - description: Settings for the Tempo Gateway. - properties: - enabled: - default: false - description: Whether to enable the Tempo Gateway. - type: boolean - ingress: - additionalProperties: false - description: Ingress for the Tempo Gateway. - properties: - annotations: - additionalProperties: false - description: The annotations for the Ingress object. - properties: {} - type: object - host: - default: "" - description: The hostname of the Ingress object. - type: string - ingressClassName: - default: contour - description: The class of the Ingress Controller to use - for the Tempo Gateway. - type: string - type: - default: null - description: 'Type of Ingress for the Tempo Gateway. Valid - options: `ingress`, `route`.' - enum: - - ingress - - route - nullable: true - type: string - type: object - type: object - ingester: - additionalProperties: false - description: Settings for the Tempo Ingester. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Ingester component. - In order to enable high availability, it should be greater - than 1. - type: integer - type: object - querier: - additionalProperties: false - description: Settings for the Tempo Querier. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Querier component. - In order to enable high availability, it should be greater - than 1. - type: integer - type: object - queryFrontend: - additionalProperties: false - description: Settings for the Tempo Query Frontend. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Query Frontend - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - type: object - type: object - type: object - version: 0.13.0 From 2b1bf0ffc1b78d2044116964443710342c7c0b73 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 11 Nov 2024 07:16:21 +0100 Subject: [PATCH 527/601] chore: Set version 0.23.2 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 189ab54..b209fa1 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.23.1 + VERSION: 0.23.2 jobs: build: From 9b5b1cf7a197f442ec2c30776d37aa182b1f36a3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 11 Nov 2024 07:18:06 +0100 Subject: [PATCH 528/601] Update Crossplane metadata and add version 1.18.0 (#453) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.18.0.yml | 385 ++++++++++++++++++ 1 file changed, 385 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.18.0.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.18.0.yml b/repo/packages/crossplane.packages.kadras.io/1.18.0.yml new file mode 100644 index 0000000..4f7afc0 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.18.0.yml @@ -0,0 +1,385 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.18.0 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2024-11-11T06:15:39Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:a84cbb46327ef92b717799f0a13e321c320146dd2cfeaf27280410716a2060ee + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + dnsPolicy: + default: "" + description: Specify the `dnsPolicy` to be used by the Crossplane pod. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + function: + properties: + packages: + default: [] + description: A list of Function packages to install + items: {} + type: array + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: [] + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + items: {} + type: array + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + revisionHistoryLimit: + default: "null" + description: The number of RBAC Manager ReplicaSets to retain. + type: "null" + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the RBAC Manager pod + deployment. + items: {} + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 500m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 1024Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + revisionHistoryLimit: + default: "null" + description: The number of Crossplane ReplicaSets to retain. + type: "null" + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + service: + properties: + customAnnotations: + default: {} + description: Configure annotations on the service object. Only enabled + when webhooks.enabled = true + type: object + type: object + serviceAccount: + properties: + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.18.0 From a4c6b641678c84188f2c3c4ba70e3f4a5c798fd2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Dec 2024 15:43:03 +0100 Subject: [PATCH 529/601] Update Kyverno metadata and add version 1.13.1 (#454) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.13.1.yml | 182 ++++++++++++++++++ 1 file changed, 182 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.13.1.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.13.1.yml b/repo/packages/kyverno.packages.kadras.io/1.13.1.yml new file mode 100644 index 0000000..c364339 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.13.1.yml @@ -0,0 +1,182 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.13.1 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2024-12-01T14:41:08Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:90e617371815dc55f487a758d5122f9049664f37bb47a5d67763fa3591b3ff11 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + minimum: 1 + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + enum: + - text + - json + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + maximum: 6 + minimum: 1 + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + enum: + - grpc + - prometheus + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.13.1 From a4d9751552e2d8b92614f630c630ba634ae6e673 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Dec 2024 16:01:09 +0100 Subject: [PATCH 530/601] Update cert-manager metadata and add version 1.16.2 (#455) Co-authored-by: github-actions --- .../1.16.2.yml | 207 ++++++++++++++++++ 1 file changed, 207 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.16.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml new file mode 100644 index 0000000..a408881 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml @@ -0,0 +1,207 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.16.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2024-12-01T14:51:27Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:1e308d6e3cc271636c0c2f88aa28018c758a8bc8817c920b1d85392bf9507d5a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cainjector: + additionalProperties: false + description: Settings for the cainjector controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility.' + minLength: 1 + type: string + type: object + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + challenge: + additionalProperties: false + properties: + dns_provider: + default: digital_ocean + description: 'The DNS provider to use for the ACME dns01 challenge. + Valid options: `digital_ocean`.' + enum: + - digital_ocean + type: string + secret: + additionalProperties: false + properties: + key: + default: "" + description: The key within the Secret that contains the credentials + needed for the dns01 challenge. + type: string + name: + default: "" + description: Name of the Secret containing the credentials needed + for the dns01 challenge. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + needed for the dns01 challenge. + type: string + type: object + type: + default: http01 + description: 'The type of challenge used by the ACME CA Server. + Valid options: `http01`, `dns01`.' + enum: + - http01 + - dns01 + type: string + type: object + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + production: + default: false + description: Whether to use Let's Encrypt staging (recommended for non-production + environments) or production. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + minLength: 1 + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_pki: + additionalProperties: false + description: Settings for the built-in, private PKI + properties: + include: + default: true + description: Whether to include a ClusterIssuer for a private PKI. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + at least 3 replicas are recommended. + minimum: 1 + type: integer + secure_port: + default: 6443 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility.' + type: integer + type: object + type: object + version: 1.16.2 From dd8b5068657e229667634ac42f49afa43a4f11d8 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Dec 2024 16:01:19 +0100 Subject: [PATCH 531/601] Update Crossplane metadata and add version 1.18.1 (#456) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.18.1.yml | 385 ++++++++++++++++++ 1 file changed, 385 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.18.1.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.18.1.yml b/repo/packages/crossplane.packages.kadras.io/1.18.1.yml new file mode 100644 index 0000000..f63fe44 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.18.1.yml @@ -0,0 +1,385 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.18.1 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2024-12-01T14:59:11Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:c1c3b2d526feaec167a7623c6b7fade593c7a0ab82e69d424f7a1a2898a5e9b2 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + dnsPolicy: + default: "" + description: Specify the `dnsPolicy` to be used by the Crossplane pod. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + function: + properties: + packages: + default: [] + description: A list of Function packages to install + items: {} + type: array + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: [] + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + items: {} + type: array + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + revisionHistoryLimit: + default: "null" + description: The number of RBAC Manager ReplicaSets to retain. + type: "null" + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the RBAC Manager pod + deployment. + items: {} + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 500m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 1024Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + revisionHistoryLimit: + default: "null" + description: The number of Crossplane ReplicaSets to retain. + type: "null" + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + service: + properties: + customAnnotations: + default: {} + description: Configure annotations on the service object. Only enabled + when webhooks.enabled = true + type: object + type: object + serviceAccount: + properties: + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.18.1 From dcf4dc3d5e26de53a3f8b23220fec556e7bd995f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 2 Dec 2024 07:17:32 +0100 Subject: [PATCH 532/601] Update Kadras Developer Portal metadata and add version 0.5.0 (#457) Co-authored-by: github-actions --- .../0.5.0.yml | 607 ++++++++++++++++++ 1 file changed, 607 insertions(+) create mode 100644 repo/packages/developer-portal.packages.kadras.io/0.5.0.yml diff --git a/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml new file mode 100644 index 0000000..e0dd560 --- /dev/null +++ b/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml @@ -0,0 +1,607 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: developer-portal.packages.kadras.io.0.5.0 +spec: + refName: developer-portal.packages.kadras.io + releasedAt: "2024-12-02T06:15:48Z" + template: + spec: + deploy: + - kapp: + intoNs: backstage + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-developer-portal@sha256:63627a8553c9ce3e3dcc03755ae47eb4600c99c573fe50350e061a429d4722b6 + template: + - helmTemplate: + name: backstage + namespace: backstage + path: config/helm/upstream/backstage + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + backstage: + description: Backstage parameters @default -- See below + properties: + affinity: + default: {} + description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' + type: object + annotations: + default: {} + description: Additional custom annotations for the `Deployment` resource + type: object + appConfig: + default: {} + description: 'Allows to define the appConfig as a multiline string that + generates a ConfigMap automatically, not requiring to have it pre + provisioned as with the extraAppConfig key. DO NOT USE if you need + to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: + https://somedomain.tld -- Generates ConfigMap and configures it in + the Backstage pods' + type: object + args: + default: [] + description: Backstage container command arguments + items: {} + type: array + command: + default: [] + description: Backstage container command + items: + default: node + type: string + type: array + containerPorts: + description: Container ports on the Deployment + properties: + backend: + default: 7007 + type: integer + type: object + containerSecurityContext: + default: {} + description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' + type: object + extraAppConfig: + default: [] + description: Extra app configuration files to inline into command arguments + items: {} + type: array + extraContainers: + default: [] + description: Deployment sidecars + items: {} + type: array + extraEnvVars: + default: [] + description: Backstage container environment variables + items: {} + type: array + extraEnvVarsCM: + default: [] + description: Backstage container environment variables from existing + ConfigMaps + items: {} + type: array + extraEnvVarsSecrets: + default: [] + description: Backstage container environment variables from existing + Secrets + items: {} + type: array + extraVolumeMounts: + default: [] + description: Backstage container additional volume mounts + items: {} + type: array + extraVolumes: + default: [] + description: Backstage container additional volumes + items: {} + type: array + image: + properties: + digest: + default: "" + description: Backstage image digest (digest takes precedence over + image tag) + type: string + pullPolicy: + default: Always + description: 'Specify a imagePullPolicy. Defaults to ''Always'' + if image tag is ''latest'', else set to ''IfNotPresent''
+ Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' + type: string + pullSecrets: + default: [] + description: 'Optionally specify an array of imagePullSecrets. Secrets + must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +
E.g: `pullSecrets: [myRegistryKeySecretName]`' + items: {} + type: array + registry: + default: ghcr.io + description: Backstage image registry + type: string + repository: + default: backstage/backstage + description: Backstage image repository + type: string + tag: + default: latest + description: Backstage image tag (immutable tags are recommended) + type: string + type: object + initContainers: + default: [] + description: Backstage container init containers + items: {} + type: array + installDir: + default: /app + description: Directory containing the backstage installation + type: string + livenessProbe: + description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + items: {} + type: array + extraTls: + default: [] + description: 'The TLS configuration for additional hostnames to be covered + with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls + ' + items: {} + type: array + host: + default: "" + description: 'Hostname to be used to expose the route to access the + backstage application (e.g: backstage.IP.nip.io)' + type: string + path: + default: / + description: 'Path to be used to expose the full route to access the + backstage application (e.g: IP.nip.io/backstage)' + type: string + tls: + description: Ingress TLS parameters + properties: + enabled: + default: false + description: Enable TLS configuration for the host defined at `ingress.host` + parameter + type: boolean + secretName: + default: "" + description: The name to which the TLS Secret will be called + type: string + type: object + type: object + kubeVersion: + default: "" + description: |- + Common parameters + -- Override Kubernetes version + type: string + metrics: + description: Metrics configuration + properties: + serviceMonitor: + description: ServiceMonitor configuration
Allows configuring + your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) + using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) + can understand. + properties: + annotations: + default: {} + description: ServiceMonitor annotations + type: object + enabled: + default: false + description: If enabled, a ServiceMonitor resource for Prometheus + Operator is created
Prometheus Operator must be installed + in your cluster prior to enabling. + type: boolean + interval: + default: "null" + description: ServiceMonitor scrape interval + type: "null" + labels: + default: {} + description: Additional ServiceMonitor labels + type: object + path: + default: /metrics + description: ServiceMonitor endpoint path
Note that the /metrics + endpoint is NOT present in a freshly scaffolded Backstage app. + To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). + type: string + type: object + type: object + nameOverride: + default: "" + description: String to partially override common.names.fullname + type: string + networkPolicy: + description: '@section NetworkPolicy parameters' + properties: + egressRules: + description: Egress Rules + properties: + customRules: + default: [] + description: Additional custom egress rules + items: {} + type: array + denyConnectionsToExternal: + default: false + description: Deny external connections. Should not be enabled when + working with an external database. + type: boolean + type: object + enabled: + default: false + description: Specifies whether a NetworkPolicy should be created + type: boolean + ingressRules: + description: Ingress Rules + properties: + customRules: + default: [] + description: Additional custom ingress rules + items: {} + type: array + namespaceSelector: + default: {} + description: Namespace selector label allowed to access the Backstage + instance + type: object + podSelector: + default: {} + description: Pod selector label allowed to access the Backstage + instance + type: object + type: object + type: object + postgresql: + description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) + @default -- See below + properties: + architecture: + default: standalone + description: PostgreSQL architecture (`standalone` or `replication`) + type: string + auth: + description: The authentication details of the Postgres database + properties: + existingSecret: + default: "" + description: Name of existing secret to use for PostgreSQL credentials + type: string + password: + default: "" + description: Password for the custom user to create + type: string + secretKeys: + description: The secret keys Postgres will look for to retrieve + the relevant password + properties: + adminPasswordKey: + default: admin-password + description: The key in which Postgres will look for, for the + admin password, in the existing Secret + type: string + replicationPasswordKey: + default: replication-password + description: The key in which Postgres will look for, for the + replication password, in the existing Secret + type: string + userPasswordKey: + default: user-password + description: The key in which Postgres will look for, for the + user password, in the existing Secret + type: string + type: object + username: + default: bn_backstage + description: Name for a custom user to create + type: string + type: object + enabled: + default: false + description: Switch to enable or disable the PostgreSQL helm chart + type: boolean + type: object + service: + description: |- + @section Traffic Exposure parameters + Service parameters -- Service parameters @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for Backstage service + type: object + clusterIP: + default: "" + description: 'Backstage service Cluster IP
E.g `clusterIP: None`' + type: string + externalTrafficPolicy: + default: Cluster + description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' + type: string + extraPorts: + default: [] + description: Extra ports to expose in the Backstage service (normally + used with the `sidecar` value) + items: {} + type: array + loadBalancerIP: + default: "" + description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' + type: string + loadBalancerSourceRanges: + default: [] + description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer +
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' + items: {} + type: array + nodePorts: + description: Node port for the Backstage client connections Choose port + between `30000-32767` + properties: + backend: + default: "" + type: string + type: object + ports: + description: Backstage svc port for client connections + properties: + backend: + default: 7007 + type: integer + name: + default: http-backend + description: Backstage svc port name + type: string + targetPort: + default: backend + description: Backstage svc target port referencing receiving pod + container port + type: string + type: object + sessionAffinity: + default: None + description: 'Control where client requests go, to the same pod or round-robin + (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' + type: string + type: + default: ClusterIP + description: Kubernetes Service type + type: string + type: object + serviceAccount: + description: Service Account Configuration @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for the ServiceAccount. + type: object + automountServiceAccountToken: + default: true + description: Auto-mount the service account token in the pod + type: boolean + create: + default: false + description: Enable the creation of a ServiceAccount for Backstage pods + type: boolean + labels: + default: {} + description: Additional custom labels to the service ServiceAccount. + type: object + name: + default: "" + description: Name of the ServiceAccount to use If not set and `serviceAccount.create` + is true, a name is generated + type: string + type: object + type: object + version: 0.5.0 From fe63331503b13a87a67529add8f817cfde2f3ddd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 18 Dec 2024 08:19:01 +0100 Subject: [PATCH 533/601] Update Kadras Engineering Platform metadata and add version 0.22.0 (#458) Co-authored-by: github-actions --- .../0.22.0.yml | 276 ++++++++++++++++++ 1 file changed, 276 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml new file mode 100644 index 0000000..7230222 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml @@ -0,0 +1,276 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.22.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2024-12-02T07:17:41Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:3c0d66ee3846c602b386f4e1ffd0e7fc864565b1cb01e27df1ce1096f97f7019 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dapr: + default: {} + description: Configuration for the Dapr package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `build`, `run`.' + enum: + - standalone + - build + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.22.0 From ab8254320612840cc8c434cb0ccb3feddf1d50ac Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 27 Feb 2025 23:52:40 +0100 Subject: [PATCH 534/601] deps: bump sigstore/cosign-installer from 3.7.0 to 3.8.1 (#460) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.7.0 to 3.8.1. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v3.7.0...v3.8.1) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index b209fa1..4b5a0bc 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.7.0 + uses: sigstore/cosign-installer@v3.8.1 - name: Log into container registry uses: redhat-actions/podman-login@v1.7 From 1daa7fe1ed947dcc8eea1053c8700a06d1dfaaf1 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 27 Feb 2025 23:52:53 +0100 Subject: [PATCH 535/601] deps: bump slsa-framework/slsa-github-generator from 2.0.0 to 2.1.0 (#461) Bumps [slsa-framework/slsa-github-generator](https://github.com/slsa-framework/slsa-github-generator) from 2.0.0 to 2.1.0. - [Release notes](https://github.com/slsa-framework/slsa-github-generator/releases) - [Changelog](https://github.com/slsa-framework/slsa-github-generator/blob/main/CHANGELOG.md) - [Commits](https://github.com/slsa-framework/slsa-github-generator/compare/v2.0.0...v2.1.0) --- updated-dependencies: - dependency-name: slsa-framework/slsa-github-generator dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 4b5a0bc..40a5644 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -106,7 +106,7 @@ jobs: actions: read id-token: write packages: write - uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v2.0.0 + uses: slsa-framework/slsa-github-generator/.github/workflows/generator_container_slsa3.yml@v2.1.0 with: image: ${{ needs.build.outputs.image-name }} digest: ${{ needs.build.outputs.image-digest }} From 4e62f9cd8658538898232c580484b58d34b698c2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 27 Feb 2025 23:53:06 +0100 Subject: [PATCH 536/601] Update secretgen-controller metadata and add version 0.19.1 (#462) Co-authored-by: github-actions --- .../0.19.1.yml | 35 +++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml new file mode 100644 index 0000000..26451bd --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml @@ -0,0 +1,35 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.19.1 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases + releasedAt: "2025-02-27T22:40:56Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:a6a5f415deb8fc0e383e40a5df5c7bafffb74b8d6f9bd076954667ef65624c21 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.19.1 From baa3575308e052b6634f6368d23719f9038729bd Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 27 Feb 2025 23:53:55 +0100 Subject: [PATCH 537/601] docs: Update social links --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index c3b20a3..7fbbae8 100644 --- a/README.md +++ b/README.md @@ -3,7 +3,7 @@ ![Release Workflow](https://github.com/kadras-io/kadras-packages/actions/workflows/release.yml/badge.svg) [![The SLSA Level 3 badge](https://slsa.dev/images/gh-badge-level3.svg)](https://slsa.dev/spec/v1.0/levels) [![The Apache 2.0 license badge](https://img.shields.io/badge/License-Apache_2.0-blue.svg)](https://opensource.org/licenses/Apache-2.0) -[![Follow us on Twitter](https://img.shields.io/static/v1?label=Twitter&message=Follow&color=1DA1F2)](https://twitter.com/kadrasIO) +[![Follow us on Bluesky](https://img.shields.io/static/v1?label=Bluesky&message=Follow&color=1DA1F2)](https://bsky.app/profile/kadras.bsky.social) The [Kadras](https://kadras.io) collection of Kubernetes-native packages built with [Carvel](https://carvel.dev). From 28c5eaed3f7a018f23fc41946487013f5d90e097 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 27 Feb 2025 23:54:24 +0100 Subject: [PATCH 538/601] docs: Update minimum k8s version --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 7fbbae8..49ec325 100644 --- a/README.md +++ b/README.md @@ -37,7 +37,7 @@ This repository contains the following Carvel packages. ### Prerequisites -* Kubernetes 1.29+ +* Kubernetes 1.30+ * Carvel [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI. * Carvel [kapp-controller](https://carvel.dev/kapp-controller) deployed in your Kubernetes cluster. You can install it with Carvel [`kapp`](https://carvel.dev/kapp/docs/latest/install) (recommended choice) or `kubectl`. From 9d1e97ba3aae6928fa52ea985fa4461785a58717 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 11:07:18 +0200 Subject: [PATCH 539/601] Update RabbitMQ Operator metadata and add version 2.12.1 (#463) Co-authored-by: github-actions --- .../2.12.1.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml new file mode 100644 index 0000000..42be1e4 --- /dev/null +++ b/repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: rabbitmq-operator.packages.kadras.io.2.12.1 +spec: + licenses: + - Apache 2.0 + refName: rabbitmq-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases + releasedAt: "2025-03-30T09:05:43Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:5db0fce98633ffcb3abc81092657de396b572545c446c6df36491f3a68ef9ac1 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Logging configuration. + properties: + level: + default: info + description: The Operator log level. Valid options are `info` and `debug`. + enum: + - info + - debug + type: string + type: object + type: object + version: 2.12.1 From df6542277da832699c0804667e62d97de7ad4cc6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 11:16:25 +0200 Subject: [PATCH 540/601] Update PostgreSQL Operator metadata and add version 1.25.1 (#464) Co-authored-by: github-actions --- .../1.25.1.yml | 31 +++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml diff --git a/repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml b/repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml new file mode 100644 index 0000000..b6b782d --- /dev/null +++ b/repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: postgresql-operator.packages.kadras.io.1.25.1 +spec: + licenses: + - Apache 2.0 + refName: postgresql-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-postgresql-operator/releases + releasedAt: "2025-03-30T09:14:53Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-postgresql-operator@sha256:87d31e3d8b06859553fbd26e60451ff111405fd0eeeee574601225cff0bab69f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 1.25.1 From 35230e3d31ec1a308987f6f5a98a8f25f9a289d6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 11:23:46 +0200 Subject: [PATCH 541/601] Update Kyverno metadata and add version 1.13.4 (#465) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.13.4.yml | 182 ++++++++++++++++++ 1 file changed, 182 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.13.4.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.13.4.yml b/repo/packages/kyverno.packages.kadras.io/1.13.4.yml new file mode 100644 index 0000000..44b3a4d --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.13.4.yml @@ -0,0 +1,182 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.13.4 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2025-03-30T09:22:14Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:8f195074a4af184aa8c0c3c5540376c3148b57057ebeb78e3aea27f5733f74ca + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + minimum: 1 + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + enum: + - text + - json + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + maximum: 6 + minimum: 1 + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + enum: + - grpc + - prometheus + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.13.4 From c5059cffe1cab24391aecef63f5aad3bb7bf977e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 11:41:36 +0200 Subject: [PATCH 542/601] Update cert-manager metadata and add version 1.17.1 (#466) Co-authored-by: github-actions --- .../1.17.1.yml | 207 ++++++++++++++++++ 1 file changed, 207 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.17.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.17.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.17.1.yml new file mode 100644 index 0000000..ad5be9e --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.17.1.yml @@ -0,0 +1,207 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.17.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2025-03-30T09:39:05Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:cdc37ed01390bc303ad71393dafb7f4dde377417d241abd7266bac17436c0a25 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cainjector: + additionalProperties: false + description: Settings for the cainjector controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility.' + minLength: 1 + type: string + type: object + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + challenge: + additionalProperties: false + properties: + dns_provider: + default: digital_ocean + description: 'The DNS provider to use for the ACME dns01 challenge. + Valid options: `digital_ocean`.' + enum: + - digital_ocean + type: string + secret: + additionalProperties: false + properties: + key: + default: "" + description: The key within the Secret that contains the credentials + needed for the dns01 challenge. + type: string + name: + default: "" + description: Name of the Secret containing the credentials needed + for the dns01 challenge. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + needed for the dns01 challenge. + type: string + type: object + type: + default: http01 + description: 'The type of challenge used by the ACME CA Server. + Valid options: `http01`, `dns01`.' + enum: + - http01 + - dns01 + type: string + type: object + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + production: + default: false + description: Whether to use Let's Encrypt staging (recommended for non-production + environments) or production. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + minLength: 1 + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_pki: + additionalProperties: false + description: Settings for the built-in, private PKI + properties: + include: + default: true + description: Whether to include a ClusterIssuer for a private PKI. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + at least 3 replicas are recommended. + minimum: 1 + type: integer + secure_port: + default: 6443 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility.' + type: integer + type: object + type: object + version: 1.17.1 From caa925b5010aae1136af2102f10615421202ed92 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:00:24 +0200 Subject: [PATCH 543/601] Update Tempo Operator metadata and add version 0.15.3 (#467) Co-authored-by: github-actions --- .../0.15.3.yml | 293 ++++++++++++++++++ 1 file changed, 293 insertions(+) create mode 100644 repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml diff --git a/repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml b/repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml new file mode 100644 index 0000000..8b5ac0d --- /dev/null +++ b/repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml @@ -0,0 +1,293 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tempo-operator.packages.kadras.io.0.15.3 +spec: + licenses: + - Apache 2.0 + refName: tempo-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tempo-operator/releases + releasedAt: "2025-03-30T09:56:13Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tempo-operator@sha256:3daff7e08c4d5f8deaa7c1b854b88ce764dc5628c92d1fbde4bb95548cd0754f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + configMapData: + default: {} + description: The YAML contents of the `tempo-operator-manager-config` ConfigMap. + See https://github.com/grafana/tempo-operator/blob/main/docs/operator/config.yaml + for more information. + nullable: true + controller: + additionalProperties: false + description: Settings for the Tempo Operator controller. + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order to + enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tempo: + additionalProperties: false + description: Settings for Tempo. + properties: + extraConfig: + default: {} + description: Additional configuration for Tempo that will be merged + with the one generated by the Operator. It has higher precedence than + the Operator. + nullable: true + jaegerui: + additionalProperties: false + description: Settings for Jaeger UI. + properties: + enabled: + default: false + description: Whether to enable the Jaeger UI to visualize traces. + type: boolean + type: object + namespace: + default: default + description: Namespace where to provision a Tempo installation, stack + or monolithic. + type: string + observability: + additionalProperties: false + description: Settings for observability. + properties: + grafana: + additionalProperties: false + properties: + createDatasource: + default: false + description: Whether a Datasource managed by Grafana Operator + should be created for Tempo. + type: boolean + type: object + metrics: + additionalProperties: false + properties: + createPrometheusRules: + default: false + description: Whether PrometheusRules for alerts managed by Prometheus + Operator should be created for Tempo. + type: boolean + createServiceMonitors: + default: false + description: Whether ServiceMonitors managed by Prometheus Operator + should be created for Tempo. + type: boolean + type: object + tracing: + additionalProperties: false + properties: + otlpHttpEndpoint: + default: "" + description: The OTLP HTTP endpoint where to send traces. Only + for TempoStack. + type: string + samplingFraction: + default: "" + description: Sampling frequence for Tempo traces. Only for TempoStack. + type: string + type: object + type: object + resources: + additionalProperties: false + description: Settings for total resources. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 750m + type: string + memory: + default: 2Gi + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 500m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + storage: + additionalProperties: false + description: Settings for storage. + properties: + backend: + additionalProperties: false + description: Tracing backend object storage configuration. + properties: + secret: + additionalProperties: false + properties: + name: + default: "" + description: Name of the Secret containing the credentials + to access the configured object storage. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + to access the configured object storage. + type: string + type: object + type: + default: memory + description: 'Type of object storage that should be used. Valid + options: `azure`, `gcs`, `s3`, `memory` (only for TempoMonolithic).' + enum: + - azure + - gcs + - s3 + - memory + type: string + type: object + size: + default: 10Gi + description: The size of the storage used by Tempo. + type: string + type: object + tempoMonolithic: + additionalProperties: false + description: Settings for the built-in TempoMonolithic instance. + properties: + enabled: + default: false + description: Whether to deploy the built-in TempoMonolithic instance. + type: boolean + type: object + tempoStack: + additionalProperties: false + description: Settings for the built-in TempoStack instance. + properties: + compactor: + additionalProperties: false + description: Settings for the Tempo Compactor. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Compactor + component. In order to enable high availability, it should + be greater than 1. + type: integer + type: object + distributor: + additionalProperties: false + description: Settings for the Tempo Distributor. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Distributor + component. In order to enable high availability, it should + be greater than 1. + type: integer + type: object + enabled: + default: false + description: Whether to deploy the built-in TempoStack instance. + type: boolean + gateway: + additionalProperties: false + description: Settings for the Tempo Gateway. + properties: + enabled: + default: false + description: Whether to enable the Tempo Gateway. + type: boolean + ingress: + additionalProperties: false + description: Ingress for the Tempo Gateway. + properties: + annotations: + additionalProperties: false + description: The annotations for the Ingress object. + properties: {} + type: object + host: + default: "" + description: The hostname of the Ingress object. + type: string + ingressClassName: + default: contour + description: The class of the Ingress Controller to use + for the Tempo Gateway. + type: string + type: + default: null + description: 'Type of Ingress for the Tempo Gateway. Valid + options: `ingress`, `route`.' + enum: + - ingress + - route + nullable: true + type: string + type: object + type: object + ingester: + additionalProperties: false + description: Settings for the Tempo Ingester. + properties: + podSecurityContext: + additionalProperties: false + description: PodSecurityContext for the Ingester component. + properties: {} + type: object + replicas: + default: 1 + description: Number of replicas to deploy for the Ingester component. + In order to enable high availability, it should be greater + than 1. + type: integer + type: object + querier: + additionalProperties: false + description: Settings for the Tempo Querier. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Querier component. + In order to enable high availability, it should be greater + than 1. + type: integer + type: object + queryFrontend: + additionalProperties: false + description: Settings for the Tempo Query Frontend. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Query Frontend + component. In order to enable high availability, it should + be greater than 1. + type: integer + type: object + type: object + type: object + type: object + version: 0.15.3 From 124113d5bd94bed3be1478c0ba05f7dbedda09ee Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:03:53 +0200 Subject: [PATCH 544/601] Update Contour metadata and add version 1.30.3 (#468) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.30.3.yml | 226 ++++++++++++++++++ 1 file changed, 226 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.30.3.yml diff --git a/repo/packages/contour.packages.kadras.io/1.30.3.yml b/repo/packages/contour.packages.kadras.io/1.30.3.yml new file mode 100644 index 0000000..3225691 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.30.3.yml @@ -0,0 +1,226 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.30.3 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2025-03-30T10:01:25Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:788d21b7280c68f30ee76d691302a488d6bd0c5fef2ce4aa6f0892e7ba106616 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + enum: + - json + - text + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + enum: + - info + - debug + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configMapData: + default: {} + description: The YAML contents of the `contour` ConfigMap. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + enum: + - trace + - debug + - info + - warning + - warn + - error + - critical + - "off" + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service. + enum: + - Cluster + - Local + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy. + enum: + - NodePort + - ClusterIP + - LoadBalancer + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, `http` + & `https` are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + minimum: 30 + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + enum: + - Deployment + - DaemonSet + type: string + type: object + type: object + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + minLength: 1 + type: string + type: object + version: 1.30.3 From 1e0b936c60c5f4983a711ca539bea6d119f86445 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:14:23 +0200 Subject: [PATCH 545/601] Update Crossplane metadata and add version 1.19.1 (#469) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.19.1.yml | 417 ++++++++++++++++++ 1 file changed, 417 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.19.1.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.19.1.yml b/repo/packages/crossplane.packages.kadras.io/1.19.1.yml new file mode 100644 index 0000000..b20ec1b --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.19.1.yml @@ -0,0 +1,417 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.19.1 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2025-03-30T10:11:45Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:4f7c9d240e40fa6035cdc0e70763a51f641dd14e13ca79e2e91a4f90ba672087 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + dnsPolicy: + default: "" + description: Specify the `dnsPolicy` to be used by the Crossplane pod. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + function: + properties: + packages: + default: [] + description: A list of Function packages to install + items: {} + type: array + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: [] + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + items: {} + type: array + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + port: + default: "" + description: The port the metrics server listens on. + type: string + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + packageManager: + properties: + enableAutomaticDependencyDowngrade: + default: false + description: Enable automatic dependency version downgrades. This configuration + is only used when `--enable-dependency-version-upgrades` flag is passed. + type: boolean + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + revisionHistoryLimit: + default: "null" + description: The number of RBAC Manager ReplicaSets to retain. + type: "null" + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the RBAC Manager pod + deployment. + items: {} + type: array + type: object + readiness: + properties: + port: + default: "" + description: The port the readyz server listens on. + type: string + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 500m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 1024Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + revisionHistoryLimit: + default: "null" + description: The number of Crossplane ReplicaSets to retain. + type: "null" + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + service: + properties: + customAnnotations: + default: {} + description: Configure annotations on the service object. Only enabled + when webhooks.enabled = true + type: object + type: object + serviceAccount: + properties: + create: + default: true + description: Specifies whether Crossplane ServiceAccount should be created + type: boolean + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + name: + default: "" + description: Provide the name of an already created Crossplane ServiceAccount. + Required when `serviceAccount.create` is `false` + type: string + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + port: + default: "" + description: The port the webhook server listens on. + type: string + type: object + type: object + version: 1.19.1 From bd8c9aa55bb5b964b80c59c7b443dedd4ea651df Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:17:00 +0200 Subject: [PATCH 546/601] Update Dapr metadata and add version 1.15.3 (#470) Co-authored-by: github-actions --- .../dapr.packages.kadras.io/1.15.3.yml | 208 ++++++++++++++++++ 1 file changed, 208 insertions(+) create mode 100644 repo/packages/dapr.packages.kadras.io/1.15.3.yml diff --git a/repo/packages/dapr.packages.kadras.io/1.15.3.yml b/repo/packages/dapr.packages.kadras.io/1.15.3.yml new file mode 100644 index 0000000..40b3e80 --- /dev/null +++ b/repo/packages/dapr.packages.kadras.io/1.15.3.yml @@ -0,0 +1,208 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dapr.packages.kadras.io.1.15.3 +spec: + refName: dapr.packages.kadras.io + releasedAt: "2025-03-30T10:15:27Z" + template: + spec: + deploy: + - kapp: + intoNs: dapr-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dapr@sha256:6349d5565735940eca2077bbd25527782e848130b71feec6f627ce61657f970b + template: + - helmTemplate: + name: dapr + namespace: dapr-system + path: config/helm/upstream/dapr + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + global: + properties: + actors: + properties: + enabled: + default: true + description: Enables actor functionality in the cluster + type: boolean + serviceName: + default: placement + description: Name of the service that provides actor placement services + type: string + type: object + argoRolloutServiceReconciler: + description: 'the issuerFilenames dictionary, if setup, have to contain + 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: + "tls.key"' + properties: + enabled: + default: false + type: boolean + type: object + daprControlPlaneOs: + default: linux + type: string + dnsSuffix: + default: .cluster.local + type: string + extraVolumeMounts: + default: {} + description: 'sentry: placement: operator: injector: scheduler:' + type: object + extraVolumes: + default: {} + description: and extraVolumeMounts are used to mount additional volumes + to the Dapr control plane pods. Useful for using alternative authentication + credentials to sentry. + type: object + ha: + properties: + disruption: + properties: + maximumUnavailable: + default: 25% + type: string + minimumAvailable: + default: "" + type: string + type: object + enabled: + default: false + type: boolean + replicaCount: + default: 3 + type: integer + type: object + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: "" + description: 'To help compatibility with other charts which use global.imagePullSecrets. + Allow either a string with single imagepullsecret or an array of {name: + pullSecret} maps (k8s-style) or an array of strings (more common helm-style). + global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - + name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - + pullSecret1 - pullSecret2' + type: string + issuerFilenames: + default: {} + type: object + k8sLabels: + properties: + app.kubernetes.io/component: + default: '{{ .Values.component }}' + type: string + app.kubernetes.io/managed-by: + default: '{{ .Release.Service }}' + type: string + app.kubernetes.io/name: + default: '{{ .Release.Name }}' + type: string + app.kubernetes.io/part-of: + default: dapr + type: string + app.kubernetes.io/version: + default: '{{ .Values.global.tag }}' + type: string + type: object + labels: + default: {} + type: object + logAsJson: + default: false + type: boolean + mtls: + properties: + allowedClockSkew: + default: 15m + type: string + controlPlaneTrustDomain: + default: cluster.local + type: string + enabled: + default: true + type: boolean + mountSentryVolume: + default: true + description: If set to true, a bound service account token will + be mounted and used to authenticate to Sentry. + type: boolean + workloadCertTTL: + default: 24h + type: string + type: object + nodeSelector: + default: {} + type: object + operator: + properties: + watchdogCanPatchPodLabels: + default: false + type: boolean + type: object + priorityClassName: + default: "" + type: string + prometheus: + properties: + enabled: + default: true + type: boolean + port: + default: 9090 + type: integer + type: object + rbac: + properties: + namespaced: + default: false + type: boolean + type: object + registry: + default: ghcr.io/dapr + type: string + reminders: + properties: + serviceName: + default: "" + description: Name of the service that provides reminders If empty, + uses the built-in reminders capabilities in Dapr sidecars + type: string + type: object + scheduler: + properties: + enabled: + default: true + description: Enables scheduler functionality in the cluster + type: boolean + type: object + seccompProfile: + default: "" + type: string + tag: + default: 1.15.3 + type: string + tolerations: + default: [] + items: {} + type: array + type: object + type: object + version: 1.15.3 From 367ab47573c561659679e2dca34fbb93dd109673 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:44:22 +0200 Subject: [PATCH 547/601] Update Flux metadata and add version 2.5.1 (#471) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.5.1.yml | 107 ++++++++++++++++++ 1 file changed, 107 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.5.1.yml diff --git a/repo/packages/flux.packages.kadras.io/2.5.1.yml b/repo/packages/flux.packages.kadras.io/2.5.1.yml new file mode 100644 index 0000000..e22334e --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.5.1.yml @@ -0,0 +1,107 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.5.1 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2025-03-30T10:41:42Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:0adb855ba4e1e05c3b24c415e2ad6db802b8fdb28eafaa695dc9126921a76a46 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + enum: + - trace + - debug + - info + - error + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.5.1 From 0eb4de4d37857d5bffb522665e5a580c364fd450 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:52:46 +0200 Subject: [PATCH 548/601] Update Dependency Track metadata and add version 4.12.7 (#472) Co-authored-by: github-actions --- .../4.12.7.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/dependency-track.packages.kadras.io/4.12.7.yml diff --git a/repo/packages/dependency-track.packages.kadras.io/4.12.7.yml b/repo/packages/dependency-track.packages.kadras.io/4.12.7.yml new file mode 100644 index 0000000..a179380 --- /dev/null +++ b/repo/packages/dependency-track.packages.kadras.io/4.12.7.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dependency-track.packages.kadras.io.4.12.7 +spec: + licenses: + - Apache 2.0 + refName: dependency-track.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases + releasedAt: "2025-03-30T10:51:32Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dependency-track@sha256:80484b86922e812960009155f1e0919b6d39eed869dee59b6c09675b05eac33d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + api_server: + additionalProperties: false + description: Settings for the API Server component. + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + format: + default: console + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `warn`, `error`.' + enum: + - trace + - debug + - info + - warn + - error + type: string + type: object + metrics: + additionalProperties: false + description: Settings for metrics. + properties: + enabled: + default: true + description: Whether to enable the generation of Prometheus metrics. + type: boolean + type: object + resources: + additionalProperties: false + description: Resource configuration for the API Server component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "4" + description: CPU limits configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory limits configuration for the API Server + component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: "0.5" + description: CPU requests configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory requests configuration for the API Server + component. + type: string + type: object + type: object + storage: + additionalProperties: false + description: Storage configuration for the API Server component. + properties: + class_name: + default: "" + description: Class name for the PersistenceVolume to create. + type: string + size: + default: 1Gi + description: Size of the PersistenceVolume to create. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Dependency Track. It must be a valid DNS name. + minLength: 4 + type: string + frontend: + additionalProperties: false + description: Settings for the Frontend component. + properties: + replicas: + default: 1 + description: The number of Frontend replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + resources: + additionalProperties: false + description: Resource configuration for the Frontend component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU limits configuration for the Frontend component. + type: string + memory: + default: 128Mi + description: Memory limits configuration for the Frontend component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 150m + description: CPU requests configuration for the Frontend component. + type: string + memory: + default: 64Mi + description: Memory requests configuration for the Frontend + component. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use for enabling TLS in + Dependency Track. + example: kadras-ca-issuer + minLength: 4 + type: string + x-example-description: Kadras private CA + postgresql: + additionalProperties: false + description: Settings for the PostgreSQL database. + properties: + instances: + default: 1 + description: Number of instances for the PostgreSQL database cluster. + Define at least 3 for production scenarios. + minimum: 1 + type: integer + storage: + additionalProperties: false + description: Storage configuration for each PostgreSQL instance. + properties: + size: + default: 1Gi + description: Size of the PersistenceVolume to create for each PostgreSQL + instance. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + system_requirement_check: + default: true + description: Whether Dependency Track will check for memory and CPU requirements + at startup time. + type: boolean + type: object + version: 4.12.7 From 623cf3016d984df794aa3f9bfbe086d76a155219 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 12:59:03 +0200 Subject: [PATCH 549/601] Update Knative Serving metadata and add version 1.17.0 (#473) Co-authored-by: github-actions --- .../1.17.0.yml | 304 ++++++++++++++++++ 1 file changed, 304 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.17.0.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.17.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.17.0.yml new file mode 100644 index 0000000..6ad96cb --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.17.0.yml @@ -0,0 +1,304 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.17.0 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2025-03-30T10:55:45Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:5a2ea94dae79dba764bc013a78744378dbb8a738bb851eb8dd69c930311c076a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + enum: + - http + - https + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + enum: + - Enabled + - Redirected + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + minimum: 0 + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + enum: + - zipkin + - none + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + enum: + - "true" + - "false" + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + maxLength: 3 + minLength: 1 + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + minLength: 4 + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + minLength: 1 + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + minLength: 1 + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 20 + minimum: 1 + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 5 + minimum: 1 + type: integer + type: object + type: object + type: object + version: 1.17.0 From 5d33d05b4d3e1cd3400f23eaae782e98897ef097 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 18:33:54 +0200 Subject: [PATCH 550/601] Update Kadras Developer Portal metadata and add version 0.6.0 (#474) Co-authored-by: github-actions --- .../0.6.0.yml | 634 ++++++++++++++++++ 1 file changed, 634 insertions(+) create mode 100644 repo/packages/developer-portal.packages.kadras.io/0.6.0.yml diff --git a/repo/packages/developer-portal.packages.kadras.io/0.6.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.6.0.yml new file mode 100644 index 0000000..6ab38a6 --- /dev/null +++ b/repo/packages/developer-portal.packages.kadras.io/0.6.0.yml @@ -0,0 +1,634 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: developer-portal.packages.kadras.io.0.6.0 +spec: + refName: developer-portal.packages.kadras.io + releasedAt: "2025-03-30T16:31:00Z" + template: + spec: + deploy: + - kapp: + intoNs: backstage + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-developer-portal@sha256:42b7e0dc1d8f81019aa748e84c1b6745991628e41f1a944f5b2eb498334c7887 + template: + - helmTemplate: + name: backstage + namespace: backstage + path: config/helm/upstream/backstage + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + backstage: + description: Backstage parameters @default -- See below + properties: + affinity: + default: {} + description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' + type: object + annotations: + default: {} + description: Additional custom annotations for the `Deployment` resource + type: object + appConfig: + default: {} + description: 'Allows to define the appConfig as a multiline string that + generates a ConfigMap automatically, not requiring to have it pre + provisioned as with the extraAppConfig key. DO NOT USE if you need + to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: + https://somedomain.tld -- Generates ConfigMap and configures it in + the Backstage pods' + type: object + args: + default: [] + description: Backstage container command arguments + items: {} + type: array + command: + default: [] + description: Backstage container command + items: + default: node + type: string + type: array + containerPorts: + description: Container ports on the Deployment + properties: + backend: + default: 7007 + type: integer + type: object + containerSecurityContext: + default: {} + description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' + type: object + extraAppConfig: + default: [] + description: Extra app configuration files to inline into command arguments + items: {} + type: array + extraContainers: + default: [] + description: Deployment sidecars + items: {} + type: array + extraEnvVars: + default: [] + description: Backstage container environment variables + items: {} + type: array + extraEnvVarsCM: + default: [] + description: Backstage container environment variables from existing + ConfigMaps + items: {} + type: array + extraEnvVarsSecrets: + default: [] + description: Backstage container environment variables from existing + Secrets + items: {} + type: array + extraPorts: + default: [] + description: Backstage container additional ports + items: {} + type: array + extraVolumeMounts: + default: [] + description: Backstage container additional volume mounts + items: {} + type: array + extraVolumes: + default: [] + description: Backstage container additional volumes + items: {} + type: array + hostAliases: + default: [] + description: 'Host Aliases for the pod
Ref: https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/' + items: {} + type: array + image: + properties: + digest: + default: "" + description: Backstage image digest (digest takes precedence over + image tag) + type: string + pullPolicy: + default: Always + description: 'Specify a imagePullPolicy. Defaults to ''Always'' + if image tag is ''latest'', else set to ''IfNotPresent''
+ Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' + type: string + pullSecrets: + default: [] + description: 'Optionally specify an array of imagePullSecrets. Secrets + must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +
E.g: `pullSecrets: [myRegistryKeySecretName]`' + items: {} + type: array + registry: + default: ghcr.io + description: Backstage image registry + type: string + repository: + default: backstage/backstage + description: Backstage image repository + type: string + tag: + default: latest + description: Backstage image tag (immutable tags are recommended) + type: string + type: object + initContainers: + default: [] + description: Backstage container init containers + items: {} + type: array + installDir: + default: /app + description: Directory containing the backstage installation + type: string + livenessProbe: + description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + items: {} + type: array + extraTls: + default: [] + description: 'The TLS configuration for additional hostnames to be covered + with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls + ' + items: {} + type: array + host: + default: "" + description: 'Hostname to be used to expose the route to access the + backstage application (e.g: backstage.IP.nip.io)' + type: string + path: + default: / + description: 'Path to be used to expose the full route to access the + backstage application (e.g: IP.nip.io/backstage)' + type: string + tls: + description: Ingress TLS parameters + properties: + enabled: + default: false + description: Enable TLS configuration for the host defined at `ingress.host` + parameter + type: boolean + secretName: + default: "" + description: The name to which the TLS Secret will be called + type: string + type: object + type: object + kubeVersion: + default: "" + description: |- + Common parameters + -- Override Kubernetes version + type: string + metrics: + description: Metrics configuration + properties: + serviceMonitor: + description: ServiceMonitor configuration
Allows configuring + your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) + using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) + can understand. + properties: + annotations: + default: {} + description: ServiceMonitor annotations + type: object + enabled: + default: false + description: If enabled, a ServiceMonitor resource for Prometheus + Operator is created
Prometheus Operator must be installed + in your cluster prior to enabling. + type: boolean + interval: + default: "null" + description: ServiceMonitor scrape interval + type: "null" + labels: + default: {} + description: Additional ServiceMonitor labels + type: object + path: + default: /metrics + description: ServiceMonitor endpoint path
Note that the /metrics + endpoint is NOT present in a freshly scaffolded Backstage app. + To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). + type: string + port: + default: http-backend + description: ServiceMonitor endpoint port
The port where + the metrics are exposed. If using OpenTelemetry as [documented + here](https://backstage.io/docs/tutorials/setup-opentelemetry/), + then the port needs to be explicitely specificed. OpenTelemetry's + default port is 9464. + type: string + type: object + type: object + nameOverride: + default: "" + description: String to partially override common.names.fullname + type: string + networkPolicy: + description: '@section NetworkPolicy parameters' + properties: + egressRules: + description: Egress Rules + properties: + customRules: + default: [] + description: Additional custom egress rules + items: {} + type: array + denyConnectionsToExternal: + default: false + description: Deny external connections. Should not be enabled when + working with an external database. + type: boolean + type: object + enabled: + default: false + description: Specifies whether a NetworkPolicy should be created + type: boolean + ingressRules: + description: Ingress Rules + properties: + customRules: + default: [] + description: Additional custom ingress rules + items: {} + type: array + namespaceSelector: + default: {} + description: Namespace selector label allowed to access the Backstage + instance + type: object + podSelector: + default: {} + description: Pod selector label allowed to access the Backstage + instance + type: object + type: object + type: object + postgresql: + description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) + @default -- See below + properties: + architecture: + default: standalone + description: PostgreSQL architecture (`standalone` or `replication`) + type: string + auth: + description: The authentication details of the Postgres database + properties: + existingSecret: + default: "" + description: Name of existing secret to use for PostgreSQL credentials + type: string + password: + default: "" + description: Password for the custom user to create + type: string + secretKeys: + description: The secret keys Postgres will look for to retrieve + the relevant password + properties: + adminPasswordKey: + default: admin-password + description: The key in which Postgres will look for, for the + admin password, in the existing Secret + type: string + replicationPasswordKey: + default: replication-password + description: The key in which Postgres will look for, for the + replication password, in the existing Secret + type: string + userPasswordKey: + default: user-password + description: The key in which Postgres will look for, for the + user password, in the existing Secret + type: string + type: object + username: + default: bn_backstage + description: Name for a custom user to create + type: string + type: object + enabled: + default: false + description: Switch to enable or disable the PostgreSQL helm chart + type: boolean + type: object + service: + description: |- + @section Traffic Exposure parameters + Service parameters -- Service parameters @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for Backstage service + type: object + clusterIP: + default: "" + description: 'Backstage service Cluster IP
E.g `clusterIP: None`' + type: string + externalTrafficPolicy: + default: Cluster + description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' + type: string + extraPorts: + default: [] + description: Extra ports to expose in the Backstage service (normally + used with the `sidecar` value) + items: {} + type: array + ipFamilies: + default: [] + description: 'IP Families
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' + items: {} + type: array + ipFamilyPolicy: + default: "" + description: 'IP Family Policy
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' + type: string + loadBalancerIP: + default: "" + description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' + type: string + loadBalancerSourceRanges: + default: [] + description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer +
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' + items: {} + type: array + nodePorts: + description: Node port for the Backstage client connections Choose port + between `30000-32767` + properties: + backend: + default: "" + type: string + type: object + ports: + description: Backstage svc port for client connections + properties: + backend: + default: 7007 + type: integer + name: + default: http-backend + description: Backstage svc port name + type: string + targetPort: + default: backend + description: Backstage svc target port referencing receiving pod + container port + type: string + type: object + sessionAffinity: + default: None + description: 'Control where client requests go, to the same pod or round-robin + (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' + type: string + type: + default: ClusterIP + description: Kubernetes Service type + type: string + type: object + serviceAccount: + description: Service Account Configuration @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for the ServiceAccount. + type: object + automountServiceAccountToken: + default: true + description: Auto-mount the service account token in the pod + type: boolean + create: + default: false + description: Enable the creation of a ServiceAccount for Backstage pods + type: boolean + labels: + default: {} + description: Additional custom labels to the service ServiceAccount. + type: object + name: + default: "" + description: Name of the ServiceAccount to use If not set and `serviceAccount.create` + is true, a name is generated + type: string + type: object + type: object + version: 0.6.0 From 98b80c9f6ce2eb53affda4e85484f4cc13785eba Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 18:48:29 +0200 Subject: [PATCH 551/601] Update Kadras Engineering Platform metadata and add version 0.23.0 (#475) Co-authored-by: github-actions --- .../0.23.0.yml | 276 ++++++++++++++++++ 1 file changed, 276 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml new file mode 100644 index 0000000..58ced6e --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml @@ -0,0 +1,276 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.23.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2025-03-30T16:43:00Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:54ccf496a2a813f6456892ec60ac8cfbc13fa7735f040f08007fd138b50f6d52 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dapr: + default: {} + description: Configuration for the Dapr package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `build`, `run`.' + enum: + - standalone + - build + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.23.0 From 3e3cb2c479915cb6dd0372046fa4be80334bcfa3 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 18:50:06 +0200 Subject: [PATCH 552/601] deps: Remove deprecated packages --- .../1.16.1.yml | 207 ------ .../1.16.2.yml | 207 ------ .../contour.packages.kadras.io/1.30.1.yml | 226 ------- .../1.17.1+kadras.1.yml | 377 ----------- .../crossplane.packages.kadras.io/1.18.0.yml | 385 ----------- .../crossplane.packages.kadras.io/1.18.1.yml | 385 ----------- .../dapr.packages.kadras.io/1.14.4.yml | 208 ------ .../4.12.1.yml | 211 ------ .../0.4.1.yml | 607 ------------------ .../0.5.0.yml | 607 ------------------ .../0.21.2.yml | 276 -------- .../0.22.0.yml | 276 -------- .../flux.packages.kadras.io/2.4.0.yml | 107 --- .../1.16.0.yml | 304 --------- .../kyverno.packages.kadras.io/1.13.0.yml | 182 ------ .../kyverno.packages.kadras.io/1.13.1.yml | 182 ------ .../1.24.1.yml | 31 - .../2.11.0.yml | 44 -- .../0.18.1.yml | 35 - .../0.14.1.yml | 293 --------- 20 files changed, 5150 deletions(-) delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.16.1.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.16.2.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.30.1.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.18.0.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.18.1.yml delete mode 100644 repo/packages/dapr.packages.kadras.io/1.14.4.yml delete mode 100644 repo/packages/dependency-track.packages.kadras.io/4.12.1.yml delete mode 100644 repo/packages/developer-portal.packages.kadras.io/0.4.1.yml delete mode 100644 repo/packages/developer-portal.packages.kadras.io/0.5.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.4.0.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.16.0.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.13.0.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.13.1.yml delete mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml delete mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.18.1.yml delete mode 100644 repo/packages/tempo-operator.packages.kadras.io/0.14.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.16.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.16.1.yml deleted file mode 100644 index 1feb187..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.16.1.yml +++ /dev/null @@ -1,207 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.16.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2024-10-23T15:19:13Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:0c1c909ffebaf302aef55684dc5fb20907bad141b50a5482c301cb0c2aeb573b - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cainjector: - additionalProperties: false - description: Settings for the cainjector controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility.' - minLength: 1 - type: string - type: object - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - challenge: - additionalProperties: false - properties: - dns_provider: - default: digital_ocean - description: 'The DNS provider to use for the ACME dns01 challenge. - Valid options: `digital_ocean`.' - enum: - - digital_ocean - type: string - secret: - additionalProperties: false - properties: - key: - default: "" - description: The key within the Secret that contains the credentials - needed for the dns01 challenge. - type: string - name: - default: "" - description: Name of the Secret containing the credentials needed - for the dns01 challenge. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - needed for the dns01 challenge. - type: string - type: object - type: - default: http01 - description: 'The type of challenge used by the ACME CA Server. - Valid options: `http01`, `dns01`.' - enum: - - http01 - - dns01 - type: string - type: object - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - production: - default: false - description: Whether to use Let's Encrypt staging (recommended for non-production - environments) or production. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - minLength: 1 - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_pki: - additionalProperties: false - description: Settings for the built-in, private PKI - properties: - include: - default: true - description: Whether to include a ClusterIssuer for a private PKI. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - at least 3 replicas are recommended. - minimum: 1 - type: integer - secure_port: - default: 6443 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility.' - type: integer - type: object - type: object - version: 1.16.1 diff --git a/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml deleted file mode 100644 index a408881..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.16.2.yml +++ /dev/null @@ -1,207 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.16.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2024-12-01T14:51:27Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:1e308d6e3cc271636c0c2f88aa28018c758a8bc8817c920b1d85392bf9507d5a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cainjector: - additionalProperties: false - description: Settings for the cainjector controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility.' - minLength: 1 - type: string - type: object - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - challenge: - additionalProperties: false - properties: - dns_provider: - default: digital_ocean - description: 'The DNS provider to use for the ACME dns01 challenge. - Valid options: `digital_ocean`.' - enum: - - digital_ocean - type: string - secret: - additionalProperties: false - properties: - key: - default: "" - description: The key within the Secret that contains the credentials - needed for the dns01 challenge. - type: string - name: - default: "" - description: Name of the Secret containing the credentials needed - for the dns01 challenge. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - needed for the dns01 challenge. - type: string - type: object - type: - default: http01 - description: 'The type of challenge used by the ACME CA Server. - Valid options: `http01`, `dns01`.' - enum: - - http01 - - dns01 - type: string - type: object - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - production: - default: false - description: Whether to use Let's Encrypt staging (recommended for non-production - environments) or production. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - minLength: 1 - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_pki: - additionalProperties: false - description: Settings for the built-in, private PKI - properties: - include: - default: true - description: Whether to include a ClusterIssuer for a private PKI. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - at least 3 replicas are recommended. - minimum: 1 - type: integer - secure_port: - default: 6443 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility.' - type: integer - type: object - type: object - version: 1.16.2 diff --git a/repo/packages/contour.packages.kadras.io/1.30.1.yml b/repo/packages/contour.packages.kadras.io/1.30.1.yml deleted file mode 100644 index b77a960..0000000 --- a/repo/packages/contour.packages.kadras.io/1.30.1.yml +++ /dev/null @@ -1,226 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.30.1 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2024-11-09T21:50:07Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:a47eea42bc4a86ae0ab51ece316703255159db111c1d94b13c527f9a8501ddea - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - enum: - - json - - text - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - enum: - - info - - debug - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configMapData: - default: {} - description: The YAML contents of the `contour` ConfigMap. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - enum: - - trace - - debug - - info - - warning - - warn - - error - - critical - - "off" - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service. - enum: - - Cluster - - Local - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy. - enum: - - NodePort - - ClusterIP - - LoadBalancer - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, `http` - & `https` are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - minimum: 30 - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - enum: - - Deployment - - DaemonSet - type: string - type: object - type: object - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - minLength: 1 - type: string - type: object - version: 1.30.1 diff --git a/repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml b/repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml deleted file mode 100644 index 38533e8..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml +++ /dev/null @@ -1,377 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.17.1+kadras.1 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2024-10-23T16:01:40Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:86bb758e3c81f0afa16711da1c6914cf05c5dfea1bf577cb19d3b9bf1793c511 - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.17.1+kadras.1 diff --git a/repo/packages/crossplane.packages.kadras.io/1.18.0.yml b/repo/packages/crossplane.packages.kadras.io/1.18.0.yml deleted file mode 100644 index 4f7afc0..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.18.0.yml +++ /dev/null @@ -1,385 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.18.0 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2024-11-11T06:15:39Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:a84cbb46327ef92b717799f0a13e321c320146dd2cfeaf27280410716a2060ee - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - revisionHistoryLimit: - default: "null" - description: The number of RBAC Manager ReplicaSets to retain. - type: "null" - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - revisionHistoryLimit: - default: "null" - description: The number of Crossplane ReplicaSets to retain. - type: "null" - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.18.0 diff --git a/repo/packages/crossplane.packages.kadras.io/1.18.1.yml b/repo/packages/crossplane.packages.kadras.io/1.18.1.yml deleted file mode 100644 index f63fe44..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.18.1.yml +++ /dev/null @@ -1,385 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.18.1 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2024-12-01T14:59:11Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:c1c3b2d526feaec167a7623c6b7fade593c7a0ab82e69d424f7a1a2898a5e9b2 - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - revisionHistoryLimit: - default: "null" - description: The number of RBAC Manager ReplicaSets to retain. - type: "null" - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - revisionHistoryLimit: - default: "null" - description: The number of Crossplane ReplicaSets to retain. - type: "null" - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.18.1 diff --git a/repo/packages/dapr.packages.kadras.io/1.14.4.yml b/repo/packages/dapr.packages.kadras.io/1.14.4.yml deleted file mode 100644 index 142bc7e..0000000 --- a/repo/packages/dapr.packages.kadras.io/1.14.4.yml +++ /dev/null @@ -1,208 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dapr.packages.kadras.io.1.14.4 -spec: - refName: dapr.packages.kadras.io - releasedAt: "2024-09-23T20:18:39Z" - template: - spec: - deploy: - - kapp: - intoNs: dapr-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dapr@sha256:7eba6d689ee0ddc5d378349fbb510723a7a2012a370b9758ac77b59f3f043ca7 - template: - - helmTemplate: - name: dapr - namespace: dapr-system - path: config/helm/upstream/dapr - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - global: - properties: - actors: - properties: - enabled: - default: true - description: Enables actor functionality in the cluster - type: boolean - serviceName: - default: placement - description: Name of the service that provides actor placement services - type: string - type: object - argoRolloutServiceReconciler: - description: 'the issuerFilenames dictionary, if setup, have to contain - 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: - "tls.key"' - properties: - enabled: - default: false - type: boolean - type: object - daprControlPlaneOs: - default: linux - type: string - dnsSuffix: - default: .cluster.local - type: string - extraVolumeMounts: - default: {} - description: 'sentry: placement: operator: injector: scheduler:' - type: object - extraVolumes: - default: {} - description: and extraVolumeMounts are used to mount additional volumes - to the Dapr control plane pods. Useful for using alternative authentication - credentials to sentry. - type: object - ha: - properties: - disruption: - properties: - maximumUnavailable: - default: 25% - type: string - minimumAvailable: - default: "" - type: string - type: object - enabled: - default: false - type: boolean - replicaCount: - default: 3 - type: integer - type: object - imagePullPolicy: - default: IfNotPresent - type: string - imagePullSecrets: - default: "" - description: 'To help compatibility with other charts which use global.imagePullSecrets. - Allow either a string with single imagepullsecret or an array of {name: - pullSecret} maps (k8s-style) or an array of strings (more common helm-style). - global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - - name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - - pullSecret1 - pullSecret2' - type: string - issuerFilenames: - default: {} - type: object - k8sLabels: - properties: - app.kubernetes.io/component: - default: '{{ .Values.component }}' - type: string - app.kubernetes.io/managed-by: - default: helm - type: string - app.kubernetes.io/name: - default: '{{ .Release.Name }}' - type: string - app.kubernetes.io/part-of: - default: dapr - type: string - app.kubernetes.io/version: - default: '{{ .Values.global.tag }}' - type: string - type: object - labels: - default: {} - type: object - logAsJson: - default: false - type: boolean - mtls: - properties: - allowedClockSkew: - default: 15m - type: string - controlPlaneTrustDomain: - default: cluster.local - type: string - enabled: - default: true - type: boolean - mountSentryVolume: - default: true - description: If set to true, a bound service account token will - be mounted and used to authenticate to Sentry. - type: boolean - workloadCertTTL: - default: 24h - type: string - type: object - nodeSelector: - default: {} - type: object - operator: - properties: - watchdogCanPatchPodLabels: - default: false - type: boolean - type: object - priorityClassName: - default: "" - type: string - prometheus: - properties: - enabled: - default: true - type: boolean - port: - default: 9090 - type: integer - type: object - rbac: - properties: - namespaced: - default: false - type: boolean - type: object - registry: - default: ghcr.io/dapr - type: string - reminders: - properties: - serviceName: - default: "" - description: Name of the service that provides reminders If empty, - uses the built-in reminders capabilities in Dapr sidecars - type: string - type: object - scheduler: - properties: - enabled: - default: true - description: Enables scheduler functionality in the cluster - type: boolean - type: object - seccompProfile: - default: "" - type: string - tag: - default: 1.14.4 - type: string - tolerations: - default: [] - items: {} - type: array - type: object - type: object - version: 1.14.4 diff --git a/repo/packages/dependency-track.packages.kadras.io/4.12.1.yml b/repo/packages/dependency-track.packages.kadras.io/4.12.1.yml deleted file mode 100644 index ad15f0a..0000000 --- a/repo/packages/dependency-track.packages.kadras.io/4.12.1.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dependency-track.packages.kadras.io.4.12.1 -spec: - licenses: - - Apache 2.0 - refName: dependency-track.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases - releasedAt: "2024-11-09T22:29:44Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dependency-track@sha256:9445747e1800ec4d9be4cfd3df26e3b556b3656db40f665c9832c77bf3161feb - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - api_server: - additionalProperties: false - description: Settings for the API Server component. - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - format: - default: console - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `warn`, `error`.' - enum: - - trace - - debug - - info - - warn - - error - type: string - type: object - metrics: - additionalProperties: false - description: Settings for metrics. - properties: - enabled: - default: true - description: Whether to enable the generation of Prometheus metrics. - type: boolean - type: object - resources: - additionalProperties: false - description: Resource configuration for the API Server component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "4" - description: CPU limits configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory limits configuration for the API Server - component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: "0.5" - description: CPU requests configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory requests configuration for the API Server - component. - type: string - type: object - type: object - storage: - additionalProperties: false - description: Storage configuration for the API Server component. - properties: - class_name: - default: "" - description: Class name for the PersistenceVolume to create. - type: string - size: - default: 1Gi - description: Size of the PersistenceVolume to create. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Dependency Track. It must be a valid DNS name. - minLength: 4 - type: string - frontend: - additionalProperties: false - description: Settings for the Frontend component. - properties: - replicas: - default: 1 - description: The number of Frontend replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - resources: - additionalProperties: false - description: Resource configuration for the Frontend component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU limits configuration for the Frontend component. - type: string - memory: - default: 128Mi - description: Memory limits configuration for the Frontend component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 150m - description: CPU requests configuration for the Frontend component. - type: string - memory: - default: 64Mi - description: Memory requests configuration for the Frontend - component. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use for enabling TLS in - Dependency Track. - example: kadras-ca-issuer - minLength: 4 - type: string - x-example-description: Kadras private CA - postgresql: - additionalProperties: false - description: Settings for the PostgreSQL database. - properties: - instances: - default: 1 - description: Number of instances for the PostgreSQL database cluster. - Define at least 3 for production scenarios. - minimum: 1 - type: integer - storage: - additionalProperties: false - description: Storage configuration for each PostgreSQL instance. - properties: - size: - default: 1Gi - description: Size of the PersistenceVolume to create for each PostgreSQL - instance. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - system_requirement_check: - default: true - description: Whether Dependency Track will check for memory and CPU requirements - at startup time. - type: boolean - type: object - version: 4.12.1 diff --git a/repo/packages/developer-portal.packages.kadras.io/0.4.1.yml b/repo/packages/developer-portal.packages.kadras.io/0.4.1.yml deleted file mode 100644 index 69a9585..0000000 --- a/repo/packages/developer-portal.packages.kadras.io/0.4.1.yml +++ /dev/null @@ -1,607 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: developer-portal.packages.kadras.io.0.4.1 -spec: - refName: developer-portal.packages.kadras.io - releasedAt: "2024-11-10T20:15:35Z" - template: - spec: - deploy: - - kapp: - intoNs: backstage - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-developer-portal@sha256:3ce0698652631108e01dbba342008c17d29b66d0fcc1de02a67fd2d8142f8551 - template: - - helmTemplate: - name: backstage - namespace: backstage - path: config/helm/upstream/backstage - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - backstage: - description: Backstage parameters @default -- See below - properties: - affinity: - default: {} - description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' - type: object - annotations: - default: {} - description: Additional custom annotations for the `Deployment` resource - type: object - appConfig: - default: {} - description: 'Allows to define the appConfig as a multiline string that - generates a ConfigMap automatically, not requiring to have it pre - provisioned as with the extraAppConfig key. DO NOT USE if you need - to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: - https://somedomain.tld -- Generates ConfigMap and configures it in - the Backstage pods' - type: object - args: - default: [] - description: Backstage container command arguments - items: {} - type: array - command: - default: [] - description: Backstage container command - items: - default: node - type: string - type: array - containerPorts: - description: Container ports on the Deployment - properties: - backend: - default: 7007 - type: integer - type: object - containerSecurityContext: - default: {} - description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' - type: object - extraAppConfig: - default: [] - description: Extra app configuration files to inline into command arguments - items: {} - type: array - extraContainers: - default: [] - description: Deployment sidecars - items: {} - type: array - extraEnvVars: - default: [] - description: Backstage container environment variables - items: {} - type: array - extraEnvVarsCM: - default: [] - description: Backstage container environment variables from existing - ConfigMaps - items: {} - type: array - extraEnvVarsSecrets: - default: [] - description: Backstage container environment variables from existing - Secrets - items: {} - type: array - extraVolumeMounts: - default: [] - description: Backstage container additional volume mounts - items: {} - type: array - extraVolumes: - default: [] - description: Backstage container additional volumes - items: {} - type: array - image: - properties: - digest: - default: "" - description: Backstage image digest (digest takes precedence over - image tag) - type: string - pullPolicy: - default: Always - description: 'Specify a imagePullPolicy. Defaults to ''Always'' - if image tag is ''latest'', else set to ''IfNotPresent''
- Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' - type: string - pullSecrets: - default: [] - description: 'Optionally specify an array of imagePullSecrets. Secrets - must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -
E.g: `pullSecrets: [myRegistryKeySecretName]`' - items: {} - type: array - registry: - default: ghcr.io - description: Backstage image registry - type: string - repository: - default: backstage/backstage - description: Backstage image repository - type: string - tag: - default: latest - description: Backstage image tag (immutable tags are recommended) - type: string - type: object - initContainers: - default: [] - description: Backstage container init containers - items: {} - type: array - installDir: - default: /app - description: Directory containing the backstage installation - type: string - livenessProbe: - description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - items: {} - type: array - extraTls: - default: [] - description: 'The TLS configuration for additional hostnames to be covered - with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls - ' - items: {} - type: array - host: - default: "" - description: 'Hostname to be used to expose the route to access the - backstage application (e.g: backstage.IP.nip.io)' - type: string - path: - default: / - description: 'Path to be used to expose the full route to access the - backstage application (e.g: IP.nip.io/backstage)' - type: string - tls: - description: Ingress TLS parameters - properties: - enabled: - default: false - description: Enable TLS configuration for the host defined at `ingress.host` - parameter - type: boolean - secretName: - default: "" - description: The name to which the TLS Secret will be called - type: string - type: object - type: object - kubeVersion: - default: "" - description: |- - Common parameters - -- Override Kubernetes version - type: string - metrics: - description: Metrics configuration - properties: - serviceMonitor: - description: ServiceMonitor configuration
Allows configuring - your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) - using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) - can understand. - properties: - annotations: - default: {} - description: ServiceMonitor annotations - type: object - enabled: - default: false - description: If enabled, a ServiceMonitor resource for Prometheus - Operator is created
Prometheus Operator must be installed - in your cluster prior to enabling. - type: boolean - interval: - default: "null" - description: ServiceMonitor scrape interval - type: "null" - labels: - default: {} - description: Additional ServiceMonitor labels - type: object - path: - default: /metrics - description: ServiceMonitor endpoint path
Note that the /metrics - endpoint is NOT present in a freshly scaffolded Backstage app. - To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). - type: string - type: object - type: object - nameOverride: - default: "" - description: String to partially override common.names.fullname - type: string - networkPolicy: - description: '@section NetworkPolicy parameters' - properties: - egressRules: - description: Egress Rules - properties: - customRules: - default: [] - description: Additional custom egress rules - items: {} - type: array - denyConnectionsToExternal: - default: false - description: Deny external connections. Should not be enabled when - working with an external database. - type: boolean - type: object - enabled: - default: false - description: Specifies whether a NetworkPolicy should be created - type: boolean - ingressRules: - description: Ingress Rules - properties: - customRules: - default: [] - description: Additional custom ingress rules - items: {} - type: array - namespaceSelector: - default: {} - description: Namespace selector label allowed to access the Backstage - instance - type: object - podSelector: - default: {} - description: Pod selector label allowed to access the Backstage - instance - type: object - type: object - type: object - postgresql: - description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) - @default -- See below - properties: - architecture: - default: standalone - description: PostgreSQL architecture (`standalone` or `replication`) - type: string - auth: - description: The authentication details of the Postgres database - properties: - existingSecret: - default: "" - description: Name of existing secret to use for PostgreSQL credentials - type: string - password: - default: "" - description: Password for the custom user to create - type: string - secretKeys: - description: The secret keys Postgres will look for to retrieve - the relevant password - properties: - adminPasswordKey: - default: admin-password - description: The key in which Postgres will look for, for the - admin password, in the existing Secret - type: string - replicationPasswordKey: - default: replication-password - description: The key in which Postgres will look for, for the - replication password, in the existing Secret - type: string - userPasswordKey: - default: user-password - description: The key in which Postgres will look for, for the - user password, in the existing Secret - type: string - type: object - username: - default: bn_backstage - description: Name for a custom user to create - type: string - type: object - enabled: - default: false - description: Switch to enable or disable the PostgreSQL helm chart - type: boolean - type: object - service: - description: |- - @section Traffic Exposure parameters - Service parameters -- Service parameters @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for Backstage service - type: object - clusterIP: - default: "" - description: 'Backstage service Cluster IP
E.g `clusterIP: None`' - type: string - externalTrafficPolicy: - default: Cluster - description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' - type: string - extraPorts: - default: [] - description: Extra ports to expose in the Backstage service (normally - used with the `sidecar` value) - items: {} - type: array - loadBalancerIP: - default: "" - description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' - type: string - loadBalancerSourceRanges: - default: [] - description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer -
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' - items: {} - type: array - nodePorts: - description: Node port for the Backstage client connections Choose port - between `30000-32767` - properties: - backend: - default: "" - type: string - type: object - ports: - description: Backstage svc port for client connections - properties: - backend: - default: 7007 - type: integer - name: - default: http-backend - description: Backstage svc port name - type: string - targetPort: - default: backend - description: Backstage svc target port referencing receiving pod - container port - type: string - type: object - sessionAffinity: - default: None - description: 'Control where client requests go, to the same pod or round-robin - (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' - type: string - type: - default: ClusterIP - description: Kubernetes Service type - type: string - type: object - serviceAccount: - description: Service Account Configuration @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for the ServiceAccount. - type: object - automountServiceAccountToken: - default: true - description: Auto-mount the service account token in the pod - type: boolean - create: - default: false - description: Enable the creation of a ServiceAccount for Backstage pods - type: boolean - labels: - default: {} - description: Additional custom labels to the service ServiceAccount. - type: object - name: - default: "" - description: Name of the ServiceAccount to use If not set and `serviceAccount.create` - is true, a name is generated - type: string - type: object - type: object - version: 0.4.1 diff --git a/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml deleted file mode 100644 index e0dd560..0000000 --- a/repo/packages/developer-portal.packages.kadras.io/0.5.0.yml +++ /dev/null @@ -1,607 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: developer-portal.packages.kadras.io.0.5.0 -spec: - refName: developer-portal.packages.kadras.io - releasedAt: "2024-12-02T06:15:48Z" - template: - spec: - deploy: - - kapp: - intoNs: backstage - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-developer-portal@sha256:63627a8553c9ce3e3dcc03755ae47eb4600c99c573fe50350e061a429d4722b6 - template: - - helmTemplate: - name: backstage - namespace: backstage - path: config/helm/upstream/backstage - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - backstage: - description: Backstage parameters @default -- See below - properties: - affinity: - default: {} - description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' - type: object - annotations: - default: {} - description: Additional custom annotations for the `Deployment` resource - type: object - appConfig: - default: {} - description: 'Allows to define the appConfig as a multiline string that - generates a ConfigMap automatically, not requiring to have it pre - provisioned as with the extraAppConfig key. DO NOT USE if you need - to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: - https://somedomain.tld -- Generates ConfigMap and configures it in - the Backstage pods' - type: object - args: - default: [] - description: Backstage container command arguments - items: {} - type: array - command: - default: [] - description: Backstage container command - items: - default: node - type: string - type: array - containerPorts: - description: Container ports on the Deployment - properties: - backend: - default: 7007 - type: integer - type: object - containerSecurityContext: - default: {} - description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' - type: object - extraAppConfig: - default: [] - description: Extra app configuration files to inline into command arguments - items: {} - type: array - extraContainers: - default: [] - description: Deployment sidecars - items: {} - type: array - extraEnvVars: - default: [] - description: Backstage container environment variables - items: {} - type: array - extraEnvVarsCM: - default: [] - description: Backstage container environment variables from existing - ConfigMaps - items: {} - type: array - extraEnvVarsSecrets: - default: [] - description: Backstage container environment variables from existing - Secrets - items: {} - type: array - extraVolumeMounts: - default: [] - description: Backstage container additional volume mounts - items: {} - type: array - extraVolumes: - default: [] - description: Backstage container additional volumes - items: {} - type: array - image: - properties: - digest: - default: "" - description: Backstage image digest (digest takes precedence over - image tag) - type: string - pullPolicy: - default: Always - description: 'Specify a imagePullPolicy. Defaults to ''Always'' - if image tag is ''latest'', else set to ''IfNotPresent''
- Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' - type: string - pullSecrets: - default: [] - description: 'Optionally specify an array of imagePullSecrets. Secrets - must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -
E.g: `pullSecrets: [myRegistryKeySecretName]`' - items: {} - type: array - registry: - default: ghcr.io - description: Backstage image registry - type: string - repository: - default: backstage/backstage - description: Backstage image repository - type: string - tag: - default: latest - description: Backstage image tag (immutable tags are recommended) - type: string - type: object - initContainers: - default: [] - description: Backstage container init containers - items: {} - type: array - installDir: - default: /app - description: Directory containing the backstage installation - type: string - livenessProbe: - description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - items: {} - type: array - extraTls: - default: [] - description: 'The TLS configuration for additional hostnames to be covered - with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls - ' - items: {} - type: array - host: - default: "" - description: 'Hostname to be used to expose the route to access the - backstage application (e.g: backstage.IP.nip.io)' - type: string - path: - default: / - description: 'Path to be used to expose the full route to access the - backstage application (e.g: IP.nip.io/backstage)' - type: string - tls: - description: Ingress TLS parameters - properties: - enabled: - default: false - description: Enable TLS configuration for the host defined at `ingress.host` - parameter - type: boolean - secretName: - default: "" - description: The name to which the TLS Secret will be called - type: string - type: object - type: object - kubeVersion: - default: "" - description: |- - Common parameters - -- Override Kubernetes version - type: string - metrics: - description: Metrics configuration - properties: - serviceMonitor: - description: ServiceMonitor configuration
Allows configuring - your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) - using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) - can understand. - properties: - annotations: - default: {} - description: ServiceMonitor annotations - type: object - enabled: - default: false - description: If enabled, a ServiceMonitor resource for Prometheus - Operator is created
Prometheus Operator must be installed - in your cluster prior to enabling. - type: boolean - interval: - default: "null" - description: ServiceMonitor scrape interval - type: "null" - labels: - default: {} - description: Additional ServiceMonitor labels - type: object - path: - default: /metrics - description: ServiceMonitor endpoint path
Note that the /metrics - endpoint is NOT present in a freshly scaffolded Backstage app. - To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). - type: string - type: object - type: object - nameOverride: - default: "" - description: String to partially override common.names.fullname - type: string - networkPolicy: - description: '@section NetworkPolicy parameters' - properties: - egressRules: - description: Egress Rules - properties: - customRules: - default: [] - description: Additional custom egress rules - items: {} - type: array - denyConnectionsToExternal: - default: false - description: Deny external connections. Should not be enabled when - working with an external database. - type: boolean - type: object - enabled: - default: false - description: Specifies whether a NetworkPolicy should be created - type: boolean - ingressRules: - description: Ingress Rules - properties: - customRules: - default: [] - description: Additional custom ingress rules - items: {} - type: array - namespaceSelector: - default: {} - description: Namespace selector label allowed to access the Backstage - instance - type: object - podSelector: - default: {} - description: Pod selector label allowed to access the Backstage - instance - type: object - type: object - type: object - postgresql: - description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) - @default -- See below - properties: - architecture: - default: standalone - description: PostgreSQL architecture (`standalone` or `replication`) - type: string - auth: - description: The authentication details of the Postgres database - properties: - existingSecret: - default: "" - description: Name of existing secret to use for PostgreSQL credentials - type: string - password: - default: "" - description: Password for the custom user to create - type: string - secretKeys: - description: The secret keys Postgres will look for to retrieve - the relevant password - properties: - adminPasswordKey: - default: admin-password - description: The key in which Postgres will look for, for the - admin password, in the existing Secret - type: string - replicationPasswordKey: - default: replication-password - description: The key in which Postgres will look for, for the - replication password, in the existing Secret - type: string - userPasswordKey: - default: user-password - description: The key in which Postgres will look for, for the - user password, in the existing Secret - type: string - type: object - username: - default: bn_backstage - description: Name for a custom user to create - type: string - type: object - enabled: - default: false - description: Switch to enable or disable the PostgreSQL helm chart - type: boolean - type: object - service: - description: |- - @section Traffic Exposure parameters - Service parameters -- Service parameters @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for Backstage service - type: object - clusterIP: - default: "" - description: 'Backstage service Cluster IP
E.g `clusterIP: None`' - type: string - externalTrafficPolicy: - default: Cluster - description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' - type: string - extraPorts: - default: [] - description: Extra ports to expose in the Backstage service (normally - used with the `sidecar` value) - items: {} - type: array - loadBalancerIP: - default: "" - description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' - type: string - loadBalancerSourceRanges: - default: [] - description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer -
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' - items: {} - type: array - nodePorts: - description: Node port for the Backstage client connections Choose port - between `30000-32767` - properties: - backend: - default: "" - type: string - type: object - ports: - description: Backstage svc port for client connections - properties: - backend: - default: 7007 - type: integer - name: - default: http-backend - description: Backstage svc port name - type: string - targetPort: - default: backend - description: Backstage svc target port referencing receiving pod - container port - type: string - type: object - sessionAffinity: - default: None - description: 'Control where client requests go, to the same pod or round-robin - (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' - type: string - type: - default: ClusterIP - description: Kubernetes Service type - type: string - type: object - serviceAccount: - description: Service Account Configuration @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for the ServiceAccount. - type: object - automountServiceAccountToken: - default: true - description: Auto-mount the service account token in the pod - type: boolean - create: - default: false - description: Enable the creation of a ServiceAccount for Backstage pods - type: boolean - labels: - default: {} - description: Additional custom labels to the service ServiceAccount. - type: object - name: - default: "" - description: Name of the ServiceAccount to use If not set and `serviceAccount.create` - is true, a name is generated - type: string - type: object - type: object - version: 0.5.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml b/repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml deleted file mode 100644 index 4c67417..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.21.2.yml +++ /dev/null @@ -1,276 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.21.2 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases - releasedAt: "2024-11-11T05:52:24Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:d863da4b71e20b4e22f5ac223b1bbb5672333ca6022906a58580a8047a9906de - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - crossplane: - default: {} - description: Configuration for the Crossplane package. - nullable: true - dapr: - default: {} - description: Configuration for the Dapr package. - nullable: true - dependency_track: - default: {} - description: Configuration for the Dependency Track package. - nullable: true - developer_portal: - default: {} - description: Configuration for the Developer Portal package. - nullable: true - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - gitops_configurer: - default: {} - description: Configuration for the GitOps Configurer package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - additional_packages: - default: [] - description: A list of packages to include in the installation. - items: - default: "" - type: string - type: array - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - enum: - - private - - letsencrypt_staging - - letsencrypt - - custom - type: string - type: object - type: object - namespace: - default: kadras-system - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `build`, `run`.' - enum: - - standalone - - build - - run - type: string - type: object - postgresql_operator: - default: {} - description: Configuration for the PostgreSQL Operator package. - nullable: true - rabbitmq_operator: - default: {} - description: Configuration for the RabbitMQ Operator package. - nullable: true - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - service_binding: - default: {} - description: Configuration for the Service Binding package. - nullable: true - tempo_operator: - default: {} - description: Configuration for the Tempo Operator package. - nullable: true - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.21.2 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml deleted file mode 100644 index 7230222..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.22.0.yml +++ /dev/null @@ -1,276 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.22.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases - releasedAt: "2024-12-02T07:17:41Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:3c0d66ee3846c602b386f4e1ffd0e7fc864565b1cb01e27df1ce1096f97f7019 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - crossplane: - default: {} - description: Configuration for the Crossplane package. - nullable: true - dapr: - default: {} - description: Configuration for the Dapr package. - nullable: true - dependency_track: - default: {} - description: Configuration for the Dependency Track package. - nullable: true - developer_portal: - default: {} - description: Configuration for the Developer Portal package. - nullable: true - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - gitops_configurer: - default: {} - description: Configuration for the GitOps Configurer package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - additional_packages: - default: [] - description: A list of packages to include in the installation. - items: - default: "" - type: string - type: array - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - enum: - - private - - letsencrypt_staging - - letsencrypt - - custom - type: string - type: object - type: object - namespace: - default: kadras-system - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `build`, `run`.' - enum: - - standalone - - build - - run - type: string - type: object - postgresql_operator: - default: {} - description: Configuration for the PostgreSQL Operator package. - nullable: true - rabbitmq_operator: - default: {} - description: Configuration for the RabbitMQ Operator package. - nullable: true - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - service_binding: - default: {} - description: Configuration for the Service Binding package. - nullable: true - tempo_operator: - default: {} - description: Configuration for the Tempo Operator package. - nullable: true - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.22.0 diff --git a/repo/packages/flux.packages.kadras.io/2.4.0.yml b/repo/packages/flux.packages.kadras.io/2.4.0.yml deleted file mode 100644 index cff6420..0000000 --- a/repo/packages/flux.packages.kadras.io/2.4.0.yml +++ /dev/null @@ -1,107 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.4.0 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2024-10-23T16:04:56Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:ea9f89ec94bb44794e7262931247c0d69a5026f70c82bc0299f37c55107f6fb6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - enum: - - trace - - debug - - info - - error - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.4.0 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.16.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.16.0.yml deleted file mode 100644 index b8d7f1d..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.16.0.yml +++ /dev/null @@ -1,304 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.16.0 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2024-10-23T15:34:31Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:d06089096467bb462741a0ba3ea90b0153785fa0fbe90307c666215eec19d393 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - enum: - - http - - https - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - enum: - - Enabled - - Redirected - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - minimum: 0 - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - enum: - - zipkin - - none - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - enum: - - "true" - - "false" - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - maxLength: 3 - minLength: 1 - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - minLength: 4 - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - minLength: 1 - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - minLength: 1 - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 20 - minimum: 1 - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 5 - minimum: 1 - type: integer - type: object - type: object - type: object - version: 1.16.0 diff --git a/repo/packages/kyverno.packages.kadras.io/1.13.0.yml b/repo/packages/kyverno.packages.kadras.io/1.13.0.yml deleted file mode 100644 index 4c24d55..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.13.0.yml +++ /dev/null @@ -1,182 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.13.0 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2024-11-09T21:42:29Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:e8e4509f1c1943d1020bf230ceb971274136e5dd65922dcb27e011ec81527657 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - minimum: 1 - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - enum: - - text - - json - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - maximum: 6 - minimum: 1 - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - enum: - - grpc - - prometheus - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.13.0 diff --git a/repo/packages/kyverno.packages.kadras.io/1.13.1.yml b/repo/packages/kyverno.packages.kadras.io/1.13.1.yml deleted file mode 100644 index c364339..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.13.1.yml +++ /dev/null @@ -1,182 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.13.1 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2024-12-01T14:41:08Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:90e617371815dc55f487a758d5122f9049664f37bb47a5d67763fa3591b3ff11 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - minimum: 1 - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - enum: - - text - - json - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - maximum: 6 - minimum: 1 - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - enum: - - grpc - - prometheus - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.13.1 diff --git a/repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml b/repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml deleted file mode 100644 index bcd1ea6..0000000 --- a/repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml +++ /dev/null @@ -1,31 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: postgresql-operator.packages.kadras.io.1.24.1 -spec: - licenses: - - Apache 2.0 - refName: postgresql-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-postgresql-operator/releases - releasedAt: "2024-10-23T15:40:03Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-postgresql-operator@sha256:feac04e108012c264ba5d2932a5c05c129e9c367f45ee9233b642593c7356755 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 1.24.1 diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml deleted file mode 100644 index e9476b6..0000000 --- a/repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml +++ /dev/null @@ -1,44 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: rabbitmq-operator.packages.kadras.io.2.11.0 -spec: - licenses: - - Apache 2.0 - refName: rabbitmq-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases - releasedAt: "2024-10-23T15:52:14Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:b510e8dd5b1da589f69fcf9882f0f0444840f32fac66d088f1cafc78aef6d1d4 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Logging configuration. - properties: - level: - default: info - description: The Operator log level. Valid options are `info` and `debug`. - enum: - - info - - debug - type: string - type: object - type: object - version: 2.11.0 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.18.1.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.18.1.yml deleted file mode 100644 index d062179..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.18.1.yml +++ /dev/null @@ -1,35 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.18.1 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases - releasedAt: "2024-09-23T19:59:51Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:f041a9b19a252e03ab5e8d6070a7aaacd3422a269e3c01e35a615e1fa67232c3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.18.1 diff --git a/repo/packages/tempo-operator.packages.kadras.io/0.14.1.yml b/repo/packages/tempo-operator.packages.kadras.io/0.14.1.yml deleted file mode 100644 index f3328bd..0000000 --- a/repo/packages/tempo-operator.packages.kadras.io/0.14.1.yml +++ /dev/null @@ -1,293 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tempo-operator.packages.kadras.io.0.14.1 -spec: - licenses: - - Apache 2.0 - refName: tempo-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tempo-operator/releases - releasedAt: "2024-11-09T22:19:28Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tempo-operator@sha256:39174fa32039039db4e15d2ec1f29aab28e86268fca463fd3a788e020736a8fe - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - configMapData: - default: {} - description: The YAML contents of the `tempo-operator-manager-config` ConfigMap. - See https://github.com/grafana/tempo-operator/blob/main/docs/operator/config.yaml - for more information. - nullable: true - controller: - additionalProperties: false - description: Settings for the Tempo Operator controller. - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order to - enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tempo: - additionalProperties: false - description: Settings for Tempo. - properties: - extraConfig: - default: {} - description: Additional configuration for Tempo that will be merged - with the one generated by the Operator. It has higher precedence than - the Operator. - nullable: true - jaegerui: - additionalProperties: false - description: Settings for Jaeger UI. - properties: - enabled: - default: false - description: Whether to enable the Jaeger UI to visualize traces. - type: boolean - type: object - namespace: - default: default - description: Namespace where to provision a Tempo installation, stack - or monolithic. - type: string - observability: - additionalProperties: false - description: Settings for observability. - properties: - grafana: - additionalProperties: false - properties: - createDatasource: - default: false - description: Whether a Datasource managed by Grafana Operator - should be created for Tempo. - type: boolean - type: object - metrics: - additionalProperties: false - properties: - createPrometheusRules: - default: false - description: Whether PrometheusRules for alerts managed by Prometheus - Operator should be created for Tempo. - type: boolean - createServiceMonitors: - default: false - description: Whether ServiceMonitors managed by Prometheus Operator - should be created for Tempo. - type: boolean - type: object - tracing: - additionalProperties: false - properties: - jaegerEndpoint: - default: "" - description: The Jaeger endpoint where to send traces. Only - for TempoStack. - type: string - samplingFraction: - default: "" - description: Sampling frequence for Tempo traces. Only for TempoStack. - type: string - type: object - type: object - resources: - additionalProperties: false - description: Settings for total resources. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 750m - type: string - memory: - default: 2Gi - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 500m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - storage: - additionalProperties: false - description: Settings for storage. - properties: - backend: - additionalProperties: false - description: Tracing backend object storage configuration. - properties: - secret: - additionalProperties: false - properties: - name: - default: "" - description: Name of the Secret containing the credentials - to access the configured object storage. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - to access the configured object storage. - type: string - type: object - type: - default: memory - description: 'Type of object storage that should be used. Valid - options: `azure`, `gcs`, `s3`, `memory` (only for TempoMonolithic).' - enum: - - azure - - gcs - - s3 - - memory - type: string - type: object - size: - default: 10Gi - description: The size of the storage used by Tempo. - type: string - type: object - tempoMonolithic: - additionalProperties: false - description: Settings for the built-in TempoMonolithic instance. - properties: - enabled: - default: false - description: Whether to deploy the built-in TempoMonolithic instance. - type: boolean - type: object - tempoStack: - additionalProperties: false - description: Settings for the built-in TempoStack instance. - properties: - compactor: - additionalProperties: false - description: Settings for the Tempo Compactor. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Compactor - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - distributor: - additionalProperties: false - description: Settings for the Tempo Distributor. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Distributor - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - enabled: - default: false - description: Whether to deploy the built-in TempoStack instance. - type: boolean - gateway: - additionalProperties: false - description: Settings for the Tempo Gateway. - properties: - enabled: - default: false - description: Whether to enable the Tempo Gateway. - type: boolean - ingress: - additionalProperties: false - description: Ingress for the Tempo Gateway. - properties: - annotations: - additionalProperties: false - description: The annotations for the Ingress object. - properties: {} - type: object - host: - default: "" - description: The hostname of the Ingress object. - type: string - ingressClassName: - default: contour - description: The class of the Ingress Controller to use - for the Tempo Gateway. - type: string - type: - default: null - description: 'Type of Ingress for the Tempo Gateway. Valid - options: `ingress`, `route`.' - enum: - - ingress - - route - nullable: true - type: string - type: object - type: object - ingester: - additionalProperties: false - description: Settings for the Tempo Ingester. - properties: - podSecurityContext: - additionalProperties: false - description: PodSecurityContext for the Ingester component. - properties: {} - type: object - replicas: - default: 1 - description: Number of replicas to deploy for the Ingester component. - In order to enable high availability, it should be greater - than 1. - type: integer - type: object - querier: - additionalProperties: false - description: Settings for the Tempo Querier. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Querier component. - In order to enable high availability, it should be greater - than 1. - type: integer - type: object - queryFrontend: - additionalProperties: false - description: Settings for the Tempo Query Frontend. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Query Frontend - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - type: object - type: object - type: object - version: 0.14.1 From e15c18384cddbfcc88f278a7d2106f87f0f76177 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 30 Mar 2025 18:50:30 +0200 Subject: [PATCH 553/601] Set version 0.24.0 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 40a5644..e7b3419 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.23.2 + VERSION: 0.24.0 jobs: build: From 2ecefc2fd99cdacb0c0aea835c605f0ee4a4752c Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 23 Apr 2025 06:29:01 +0200 Subject: [PATCH 554/601] deps: bump sigstore/cosign-installer from 3.8.1 to 3.8.2 (#476) --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index e7b3419..bbf64f1 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.8.1 + uses: sigstore/cosign-installer@v3.8.2 - name: Log into container registry uses: redhat-actions/podman-login@v1.7 From 1ea3ecae09238d84f7046a08622d69a569166ba4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 20:34:25 +0200 Subject: [PATCH 555/601] Update secretgen-controller metadata and add version 0.19.2 (#477) Co-authored-by: github-actions --- .../0.19.2.yml | 35 +++++++++++++++++++ 1 file changed, 35 insertions(+) create mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.19.2.yml diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.19.2.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.19.2.yml new file mode 100644 index 0000000..b3dd67c --- /dev/null +++ b/repo/packages/secretgen-controller.packages.kadras.io/0.19.2.yml @@ -0,0 +1,35 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: secretgen-controller.packages.kadras.io.0.19.2 +spec: + licenses: + - Apache 2.0 + refName: secretgen-controller.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases + releasedAt: "2025-05-30T18:30:26Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=50 + - --kube-api-burst=100 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:a75097ef7dc675acb9144cd6b7c76fccfb3d7aa57969cf3b0ec36a0f48fe35df + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 0.19.2 From 11f740f81ce3b647cebfde0111ca565071653177 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 20:52:16 +0200 Subject: [PATCH 556/601] Update Kyverno metadata and add version 1.14.1 (#478) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.14.1.yml | 182 ++++++++++++++++++ 1 file changed, 182 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.14.1.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.14.1.yml b/repo/packages/kyverno.packages.kadras.io/1.14.1.yml new file mode 100644 index 0000000..dd23be7 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.14.1.yml @@ -0,0 +1,182 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.14.1 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2025-05-30T18:47:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:1bfaf0b5211db5c1fbd199abf4312ea58a38e096d58b10ec55ffc98e84b602db + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + minimum: 1 + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + enum: + - text + - json + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + maximum: 6 + minimum: 1 + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + enum: + - grpc + - prometheus + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.14.1 From fb19e213d1e710a801a29eab9ea4391b1fed5b2a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 21:27:14 +0200 Subject: [PATCH 557/601] Update cert-manager metadata and add version 1.17.2 (#479) Co-authored-by: github-actions --- .../1.17.2.yml | 231 ++++++++++++++++++ 1 file changed, 231 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.17.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.17.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.17.2.yml new file mode 100644 index 0000000..55aff47 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.17.2.yml @@ -0,0 +1,231 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.17.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2025-05-30T19:24:22Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:95a278e351c04d81ea080013372a10e7e17bc99d739527ac27bcedf286710b33 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cainjector: + additionalProperties: false + description: Settings for the cainjector controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + dns01: + additionalProperties: false + description: Configures the behaviour of the ACME DNS01 challenge solver. + properties: + recursive_nameservers: + default: [] + description: Each nameserver can be either the IP address and port + of a standard recursive DNS server, or the endpoint to an RFC + 8484 DNS over HTTPS endpoint. + items: + default: "" + type: string + type: array + recursive_nameservers_only: + default: false + description: When true, cert-manager will only ever query the configured + DNS resolvers to perform the ACME DNS01 self check. This is useful + in DNS constrained environments, where access to authoritative + nameservers is restricted. Enabling this option could cause the + DNS01 self check to take longer due to caching performed by the + recursive nameservers. + type: boolean + type: object + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility.' + minLength: 1 + type: string + type: object + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + challenge: + additionalProperties: false + properties: + dns_provider: + default: digital_ocean + description: 'The DNS provider to use for the ACME dns01 challenge. + Valid options: `cloudflare`, `digital_ocean`.' + enum: + - cloudflare + - digital_ocean + type: string + secret: + additionalProperties: false + properties: + key: + default: "" + description: The key within the Secret that contains the credentials + needed for the dns01 challenge. + type: string + name: + default: "" + description: Name of the Secret containing the credentials needed + for the dns01 challenge. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + needed for the dns01 challenge. + type: string + type: object + type: + default: http01 + description: 'The type of challenge used by the ACME CA Server. + Valid options: `http01`, `dns01`.' + enum: + - http01 + - dns01 + type: string + type: object + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + production: + default: false + description: Whether to use Let's Encrypt staging (recommended for non-production + environments) or production. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + minLength: 1 + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_pki: + additionalProperties: false + description: Settings for the built-in, private PKI + properties: + include: + default: true + description: Whether to include a ClusterIssuer for a private PKI. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + at least 3 replicas are recommended. + minimum: 1 + type: integer + secure_port: + default: 6443 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility.' + type: integer + type: object + type: object + version: 1.17.2 From 029f9da95402c374507efceb1e9d1b832a2eb83a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 21:35:41 +0200 Subject: [PATCH 558/601] Update Contour metadata and add version 1.32.0 (#480) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.32.0.yml | 226 ++++++++++++++++++ 1 file changed, 226 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.32.0.yml diff --git a/repo/packages/contour.packages.kadras.io/1.32.0.yml b/repo/packages/contour.packages.kadras.io/1.32.0.yml new file mode 100644 index 0000000..3a24ccf --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.32.0.yml @@ -0,0 +1,226 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.32.0 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2025-05-30T19:34:05Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:c2dc6b1eeaf6ffdcc7d30bd0d21cfe3966ea9648542254383962ded12e14ebd4 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + enum: + - json + - text + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + enum: + - info + - debug + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configMapData: + default: {} + description: The YAML contents of the `contour` ConfigMap. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + enum: + - trace + - debug + - info + - warning + - warn + - error + - critical + - "off" + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service. + enum: + - Cluster + - Local + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy. + enum: + - NodePort + - ClusterIP + - LoadBalancer + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, `http` + & `https` are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + minimum: 30 + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + enum: + - Deployment + - DaemonSet + type: string + type: object + type: object + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + minLength: 1 + type: string + type: object + version: 1.32.0 From 7ec34796ddb04503e258360b1e50cc37697f9b8e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 21:41:21 +0200 Subject: [PATCH 559/601] Update Knative Serving metadata and add version 1.18.0 (#481) Co-authored-by: github-actions --- .../1.18.0.yml | 304 ++++++++++++++++++ 1 file changed, 304 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.18.0.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.18.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.18.0.yml new file mode 100644 index 0000000..5949496 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.18.0.yml @@ -0,0 +1,304 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.18.0 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2025-05-30T19:38:47Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:e2b14d7b0b9e44591f899914491992cb3c9b749fac63795dfffae18a1952dc8d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + enum: + - http + - https + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + enum: + - Enabled + - Redirected + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + minimum: 0 + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + enum: + - zipkin + - none + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + enum: + - "true" + - "false" + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + maxLength: 3 + minLength: 1 + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + minLength: 4 + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + minLength: 1 + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + minLength: 1 + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 20 + minimum: 1 + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 5 + minimum: 1 + type: integer + type: object + type: object + type: object + version: 1.18.0 From 72264f108de71ce96df5d1497a35d2ed647fb658 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 21:52:12 +0200 Subject: [PATCH 560/601] Update Flux metadata and add version 2.6.0 (#482) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.6.0.yml | 107 ++++++++++++++++++ 1 file changed, 107 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.6.0.yml diff --git a/repo/packages/flux.packages.kadras.io/2.6.0.yml b/repo/packages/flux.packages.kadras.io/2.6.0.yml new file mode 100644 index 0000000..539db0e --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.6.0.yml @@ -0,0 +1,107 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.6.0 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2025-05-30T19:49:58Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:a34b67ff57b00d97e426a5935f93d58e26cbca04a602e365d43149e70d10e8ec + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + enum: + - trace + - debug + - info + - error + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.6.0 From 286eab73ae88c5f70486e4a8559001b0959aabce Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 21:54:18 +0200 Subject: [PATCH 561/601] Update RabbitMQ Operator metadata and add version 2.13.0 (#483) Co-authored-by: github-actions --- .../2.13.0.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.13.0.yml diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.13.0.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.13.0.yml new file mode 100644 index 0000000..f1066d6 --- /dev/null +++ b/repo/packages/rabbitmq-operator.packages.kadras.io/2.13.0.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: rabbitmq-operator.packages.kadras.io.2.13.0 +spec: + licenses: + - Apache 2.0 + refName: rabbitmq-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases + releasedAt: "2025-05-30T19:52:33Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:5055748f058a71d03389a18b7f0a5c3c2dc00d5797c6aaa24b2fb6680eb8ab0f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Logging configuration. + properties: + level: + default: info + description: The Operator log level. Valid options are `info` and `debug`. + enum: + - info + - debug + type: string + type: object + type: object + version: 2.13.0 From ac0366c9b1ad3fe2ed6ac0413a486cf601a73806 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 21:58:01 +0200 Subject: [PATCH 562/601] Update PostgreSQL Operator metadata and add version 1.26.0 (#484) Co-authored-by: github-actions --- .../1.26.0.yml | 31 +++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.26.0.yml diff --git a/repo/packages/postgresql-operator.packages.kadras.io/1.26.0.yml b/repo/packages/postgresql-operator.packages.kadras.io/1.26.0.yml new file mode 100644 index 0000000..cc2b422 --- /dev/null +++ b/repo/packages/postgresql-operator.packages.kadras.io/1.26.0.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: postgresql-operator.packages.kadras.io.1.26.0 +spec: + licenses: + - Apache 2.0 + refName: postgresql-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-postgresql-operator/releases + releasedAt: "2025-05-30T19:55:50Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-postgresql-operator@sha256:ed88afe9d2728ff37959c5c7ee4d26b40b4fc5d33258243fb85eed4f52719800 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 1.26.0 From 76913d041935240d10dcd56fd90970eede352689 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 22:12:23 +0200 Subject: [PATCH 563/601] Update Crossplane metadata and add version 1.20.0 (#485) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/1.20.0.yml | 468 ++++++++++++++++++ 1 file changed, 468 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.20.0.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.20.0.yml b/repo/packages/crossplane.packages.kadras.io/1.20.0.yml new file mode 100644 index 0000000..6c0428c --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.20.0.yml @@ -0,0 +1,468 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.20.0 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2025-05-30T20:10:40Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:e50bcaa46d5bbe691ed6cb9cefe2940113840334b0079951634e4b4541be05cf + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + dnsPolicy: + default: "" + description: Specify the `dnsPolicy` to be used by the Crossplane pod. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + function: + properties: + packages: + default: [] + description: A list of Function packages to install + items: {} + type: array + type: object + functionCache: + properties: + medium: + default: "" + description: Set to `Memory` to hold the function cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the function + cache. Disables the default function cache `emptyDir` Volume. + type: string + sizeLimit: + default: 512Mi + description: The size limit for the function cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.crossplane.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: [] + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + items: {} + type: array + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + port: + default: "" + description: The port the metrics server listens on. + type: string + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + revisionHistoryLimit: + description: The number of RBAC Manager ReplicaSets to retain. + oneOf: + - default: null + nullable: true + type: integer + - default: null + nullable: true + type: number + - default: null + nullable: true + type: boolean + - default: null + nullable: true + type: string + - default: null + nullable: true + type: object + - default: null + items: {} + nullable: true + type: array + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the RBAC Manager pod + deployment. + items: {} + type: array + type: object + readiness: + properties: + port: + default: "" + description: The port the readyz server listens on. + type: string + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 500m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 1024Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + revisionHistoryLimit: + description: The number of Crossplane ReplicaSets to retain. + oneOf: + - default: null + nullable: true + type: integer + - default: null + nullable: true + type: number + - default: null + nullable: true + type: boolean + - default: null + nullable: true + type: string + - default: null + nullable: true + type: object + - default: null + items: {} + nullable: true + type: array + runtimeClassName: + default: "" + description: The runtimeClassName name to apply to the Crossplane and RBAC + Manager pods. + type: string + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + service: + properties: + customAnnotations: + default: {} + description: Configure annotations on the service object. Only enabled + when webhooks.enabled = true + type: object + type: object + serviceAccount: + properties: + create: + default: true + description: Specifies whether Crossplane ServiceAccount should be created + type: boolean + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + name: + default: "" + description: Provide the name of an already created Crossplane ServiceAccount. + Required when `serviceAccount.create` is `false` + type: string + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + port: + default: "" + description: The port the webhook server listens on. + type: string + type: object + type: object + version: 1.20.0 From 57dd3398b14b35d915874d068b7d5a7d77466006 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 22:15:15 +0200 Subject: [PATCH 564/601] Update Dependency Track metadata and add version 4.13.2 (#486) Co-authored-by: github-actions --- .../4.13.2.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/dependency-track.packages.kadras.io/4.13.2.yml diff --git a/repo/packages/dependency-track.packages.kadras.io/4.13.2.yml b/repo/packages/dependency-track.packages.kadras.io/4.13.2.yml new file mode 100644 index 0000000..324e9f3 --- /dev/null +++ b/repo/packages/dependency-track.packages.kadras.io/4.13.2.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dependency-track.packages.kadras.io.4.13.2 +spec: + licenses: + - Apache 2.0 + refName: dependency-track.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases + releasedAt: "2025-05-30T20:13:17Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dependency-track@sha256:82ef90789ee3eec8ed5fa36b149175c8f782d3774487ab905c4c0d35c07ce397 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + api_server: + additionalProperties: false + description: Settings for the API Server component. + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + format: + default: console + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `warn`, `error`.' + enum: + - trace + - debug + - info + - warn + - error + type: string + type: object + metrics: + additionalProperties: false + description: Settings for metrics. + properties: + enabled: + default: true + description: Whether to enable the generation of Prometheus metrics. + type: boolean + type: object + resources: + additionalProperties: false + description: Resource configuration for the API Server component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "4" + description: CPU limits configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory limits configuration for the API Server + component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: "0.5" + description: CPU requests configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory requests configuration for the API Server + component. + type: string + type: object + type: object + storage: + additionalProperties: false + description: Storage configuration for the API Server component. + properties: + class_name: + default: "" + description: Class name for the PersistenceVolume to create. + type: string + size: + default: 1Gi + description: Size of the PersistenceVolume to create. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Dependency Track. It must be a valid DNS name. + minLength: 4 + type: string + frontend: + additionalProperties: false + description: Settings for the Frontend component. + properties: + replicas: + default: 1 + description: The number of Frontend replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + resources: + additionalProperties: false + description: Resource configuration for the Frontend component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU limits configuration for the Frontend component. + type: string + memory: + default: 128Mi + description: Memory limits configuration for the Frontend component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 150m + description: CPU requests configuration for the Frontend component. + type: string + memory: + default: 64Mi + description: Memory requests configuration for the Frontend + component. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use for enabling TLS in + Dependency Track. + example: kadras-ca-issuer + minLength: 4 + type: string + x-example-description: Kadras private CA + postgresql: + additionalProperties: false + description: Settings for the PostgreSQL database. + properties: + instances: + default: 1 + description: Number of instances for the PostgreSQL database cluster. + Define at least 3 for production scenarios. + minimum: 1 + type: integer + storage: + additionalProperties: false + description: Storage configuration for each PostgreSQL instance. + properties: + size: + default: 1Gi + description: Size of the PersistenceVolume to create for each PostgreSQL + instance. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + system_requirement_check: + default: true + description: Whether Dependency Track will check for memory and CPU requirements + at startup time. + type: boolean + type: object + version: 4.13.2 From 225980b451a61dff88795ba362e8d52dd9a50e8e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Fri, 30 May 2025 22:20:21 +0200 Subject: [PATCH 565/601] Update Dapr metadata and add version 1.15.5 (#487) Co-authored-by: github-actions --- .../dapr.packages.kadras.io/1.15.5.yml | 208 ++++++++++++++++++ 1 file changed, 208 insertions(+) create mode 100644 repo/packages/dapr.packages.kadras.io/1.15.5.yml diff --git a/repo/packages/dapr.packages.kadras.io/1.15.5.yml b/repo/packages/dapr.packages.kadras.io/1.15.5.yml new file mode 100644 index 0000000..bfa768f --- /dev/null +++ b/repo/packages/dapr.packages.kadras.io/1.15.5.yml @@ -0,0 +1,208 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dapr.packages.kadras.io.1.15.5 +spec: + refName: dapr.packages.kadras.io + releasedAt: "2025-05-30T20:15:30Z" + template: + spec: + deploy: + - kapp: + intoNs: dapr-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dapr@sha256:2a01f0fe18ba0eb064b1f671ee0ef8b8183d70875386219abc12fc664404b9a3 + template: + - helmTemplate: + name: dapr + namespace: dapr-system + path: config/helm/upstream/dapr + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + global: + properties: + actors: + properties: + enabled: + default: true + description: Enables actor functionality in the cluster + type: boolean + serviceName: + default: placement + description: Name of the service that provides actor placement services + type: string + type: object + argoRolloutServiceReconciler: + description: 'the issuerFilenames dictionary, if setup, have to contain + 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: + "tls.key"' + properties: + enabled: + default: false + type: boolean + type: object + daprControlPlaneOs: + default: linux + type: string + dnsSuffix: + default: .cluster.local + type: string + extraVolumeMounts: + default: {} + description: 'sentry: placement: operator: injector: scheduler:' + type: object + extraVolumes: + default: {} + description: and extraVolumeMounts are used to mount additional volumes + to the Dapr control plane pods. Useful for using alternative authentication + credentials to sentry. + type: object + ha: + properties: + disruption: + properties: + maximumUnavailable: + default: 25% + type: string + minimumAvailable: + default: "" + type: string + type: object + enabled: + default: false + type: boolean + replicaCount: + default: 3 + type: integer + type: object + imagePullPolicy: + default: IfNotPresent + type: string + imagePullSecrets: + default: "" + description: 'To help compatibility with other charts which use global.imagePullSecrets. + Allow either a string with single imagepullsecret or an array of {name: + pullSecret} maps (k8s-style) or an array of strings (more common helm-style). + global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - + name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - + pullSecret1 - pullSecret2' + type: string + issuerFilenames: + default: {} + type: object + k8sLabels: + properties: + app.kubernetes.io/component: + default: '{{ .Values.component }}' + type: string + app.kubernetes.io/managed-by: + default: '{{ .Release.Service }}' + type: string + app.kubernetes.io/name: + default: '{{ .Release.Name }}' + type: string + app.kubernetes.io/part-of: + default: dapr + type: string + app.kubernetes.io/version: + default: '{{ .Values.global.tag }}' + type: string + type: object + labels: + default: {} + type: object + logAsJson: + default: false + type: boolean + mtls: + properties: + allowedClockSkew: + default: 15m + type: string + controlPlaneTrustDomain: + default: cluster.local + type: string + enabled: + default: true + type: boolean + mountSentryVolume: + default: true + description: If set to true, a bound service account token will + be mounted and used to authenticate to Sentry. + type: boolean + workloadCertTTL: + default: 24h + type: string + type: object + nodeSelector: + default: {} + type: object + operator: + properties: + watchdogCanPatchPodLabels: + default: false + type: boolean + type: object + priorityClassName: + default: "" + type: string + prometheus: + properties: + enabled: + default: true + type: boolean + port: + default: 9090 + type: integer + type: object + rbac: + properties: + namespaced: + default: false + type: boolean + type: object + registry: + default: ghcr.io/dapr + type: string + reminders: + properties: + serviceName: + default: "" + description: Name of the service that provides reminders If empty, + uses the built-in reminders capabilities in Dapr sidecars + type: string + type: object + scheduler: + properties: + enabled: + default: true + description: Enables scheduler functionality in the cluster + type: boolean + type: object + seccompProfile: + default: "" + type: string + tag: + default: 1.15.5 + type: string + tolerations: + default: [] + items: {} + type: array + type: object + type: object + version: 1.15.5 From b1015d67586c3bc9ada3b599a09af8bf3f6ab0bb Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Jun 2025 14:49:30 +0200 Subject: [PATCH 566/601] Update Kadras Developer Portal metadata and add version 0.7.0 (#488) Co-authored-by: github-actions --- .../0.7.0.yml | 665 ++++++++++++++++++ 1 file changed, 665 insertions(+) create mode 100644 repo/packages/developer-portal.packages.kadras.io/0.7.0.yml diff --git a/repo/packages/developer-portal.packages.kadras.io/0.7.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.7.0.yml new file mode 100644 index 0000000..d446174 --- /dev/null +++ b/repo/packages/developer-portal.packages.kadras.io/0.7.0.yml @@ -0,0 +1,665 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: developer-portal.packages.kadras.io.0.7.0 +spec: + refName: developer-portal.packages.kadras.io + releasedAt: "2025-06-01T12:44:42Z" + template: + spec: + deploy: + - kapp: + intoNs: backstage + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-developer-portal@sha256:9fd869302b8daa8c12535819b6c2659b778cf36712760b0e84045c2b7b4940df + template: + - helmTemplate: + name: backstage + namespace: backstage + path: config/helm/upstream/backstage + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + backstage: + description: Backstage parameters @default -- See below + properties: + affinity: + default: {} + description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' + type: object + annotations: + default: {} + description: Additional custom annotations for the `Deployment` resource + type: object + appConfig: + default: {} + description: 'Allows to define the appConfig as a multiline string that + generates a ConfigMap automatically, not requiring to have it pre + provisioned as with the extraAppConfig key. DO NOT USE if you need + to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: + https://somedomain.tld -- Generates ConfigMap and configures it in + the Backstage pods' + type: object + args: + default: [] + description: Backstage container command arguments + items: {} + type: array + command: + default: [] + description: Backstage container command + items: + default: node + type: string + type: array + containerPorts: + description: Container ports on the Deployment + properties: + backend: + default: 7007 + type: integer + type: object + containerSecurityContext: + default: {} + description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' + type: object + extraAppConfig: + default: [] + description: Extra app configuration files to inline into command arguments + items: {} + type: array + extraContainers: + default: [] + description: Deployment sidecars + items: {} + type: array + extraEnvVars: + default: [] + description: Backstage container environment variables + items: {} + type: array + extraEnvVarsCM: + default: [] + description: Backstage container environment variables from existing + ConfigMaps + items: {} + type: array + extraEnvVarsSecrets: + default: [] + description: Backstage container environment variables from existing + Secrets + items: {} + type: array + extraPorts: + default: [] + description: Backstage container additional ports + items: {} + type: array + extraVolumeMounts: + default: [] + description: Backstage container additional volume mounts + items: {} + type: array + extraVolumes: + default: [] + description: Backstage container additional volumes + items: {} + type: array + hostAliases: + default: [] + description: 'Host Aliases for the pod
Ref: https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/' + items: {} + type: array + image: + properties: + digest: + default: "" + description: Backstage image digest (digest takes precedence over + image tag) + type: string + pullPolicy: + default: Always + description: 'Specify a imagePullPolicy. Defaults to ''Always'' + if image tag is ''latest'', else set to ''IfNotPresent''
+ Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' + type: string + pullSecrets: + default: [] + description: 'Optionally specify an array of imagePullSecrets. Secrets + must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +
E.g: `pullSecrets: [myRegistryKeySecretName]`' + items: {} + type: array + registry: + default: ghcr.io + description: Backstage image registry + type: string + repository: + default: backstage/backstage + description: Backstage image repository + type: string + tag: + default: latest + description: Backstage image tag (immutable tags are recommended) + type: string + type: object + initContainers: + default: [] + description: Backstage container init containers + items: {} + type: array + installDir: + default: /app + description: Directory containing the backstage installation + type: string + livenessProbe: + description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + items: {} + type: array + extraTls: + default: [] + description: 'The TLS configuration for additional hostnames to be covered + with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls + ' + items: {} + type: array + host: + default: "" + description: 'Hostname to be used to expose the route to access the + backstage application (e.g: backstage.IP.nip.io)' + type: string + path: + default: / + description: 'Path to be used to expose the full route to access the + backstage application (e.g: IP.nip.io/backstage)' + type: string + tls: + description: Ingress TLS parameters + properties: + enabled: + default: false + description: Enable TLS configuration for the host defined at `ingress.host` + parameter + type: boolean + secretName: + default: "" + description: The name to which the TLS Secret will be called + type: string + type: object + type: object + kubeVersion: + default: "" + description: |- + Common parameters + -- Override Kubernetes version + type: string + metrics: + description: Metrics configuration + properties: + serviceMonitor: + description: ServiceMonitor configuration
Allows configuring + your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) + using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) + can understand. + properties: + annotations: + default: {} + description: ServiceMonitor annotations + type: object + enabled: + default: false + description: If enabled, a ServiceMonitor resource for Prometheus + Operator is created
Prometheus Operator must be installed + in your cluster prior to enabling. + type: boolean + interval: + description: ServiceMonitor scrape interval + oneOf: + - default: null + nullable: true + type: integer + - default: null + nullable: true + type: number + - default: null + nullable: true + type: boolean + - default: null + nullable: true + type: string + - default: null + nullable: true + type: object + - default: null + items: {} + nullable: true + type: array + labels: + default: {} + description: Additional ServiceMonitor labels + type: object + path: + default: /metrics + description: ServiceMonitor endpoint path
Note that the /metrics + endpoint is NOT present in a freshly scaffolded Backstage app. + To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). + type: string + port: + default: http-backend + description: ServiceMonitor endpoint port
The port where + the metrics are exposed. If using OpenTelemetry as [documented + here](https://backstage.io/docs/tutorials/setup-opentelemetry/), + then the port needs to be explicitly specified. OpenTelemetry's + default port is 9464. + type: string + type: object + type: object + nameOverride: + default: "" + description: String to partially override common.names.fullname + type: string + networkPolicy: + description: '@section NetworkPolicy parameters' + properties: + egressRules: + description: Egress Rules + properties: + customRules: + default: [] + description: Additional custom egress rules + items: {} + type: array + denyConnectionsToExternal: + default: false + description: Deny external connections. Should not be enabled when + working with an external database. + type: boolean + type: object + enabled: + default: false + description: Specifies whether a NetworkPolicy should be created + type: boolean + ingressRules: + description: Ingress Rules + properties: + customRules: + default: [] + description: Additional custom ingress rules + items: {} + type: array + namespaceSelector: + default: {} + description: Namespace selector label allowed to access the Backstage + instance + type: object + podSelector: + default: {} + description: Pod selector label allowed to access the Backstage + instance + type: object + type: object + type: object + postgresql: + description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) + @default -- See below + properties: + architecture: + default: standalone + description: PostgreSQL architecture (`standalone` or `replication`) + type: string + auth: + description: The authentication details of the Postgres database + properties: + existingSecret: + default: "" + description: Name of existing secret to use for PostgreSQL credentials + type: string + password: + default: "" + description: Password for the custom user to create + type: string + secretKeys: + description: The secret keys Postgres will look for to retrieve + the relevant password + properties: + adminPasswordKey: + default: admin-password + description: The key in which Postgres will look for, for the + admin password, in the existing Secret + type: string + replicationPasswordKey: + default: replication-password + description: The key in which Postgres will look for, for the + replication password, in the existing Secret + type: string + userPasswordKey: + default: user-password + description: The key in which Postgres will look for, for the + user password, in the existing Secret + type: string + type: object + username: + default: bn_backstage + description: Name for a custom user to create + type: string + type: object + enabled: + default: false + description: Switch to enable or disable the PostgreSQL helm chart + type: boolean + type: object + service: + description: |- + @section Traffic Exposure parameters + Service parameters -- Service parameters @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for Backstage service + type: object + clusterIP: + default: "" + description: 'Backstage service Cluster IP
E.g `clusterIP: None`' + type: string + externalTrafficPolicy: + default: Cluster + description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' + type: string + extraPorts: + default: [] + description: Extra ports to expose in the Backstage service (normally + used with the `sidecar` value) + items: {} + type: array + ipFamilies: + default: [] + description: 'IP Families
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' + items: {} + type: array + ipFamilyPolicy: + default: "" + description: 'IP Family Policy
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' + type: string + loadBalancerIP: + default: "" + description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' + type: string + loadBalancerSourceRanges: + default: [] + description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer +
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' + items: {} + type: array + nodePorts: + description: Node port for the Backstage client connections Choose port + between `30000-32767` + properties: + backend: + default: "" + type: string + type: object + ports: + description: Backstage svc port for client connections + properties: + backend: + default: 7007 + type: integer + name: + default: http-backend + description: Backstage svc port name + type: string + targetPort: + default: backend + description: Backstage svc target port referencing receiving pod + container port + type: string + type: object + sessionAffinity: + default: None + description: 'Control where client requests go, to the same pod or round-robin + (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' + type: string + type: + default: ClusterIP + description: Kubernetes Service type + type: string + type: object + serviceAccount: + description: Service Account Configuration @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for the ServiceAccount. + type: object + automountServiceAccountToken: + default: true + description: Auto-mount the service account token in the pod + type: boolean + create: + default: false + description: Enable the creation of a ServiceAccount for Backstage pods + type: boolean + labels: + default: {} + description: Additional custom labels to the service ServiceAccount. + type: object + name: + default: "" + description: Name of the ServiceAccount to use If not set and `serviceAccount.create` + is true, a name is generated + type: string + type: object + type: object + version: 0.7.0 From 45fc16cbe7b7cfae2e98981188e02dd2e0acebe2 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Jun 2025 14:50:33 +0200 Subject: [PATCH 567/601] docs: Document Kubernetes 1.31 minimum requirement --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 49ec325..613291c 100644 --- a/README.md +++ b/README.md @@ -37,7 +37,7 @@ This repository contains the following Carvel packages. ### Prerequisites -* Kubernetes 1.30+ +* Kubernetes 1.31+ * Carvel [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI. * Carvel [kapp-controller](https://carvel.dev/kapp-controller) deployed in your Kubernetes cluster. You can install it with Carvel [`kapp`](https://carvel.dev/kapp/docs/latest/install) (recommended choice) or `kubectl`. From bcab56a7978702ccce7ea5b80be2e5cd72dc9dbc Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Jun 2025 14:53:39 +0200 Subject: [PATCH 568/601] chore: Remove deprecated packages --- .../1.17.1.yml | 207 ------ .../contour.packages.kadras.io/1.30.3.yml | 226 ------- .../crossplane.packages.kadras.io/1.19.1.yml | 417 ------------ .../dapr.packages.kadras.io/1.15.3.yml | 208 ------ .../4.12.7.yml | 211 ------ .../0.6.0.yml | 634 ------------------ .../flux.packages.kadras.io/2.5.1.yml | 107 --- .../1.17.0.yml | 304 --------- .../kyverno.packages.kadras.io/1.13.4.yml | 182 ----- .../1.25.1.yml | 31 - .../2.12.1.yml | 44 -- .../0.19.1.yml | 35 - 12 files changed, 2606 deletions(-) delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.17.1.yml delete mode 100644 repo/packages/contour.packages.kadras.io/1.30.3.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.19.1.yml delete mode 100644 repo/packages/dapr.packages.kadras.io/1.15.3.yml delete mode 100644 repo/packages/dependency-track.packages.kadras.io/4.12.7.yml delete mode 100644 repo/packages/developer-portal.packages.kadras.io/0.6.0.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.5.1.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.17.0.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.13.4.yml delete mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml delete mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml delete mode 100644 repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.17.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.17.1.yml deleted file mode 100644 index ad5be9e..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.17.1.yml +++ /dev/null @@ -1,207 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.17.1 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2025-03-30T09:39:05Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:cdc37ed01390bc303ad71393dafb7f4dde377417d241abd7266bac17436c0a25 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cainjector: - additionalProperties: false - description: Settings for the cainjector controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility.' - minLength: 1 - type: string - type: object - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - challenge: - additionalProperties: false - properties: - dns_provider: - default: digital_ocean - description: 'The DNS provider to use for the ACME dns01 challenge. - Valid options: `digital_ocean`.' - enum: - - digital_ocean - type: string - secret: - additionalProperties: false - properties: - key: - default: "" - description: The key within the Secret that contains the credentials - needed for the dns01 challenge. - type: string - name: - default: "" - description: Name of the Secret containing the credentials needed - for the dns01 challenge. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - needed for the dns01 challenge. - type: string - type: object - type: - default: http01 - description: 'The type of challenge used by the ACME CA Server. - Valid options: `http01`, `dns01`.' - enum: - - http01 - - dns01 - type: string - type: object - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - production: - default: false - description: Whether to use Let's Encrypt staging (recommended for non-production - environments) or production. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - minLength: 1 - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_pki: - additionalProperties: false - description: Settings for the built-in, private PKI - properties: - include: - default: true - description: Whether to include a ClusterIssuer for a private PKI. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - at least 3 replicas are recommended. - minimum: 1 - type: integer - secure_port: - default: 6443 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility.' - type: integer - type: object - type: object - version: 1.17.1 diff --git a/repo/packages/contour.packages.kadras.io/1.30.3.yml b/repo/packages/contour.packages.kadras.io/1.30.3.yml deleted file mode 100644 index 3225691..0000000 --- a/repo/packages/contour.packages.kadras.io/1.30.3.yml +++ /dev/null @@ -1,226 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.30.3 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2025-03-30T10:01:25Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:788d21b7280c68f30ee76d691302a488d6bd0c5fef2ce4aa6f0892e7ba106616 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - enum: - - json - - text - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - enum: - - info - - debug - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configMapData: - default: {} - description: The YAML contents of the `contour` ConfigMap. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - enum: - - trace - - debug - - info - - warning - - warn - - error - - critical - - "off" - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service. - enum: - - Cluster - - Local - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy. - enum: - - NodePort - - ClusterIP - - LoadBalancer - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, `http` - & `https` are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - minimum: 30 - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - enum: - - Deployment - - DaemonSet - type: string - type: object - type: object - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - minLength: 1 - type: string - type: object - version: 1.30.3 diff --git a/repo/packages/crossplane.packages.kadras.io/1.19.1.yml b/repo/packages/crossplane.packages.kadras.io/1.19.1.yml deleted file mode 100644 index b20ec1b..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.19.1.yml +++ /dev/null @@ -1,417 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.19.1 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2025-03-30T10:11:45Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:4f7c9d240e40fa6035cdc0e70763a51f641dd14e13ca79e2e91a4f90ba672087 - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - port: - default: "" - description: The port the metrics server listens on. - type: string - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - packageManager: - properties: - enableAutomaticDependencyDowngrade: - default: false - description: Enable automatic dependency version downgrades. This configuration - is only used when `--enable-dependency-version-upgrades` flag is passed. - type: boolean - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - revisionHistoryLimit: - default: "null" - description: The number of RBAC Manager ReplicaSets to retain. - type: "null" - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - readiness: - properties: - port: - default: "" - description: The port the readyz server listens on. - type: string - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - revisionHistoryLimit: - default: "null" - description: The number of Crossplane ReplicaSets to retain. - type: "null" - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - create: - default: true - description: Specifies whether Crossplane ServiceAccount should be created - type: boolean - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - name: - default: "" - description: Provide the name of an already created Crossplane ServiceAccount. - Required when `serviceAccount.create` is `false` - type: string - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - port: - default: "" - description: The port the webhook server listens on. - type: string - type: object - type: object - version: 1.19.1 diff --git a/repo/packages/dapr.packages.kadras.io/1.15.3.yml b/repo/packages/dapr.packages.kadras.io/1.15.3.yml deleted file mode 100644 index 40b3e80..0000000 --- a/repo/packages/dapr.packages.kadras.io/1.15.3.yml +++ /dev/null @@ -1,208 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dapr.packages.kadras.io.1.15.3 -spec: - refName: dapr.packages.kadras.io - releasedAt: "2025-03-30T10:15:27Z" - template: - spec: - deploy: - - kapp: - intoNs: dapr-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dapr@sha256:6349d5565735940eca2077bbd25527782e848130b71feec6f627ce61657f970b - template: - - helmTemplate: - name: dapr - namespace: dapr-system - path: config/helm/upstream/dapr - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - global: - properties: - actors: - properties: - enabled: - default: true - description: Enables actor functionality in the cluster - type: boolean - serviceName: - default: placement - description: Name of the service that provides actor placement services - type: string - type: object - argoRolloutServiceReconciler: - description: 'the issuerFilenames dictionary, if setup, have to contain - 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: - "tls.key"' - properties: - enabled: - default: false - type: boolean - type: object - daprControlPlaneOs: - default: linux - type: string - dnsSuffix: - default: .cluster.local - type: string - extraVolumeMounts: - default: {} - description: 'sentry: placement: operator: injector: scheduler:' - type: object - extraVolumes: - default: {} - description: and extraVolumeMounts are used to mount additional volumes - to the Dapr control plane pods. Useful for using alternative authentication - credentials to sentry. - type: object - ha: - properties: - disruption: - properties: - maximumUnavailable: - default: 25% - type: string - minimumAvailable: - default: "" - type: string - type: object - enabled: - default: false - type: boolean - replicaCount: - default: 3 - type: integer - type: object - imagePullPolicy: - default: IfNotPresent - type: string - imagePullSecrets: - default: "" - description: 'To help compatibility with other charts which use global.imagePullSecrets. - Allow either a string with single imagepullsecret or an array of {name: - pullSecret} maps (k8s-style) or an array of strings (more common helm-style). - global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - - name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - - pullSecret1 - pullSecret2' - type: string - issuerFilenames: - default: {} - type: object - k8sLabels: - properties: - app.kubernetes.io/component: - default: '{{ .Values.component }}' - type: string - app.kubernetes.io/managed-by: - default: '{{ .Release.Service }}' - type: string - app.kubernetes.io/name: - default: '{{ .Release.Name }}' - type: string - app.kubernetes.io/part-of: - default: dapr - type: string - app.kubernetes.io/version: - default: '{{ .Values.global.tag }}' - type: string - type: object - labels: - default: {} - type: object - logAsJson: - default: false - type: boolean - mtls: - properties: - allowedClockSkew: - default: 15m - type: string - controlPlaneTrustDomain: - default: cluster.local - type: string - enabled: - default: true - type: boolean - mountSentryVolume: - default: true - description: If set to true, a bound service account token will - be mounted and used to authenticate to Sentry. - type: boolean - workloadCertTTL: - default: 24h - type: string - type: object - nodeSelector: - default: {} - type: object - operator: - properties: - watchdogCanPatchPodLabels: - default: false - type: boolean - type: object - priorityClassName: - default: "" - type: string - prometheus: - properties: - enabled: - default: true - type: boolean - port: - default: 9090 - type: integer - type: object - rbac: - properties: - namespaced: - default: false - type: boolean - type: object - registry: - default: ghcr.io/dapr - type: string - reminders: - properties: - serviceName: - default: "" - description: Name of the service that provides reminders If empty, - uses the built-in reminders capabilities in Dapr sidecars - type: string - type: object - scheduler: - properties: - enabled: - default: true - description: Enables scheduler functionality in the cluster - type: boolean - type: object - seccompProfile: - default: "" - type: string - tag: - default: 1.15.3 - type: string - tolerations: - default: [] - items: {} - type: array - type: object - type: object - version: 1.15.3 diff --git a/repo/packages/dependency-track.packages.kadras.io/4.12.7.yml b/repo/packages/dependency-track.packages.kadras.io/4.12.7.yml deleted file mode 100644 index a179380..0000000 --- a/repo/packages/dependency-track.packages.kadras.io/4.12.7.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dependency-track.packages.kadras.io.4.12.7 -spec: - licenses: - - Apache 2.0 - refName: dependency-track.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases - releasedAt: "2025-03-30T10:51:32Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dependency-track@sha256:80484b86922e812960009155f1e0919b6d39eed869dee59b6c09675b05eac33d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - api_server: - additionalProperties: false - description: Settings for the API Server component. - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - format: - default: console - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `warn`, `error`.' - enum: - - trace - - debug - - info - - warn - - error - type: string - type: object - metrics: - additionalProperties: false - description: Settings for metrics. - properties: - enabled: - default: true - description: Whether to enable the generation of Prometheus metrics. - type: boolean - type: object - resources: - additionalProperties: false - description: Resource configuration for the API Server component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "4" - description: CPU limits configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory limits configuration for the API Server - component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: "0.5" - description: CPU requests configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory requests configuration for the API Server - component. - type: string - type: object - type: object - storage: - additionalProperties: false - description: Storage configuration for the API Server component. - properties: - class_name: - default: "" - description: Class name for the PersistenceVolume to create. - type: string - size: - default: 1Gi - description: Size of the PersistenceVolume to create. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Dependency Track. It must be a valid DNS name. - minLength: 4 - type: string - frontend: - additionalProperties: false - description: Settings for the Frontend component. - properties: - replicas: - default: 1 - description: The number of Frontend replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - resources: - additionalProperties: false - description: Resource configuration for the Frontend component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU limits configuration for the Frontend component. - type: string - memory: - default: 128Mi - description: Memory limits configuration for the Frontend component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 150m - description: CPU requests configuration for the Frontend component. - type: string - memory: - default: 64Mi - description: Memory requests configuration for the Frontend - component. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use for enabling TLS in - Dependency Track. - example: kadras-ca-issuer - minLength: 4 - type: string - x-example-description: Kadras private CA - postgresql: - additionalProperties: false - description: Settings for the PostgreSQL database. - properties: - instances: - default: 1 - description: Number of instances for the PostgreSQL database cluster. - Define at least 3 for production scenarios. - minimum: 1 - type: integer - storage: - additionalProperties: false - description: Storage configuration for each PostgreSQL instance. - properties: - size: - default: 1Gi - description: Size of the PersistenceVolume to create for each PostgreSQL - instance. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - system_requirement_check: - default: true - description: Whether Dependency Track will check for memory and CPU requirements - at startup time. - type: boolean - type: object - version: 4.12.7 diff --git a/repo/packages/developer-portal.packages.kadras.io/0.6.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.6.0.yml deleted file mode 100644 index 6ab38a6..0000000 --- a/repo/packages/developer-portal.packages.kadras.io/0.6.0.yml +++ /dev/null @@ -1,634 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: developer-portal.packages.kadras.io.0.6.0 -spec: - refName: developer-portal.packages.kadras.io - releasedAt: "2025-03-30T16:31:00Z" - template: - spec: - deploy: - - kapp: - intoNs: backstage - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-developer-portal@sha256:42b7e0dc1d8f81019aa748e84c1b6745991628e41f1a944f5b2eb498334c7887 - template: - - helmTemplate: - name: backstage - namespace: backstage - path: config/helm/upstream/backstage - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - backstage: - description: Backstage parameters @default -- See below - properties: - affinity: - default: {} - description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' - type: object - annotations: - default: {} - description: Additional custom annotations for the `Deployment` resource - type: object - appConfig: - default: {} - description: 'Allows to define the appConfig as a multiline string that - generates a ConfigMap automatically, not requiring to have it pre - provisioned as with the extraAppConfig key. DO NOT USE if you need - to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: - https://somedomain.tld -- Generates ConfigMap and configures it in - the Backstage pods' - type: object - args: - default: [] - description: Backstage container command arguments - items: {} - type: array - command: - default: [] - description: Backstage container command - items: - default: node - type: string - type: array - containerPorts: - description: Container ports on the Deployment - properties: - backend: - default: 7007 - type: integer - type: object - containerSecurityContext: - default: {} - description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' - type: object - extraAppConfig: - default: [] - description: Extra app configuration files to inline into command arguments - items: {} - type: array - extraContainers: - default: [] - description: Deployment sidecars - items: {} - type: array - extraEnvVars: - default: [] - description: Backstage container environment variables - items: {} - type: array - extraEnvVarsCM: - default: [] - description: Backstage container environment variables from existing - ConfigMaps - items: {} - type: array - extraEnvVarsSecrets: - default: [] - description: Backstage container environment variables from existing - Secrets - items: {} - type: array - extraPorts: - default: [] - description: Backstage container additional ports - items: {} - type: array - extraVolumeMounts: - default: [] - description: Backstage container additional volume mounts - items: {} - type: array - extraVolumes: - default: [] - description: Backstage container additional volumes - items: {} - type: array - hostAliases: - default: [] - description: 'Host Aliases for the pod
Ref: https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/' - items: {} - type: array - image: - properties: - digest: - default: "" - description: Backstage image digest (digest takes precedence over - image tag) - type: string - pullPolicy: - default: Always - description: 'Specify a imagePullPolicy. Defaults to ''Always'' - if image tag is ''latest'', else set to ''IfNotPresent''
- Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' - type: string - pullSecrets: - default: [] - description: 'Optionally specify an array of imagePullSecrets. Secrets - must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -
E.g: `pullSecrets: [myRegistryKeySecretName]`' - items: {} - type: array - registry: - default: ghcr.io - description: Backstage image registry - type: string - repository: - default: backstage/backstage - description: Backstage image repository - type: string - tag: - default: latest - description: Backstage image tag (immutable tags are recommended) - type: string - type: object - initContainers: - default: [] - description: Backstage container init containers - items: {} - type: array - installDir: - default: /app - description: Directory containing the backstage installation - type: string - livenessProbe: - description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - items: {} - type: array - extraTls: - default: [] - description: 'The TLS configuration for additional hostnames to be covered - with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls - ' - items: {} - type: array - host: - default: "" - description: 'Hostname to be used to expose the route to access the - backstage application (e.g: backstage.IP.nip.io)' - type: string - path: - default: / - description: 'Path to be used to expose the full route to access the - backstage application (e.g: IP.nip.io/backstage)' - type: string - tls: - description: Ingress TLS parameters - properties: - enabled: - default: false - description: Enable TLS configuration for the host defined at `ingress.host` - parameter - type: boolean - secretName: - default: "" - description: The name to which the TLS Secret will be called - type: string - type: object - type: object - kubeVersion: - default: "" - description: |- - Common parameters - -- Override Kubernetes version - type: string - metrics: - description: Metrics configuration - properties: - serviceMonitor: - description: ServiceMonitor configuration
Allows configuring - your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) - using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) - can understand. - properties: - annotations: - default: {} - description: ServiceMonitor annotations - type: object - enabled: - default: false - description: If enabled, a ServiceMonitor resource for Prometheus - Operator is created
Prometheus Operator must be installed - in your cluster prior to enabling. - type: boolean - interval: - default: "null" - description: ServiceMonitor scrape interval - type: "null" - labels: - default: {} - description: Additional ServiceMonitor labels - type: object - path: - default: /metrics - description: ServiceMonitor endpoint path
Note that the /metrics - endpoint is NOT present in a freshly scaffolded Backstage app. - To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). - type: string - port: - default: http-backend - description: ServiceMonitor endpoint port
The port where - the metrics are exposed. If using OpenTelemetry as [documented - here](https://backstage.io/docs/tutorials/setup-opentelemetry/), - then the port needs to be explicitely specificed. OpenTelemetry's - default port is 9464. - type: string - type: object - type: object - nameOverride: - default: "" - description: String to partially override common.names.fullname - type: string - networkPolicy: - description: '@section NetworkPolicy parameters' - properties: - egressRules: - description: Egress Rules - properties: - customRules: - default: [] - description: Additional custom egress rules - items: {} - type: array - denyConnectionsToExternal: - default: false - description: Deny external connections. Should not be enabled when - working with an external database. - type: boolean - type: object - enabled: - default: false - description: Specifies whether a NetworkPolicy should be created - type: boolean - ingressRules: - description: Ingress Rules - properties: - customRules: - default: [] - description: Additional custom ingress rules - items: {} - type: array - namespaceSelector: - default: {} - description: Namespace selector label allowed to access the Backstage - instance - type: object - podSelector: - default: {} - description: Pod selector label allowed to access the Backstage - instance - type: object - type: object - type: object - postgresql: - description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) - @default -- See below - properties: - architecture: - default: standalone - description: PostgreSQL architecture (`standalone` or `replication`) - type: string - auth: - description: The authentication details of the Postgres database - properties: - existingSecret: - default: "" - description: Name of existing secret to use for PostgreSQL credentials - type: string - password: - default: "" - description: Password for the custom user to create - type: string - secretKeys: - description: The secret keys Postgres will look for to retrieve - the relevant password - properties: - adminPasswordKey: - default: admin-password - description: The key in which Postgres will look for, for the - admin password, in the existing Secret - type: string - replicationPasswordKey: - default: replication-password - description: The key in which Postgres will look for, for the - replication password, in the existing Secret - type: string - userPasswordKey: - default: user-password - description: The key in which Postgres will look for, for the - user password, in the existing Secret - type: string - type: object - username: - default: bn_backstage - description: Name for a custom user to create - type: string - type: object - enabled: - default: false - description: Switch to enable or disable the PostgreSQL helm chart - type: boolean - type: object - service: - description: |- - @section Traffic Exposure parameters - Service parameters -- Service parameters @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for Backstage service - type: object - clusterIP: - default: "" - description: 'Backstage service Cluster IP
E.g `clusterIP: None`' - type: string - externalTrafficPolicy: - default: Cluster - description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' - type: string - extraPorts: - default: [] - description: Extra ports to expose in the Backstage service (normally - used with the `sidecar` value) - items: {} - type: array - ipFamilies: - default: [] - description: 'IP Families
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' - items: {} - type: array - ipFamilyPolicy: - default: "" - description: 'IP Family Policy
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' - type: string - loadBalancerIP: - default: "" - description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' - type: string - loadBalancerSourceRanges: - default: [] - description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer -
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' - items: {} - type: array - nodePorts: - description: Node port for the Backstage client connections Choose port - between `30000-32767` - properties: - backend: - default: "" - type: string - type: object - ports: - description: Backstage svc port for client connections - properties: - backend: - default: 7007 - type: integer - name: - default: http-backend - description: Backstage svc port name - type: string - targetPort: - default: backend - description: Backstage svc target port referencing receiving pod - container port - type: string - type: object - sessionAffinity: - default: None - description: 'Control where client requests go, to the same pod or round-robin - (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' - type: string - type: - default: ClusterIP - description: Kubernetes Service type - type: string - type: object - serviceAccount: - description: Service Account Configuration @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for the ServiceAccount. - type: object - automountServiceAccountToken: - default: true - description: Auto-mount the service account token in the pod - type: boolean - create: - default: false - description: Enable the creation of a ServiceAccount for Backstage pods - type: boolean - labels: - default: {} - description: Additional custom labels to the service ServiceAccount. - type: object - name: - default: "" - description: Name of the ServiceAccount to use If not set and `serviceAccount.create` - is true, a name is generated - type: string - type: object - type: object - version: 0.6.0 diff --git a/repo/packages/flux.packages.kadras.io/2.5.1.yml b/repo/packages/flux.packages.kadras.io/2.5.1.yml deleted file mode 100644 index e22334e..0000000 --- a/repo/packages/flux.packages.kadras.io/2.5.1.yml +++ /dev/null @@ -1,107 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.5.1 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2025-03-30T10:41:42Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:0adb855ba4e1e05c3b24c415e2ad6db802b8fdb28eafaa695dc9126921a76a46 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - enum: - - trace - - debug - - info - - error - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.5.1 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.17.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.17.0.yml deleted file mode 100644 index 6ad96cb..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.17.0.yml +++ /dev/null @@ -1,304 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.17.0 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2025-03-30T10:55:45Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:5a2ea94dae79dba764bc013a78744378dbb8a738bb851eb8dd69c930311c076a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - enum: - - http - - https - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - enum: - - Enabled - - Redirected - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - minimum: 0 - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - enum: - - zipkin - - none - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - enum: - - "true" - - "false" - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - maxLength: 3 - minLength: 1 - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - minLength: 4 - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - minLength: 1 - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - minLength: 1 - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 20 - minimum: 1 - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 5 - minimum: 1 - type: integer - type: object - type: object - type: object - version: 1.17.0 diff --git a/repo/packages/kyverno.packages.kadras.io/1.13.4.yml b/repo/packages/kyverno.packages.kadras.io/1.13.4.yml deleted file mode 100644 index 44b3a4d..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.13.4.yml +++ /dev/null @@ -1,182 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.13.4 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2025-03-30T09:22:14Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:8f195074a4af184aa8c0c3c5540376c3148b57057ebeb78e3aea27f5733f74ca - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - minimum: 1 - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - enum: - - text - - json - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - maximum: 6 - minimum: 1 - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - enum: - - grpc - - prometheus - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.13.4 diff --git a/repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml b/repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml deleted file mode 100644 index b6b782d..0000000 --- a/repo/packages/postgresql-operator.packages.kadras.io/1.25.1.yml +++ /dev/null @@ -1,31 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: postgresql-operator.packages.kadras.io.1.25.1 -spec: - licenses: - - Apache 2.0 - refName: postgresql-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-postgresql-operator/releases - releasedAt: "2025-03-30T09:14:53Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-postgresql-operator@sha256:87d31e3d8b06859553fbd26e60451ff111405fd0eeeee574601225cff0bab69f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 1.25.1 diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml deleted file mode 100644 index 42be1e4..0000000 --- a/repo/packages/rabbitmq-operator.packages.kadras.io/2.12.1.yml +++ /dev/null @@ -1,44 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: rabbitmq-operator.packages.kadras.io.2.12.1 -spec: - licenses: - - Apache 2.0 - refName: rabbitmq-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases - releasedAt: "2025-03-30T09:05:43Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:5db0fce98633ffcb3abc81092657de396b572545c446c6df36491f3a68ef9ac1 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Logging configuration. - properties: - level: - default: info - description: The Operator log level. Valid options are `info` and `debug`. - enum: - - info - - debug - type: string - type: object - type: object - version: 2.12.1 diff --git a/repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml b/repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml deleted file mode 100644 index 26451bd..0000000 --- a/repo/packages/secretgen-controller.packages.kadras.io/0.19.1.yml +++ /dev/null @@ -1,35 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: secretgen-controller.packages.kadras.io.0.19.1 -spec: - licenses: - - Apache 2.0 - refName: secretgen-controller.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-secretgen-controller/releases - releasedAt: "2025-02-27T22:40:56Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=50 - - --kube-api-burst=100 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-secretgen-controller@sha256:a6a5f415deb8fc0e383e40a5df5c7bafffb74b8d6f9bd076954667ef65624c21 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 0.19.1 From c7d5284e9644cab95d68d9cb5a9a23dc9e185984 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Jun 2025 15:05:24 +0200 Subject: [PATCH 569/601] Update Kadras Engineering Platform metadata and add version 0.25.0 (#489) Co-authored-by: github-actions --- .../0.25.0.yml | 276 ++++++++++++++++++ 1 file changed, 276 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.25.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.25.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.25.0.yml new file mode 100644 index 0000000..a973378 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.25.0.yml @@ -0,0 +1,276 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.25.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2025-06-01T13:02:19Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:31f410957c88b52c62d0a56b09f2f4a37994c5e2fc589c58821d75bb520bc639 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dapr: + default: {} + description: Configuration for the Dapr package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `build`, `run`.' + enum: + - standalone + - build + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.25.0 From 8ceb54ab7e39dcae73fd12fa5862ccbd74b70ac7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Jun 2025 15:05:40 +0200 Subject: [PATCH 570/601] chore: Remove deprecated packages --- .../0.23.0.yml | 276 ------------------ 1 file changed, 276 deletions(-) delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml deleted file mode 100644 index 58ced6e..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.23.0.yml +++ /dev/null @@ -1,276 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.23.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases - releasedAt: "2025-03-30T16:43:00Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:54ccf496a2a813f6456892ec60ac8cfbc13fa7735f040f08007fd138b50f6d52 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - crossplane: - default: {} - description: Configuration for the Crossplane package. - nullable: true - dapr: - default: {} - description: Configuration for the Dapr package. - nullable: true - dependency_track: - default: {} - description: Configuration for the Dependency Track package. - nullable: true - developer_portal: - default: {} - description: Configuration for the Developer Portal package. - nullable: true - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - gitops_configurer: - default: {} - description: Configuration for the GitOps Configurer package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - additional_packages: - default: [] - description: A list of packages to include in the installation. - items: - default: "" - type: string - type: array - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - enum: - - private - - letsencrypt_staging - - letsencrypt - - custom - type: string - type: object - type: object - namespace: - default: kadras-system - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `build`, `run`.' - enum: - - standalone - - build - - run - type: string - type: object - postgresql_operator: - default: {} - description: Configuration for the PostgreSQL Operator package. - nullable: true - rabbitmq_operator: - default: {} - description: Configuration for the RabbitMQ Operator package. - nullable: true - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - service_binding: - default: {} - description: Configuration for the Service Binding package. - nullable: true - tempo_operator: - default: {} - description: Configuration for the Tempo Operator package. - nullable: true - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.23.0 From 41b2f541efb22460262562304a94dd623c13ba25 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Sun, 1 Jun 2025 15:06:00 +0200 Subject: [PATCH 571/601] Release version 0.25.0 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index bbf64f1..59f225c 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.24.0 + VERSION: 0.25.0 jobs: build: From 80eae995cf283a456c48b54253814c33603d7371 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 18 Jun 2025 17:26:59 +0200 Subject: [PATCH 572/601] deps: bump sigstore/cosign-installer from 3.8.2 to 3.9.0 (#490) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.8.2 to 3.9.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v3.8.2...v3.9.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-version: 3.9.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 59f225c..094faa9 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.8.2 + uses: sigstore/cosign-installer@v3.9.0 - name: Log into container registry uses: redhat-actions/podman-login@v1.7 From aa87df0901ff323b968370939eb401be1c5d101a Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 17 Jul 2025 22:25:31 +0200 Subject: [PATCH 573/601] deps: bump sigstore/cosign-installer from 3.9.0 to 3.9.1 (#491) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.9.0 to 3.9.1. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v3.9.0...v3.9.1) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-version: 3.9.1 dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 094faa9..80e2c0c 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.9.0 + uses: sigstore/cosign-installer@v3.9.1 - name: Log into container registry uses: redhat-actions/podman-login@v1.7 From 6b7eccf0dba627158fc90ed2fa5c66ead65d7263 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 18 Jul 2025 07:30:09 +0200 Subject: [PATCH 574/601] deps: bump sigstore/cosign-installer from 3.9.1 to 3.9.2 (#492) --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 80e2c0c..50294ba 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.9.1 + uses: sigstore/cosign-installer@v3.9.2 - name: Log into container registry uses: redhat-actions/podman-login@v1.7 From 30928d921edab4ba405417468593160ca65ffaf8 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Tue, 12 Aug 2025 17:04:59 +0200 Subject: [PATCH 575/601] deps: bump actions/checkout from 4.2.2 to 5.0.0 (#493) Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.2 to 5.0.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4.2.2...v5.0.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 50294ba..267b2c4 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,7 +19,7 @@ jobs: image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code - uses: actions/checkout@v4.2.2 + uses: actions/checkout@v5.0.0 - name: Set up Carvel uses: carvel-dev/setup-action@v2.0.1 From dcdcdbe7b375d26f6542bb00c5f620b0af4f19cb Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 19:12:12 +0200 Subject: [PATCH 576/601] Update Kyverno metadata and add version 1.15.0 (#494) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.15.0.yml | 182 ++++++++++++++++++ 1 file changed, 182 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.15.0.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.15.0.yml b/repo/packages/kyverno.packages.kadras.io/1.15.0.yml new file mode 100644 index 0000000..853fdc0 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.15.0.yml @@ -0,0 +1,182 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.15.0 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2025-08-14T17:02:37Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:8790305444f5ccc2cd5715aca7ef9c596db45a4edd3e891b9b5c752dfa22e4ec + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + minimum: 1 + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + enum: + - text + - json + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + maximum: 6 + minimum: 1 + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + enum: + - grpc + - prometheus + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.15.0 From 17adf788b3ba163bd28f0c7c83f84f656276256c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 19:26:21 +0200 Subject: [PATCH 577/601] Update Workspace Provisioner metadata and add version 0.4.0 (#495) Co-authored-by: github-actions --- .../0.4.0.yml | 115 ++++++++++++++++++ 1 file changed, 115 insertions(+) create mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/0.4.0.yml diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/0.4.0.yml b/repo/packages/workspace-provisioner.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..4cf6ff9 --- /dev/null +++ b/repo/packages/workspace-provisioner.packages.kadras.io/0.4.0.yml @@ -0,0 +1,115 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: workspace-provisioner.packages.kadras.io.0.4.0 +spec: + licenses: + - Apache 2.0 + refName: workspace-provisioner.packages.kadras.io + releaseNotes: https://github.com/kadras-io/workspace-provisioner/releases + releasedAt: "2025-08-14T17:24:09Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/workspace-provisioner@sha256:9efab8fd3c86a7e8cfd5f1cff17ab5a881a0d37b13af5e971f2e1b23ac6c2dde + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Cosign key + pair. + type: string + type: object + type: object + git: + additionalProperties: false + description: Configuration to access the Git repositories used in the GitOps + workflows. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Git credentials. + properties: + name: + default: "" + description: The name of the Secret holding the Git credentials. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the Git credentials. + type: string + type: object + server: + default: https://github.com + description: The Git server hosting the Git repositories used in the + GitOps workflows. + type: string + type: object + namespaces: + default: [] + description: Configuration for the namespaces the platform will provision + and manage. + items: + additionalProperties: false + description: Details about the namespace to configure. + properties: + name: + default: "" + type: string + type: object + type: array + oci: + additionalProperties: false + description: Settings for accessing the OCI registry that the workspace + will use. + properties: + pull_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials to + pull images from the OCI registry. + properties: + name: + default: "" + description: The name of the Secret holding the credentials to pull + images from the OCI registry. + type: string + namespace: + default: "" + description: The namespace of the Secret holding the credentials + to pull images from the OCI registry. + type: string + type: object + type: object + service_account: + default: supply-chain + description: The `ServiceAccount` to be configured with credentials and + roles in each workspace. + type: string + type: object + version: 0.4.0 From b8fc7b1bcf7acdb58a13f10ccc733a2fe3d9e2ca Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 19:38:33 +0200 Subject: [PATCH 578/601] Update cert-manager metadata and add version 1.18.2 (#496) Co-authored-by: github-actions --- .../1.18.2.yml | 231 ++++++++++++++++++ 1 file changed, 231 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.18.2.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.18.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.18.2.yml new file mode 100644 index 0000000..5cce3c3 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.18.2.yml @@ -0,0 +1,231 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.18.2 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2025-08-14T17:36:11Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:84afdbe2e4b2d84ef5f9774b4608ffb100029c7e0a97bc0568aec9401c8c652b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cainjector: + additionalProperties: false + description: Settings for the cainjector controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + dns01: + additionalProperties: false + description: Configures the behaviour of the ACME DNS01 challenge solver. + properties: + recursive_nameservers: + default: [] + description: Each nameserver can be either the IP address and port + of a standard recursive DNS server, or the endpoint to an RFC + 8484 DNS over HTTPS endpoint. + items: + default: "" + type: string + type: array + recursive_nameservers_only: + default: false + description: When true, cert-manager will only ever query the configured + DNS resolvers to perform the ACME DNS01 self check. This is useful + in DNS constrained environments, where access to authoritative + nameservers is restricted. Enabling this option could cause the + DNS01 self check to take longer due to caching performed by the + recursive nameservers. + type: boolean + type: object + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility.' + minLength: 1 + type: string + type: object + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + challenge: + additionalProperties: false + properties: + dns_provider: + default: digital_ocean + description: 'The DNS provider to use for the ACME dns01 challenge. + Valid options: `cloudflare`, `digital_ocean`.' + enum: + - cloudflare + - digital_ocean + type: string + secret: + additionalProperties: false + properties: + key: + default: "" + description: The key within the Secret that contains the credentials + needed for the dns01 challenge. + type: string + name: + default: "" + description: Name of the Secret containing the credentials needed + for the dns01 challenge. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + needed for the dns01 challenge. + type: string + type: object + type: + default: http01 + description: 'The type of challenge used by the ACME CA Server. + Valid options: `http01`, `dns01`.' + enum: + - http01 + - dns01 + type: string + type: object + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + production: + default: false + description: Whether to use Let's Encrypt staging (recommended for non-production + environments) or production. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + minLength: 1 + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_pki: + additionalProperties: false + description: Settings for the built-in, private PKI + properties: + include: + default: true + description: Whether to include a ClusterIssuer for a private PKI. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + at least 3 replicas are recommended. + minimum: 1 + type: integer + secure_port: + default: 6443 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility.' + type: integer + type: object + type: object + version: 1.18.2 From aee01e00f9098f3f5d90aaac55df56d736f0af5d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 19:44:17 +0200 Subject: [PATCH 579/601] Update Flux metadata and add version 2.6.4 (#497) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.6.4.yml | 107 ++++++++++++++++++ 1 file changed, 107 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.6.4.yml diff --git a/repo/packages/flux.packages.kadras.io/2.6.4.yml b/repo/packages/flux.packages.kadras.io/2.6.4.yml new file mode 100644 index 0000000..105657e --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.6.4.yml @@ -0,0 +1,107 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.6.4 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2025-08-14T17:42:46Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:71304d88eb8251a0db355dc64676d7fd5c1c738d57a3d52b20662e1f0e108d5a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + enum: + - trace + - debug + - info + - error + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.6.4 From ff368c0cfc1b91dbb3d5806858006a35cca77d31 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 19:46:49 +0200 Subject: [PATCH 580/601] Update Metrics Server metadata and add version 0.8.0 (#498) Co-authored-by: github-actions --- .../0.8.0.yml | 148 ++++++++++++++++++ 1 file changed, 148 insertions(+) create mode 100644 repo/packages/metrics-server.packages.kadras.io/0.8.0.yml diff --git a/repo/packages/metrics-server.packages.kadras.io/0.8.0.yml b/repo/packages/metrics-server.packages.kadras.io/0.8.0.yml new file mode 100644 index 0000000..10b6dd8 --- /dev/null +++ b/repo/packages/metrics-server.packages.kadras.io/0.8.0.yml @@ -0,0 +1,148 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: metrics-server.packages.kadras.io.0.8.0 +spec: + licenses: + - Apache 2.0 + refName: metrics-server.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases + releasedAt: "2025-08-14T17:45:10Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-metrics-server@sha256:907424062bd661d214af87933d935b36b2a8d4a7d36d640c26a1dda0c0aeb271 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + daemonset: + additionalProperties: false + properties: + updateStrategy: + default: null + description: Update strategy of daemonsets + nullable: true + type: string + type: object + deployment: + additionalProperties: false + properties: + rollingUpdate: + additionalProperties: false + properties: + maxSurge: + default: null + description: The maxSurge of rollingUpdate. Applied only if RollingUpdate + is used as updateStrategy + nullable: true + type: integer + maxUnavailable: + default: null + description: The maxUnavailable of rollingUpdate. Applied only if + RollingUpdate is used as updateStrategy + nullable: true + type: integer + type: object + updateStrategy: + default: null + description: Update strategy of deployments + nullable: true + type: string + type: object + metricsServer: + additionalProperties: false + properties: + config: + additionalProperties: false + properties: + apiServiceInsecureTLS: + default: true + description: Whether to enable insecure TLS for metrics-server api + service + type: boolean + args: + default: [] + description: Arguments passed into metrics-server container + items: + default: "" + type: string + type: array + probe: + additionalProperties: false + properties: + failureThreshold: + default: 3 + description: Probe failureThreshold of metrics-server deployment + type: integer + periodSeconds: + default: 10 + description: Probe period of metrics-server deployment + type: integer + type: object + securePort: + default: 4443 + description: The HTTPS secure port used by metrics-server + type: integer + tolerations: + default: [] + description: Metrics-server deployment tolerations + nullable: true + updateStrategy: + default: RollingUpdate + description: The update strategy of the metrics-server deployment + type: string + type: object + createNamespace: + default: true + description: Whether to create namespace specified for metrics-server + type: boolean + image: + additionalProperties: false + properties: + name: + default: "" + description: The path of image + type: string + pullPolicy: + default: IfNotPresent + description: The pull policy of image + type: string + repository: + default: "" + description: The repository of metrics-server image + type: string + tag: + default: "" + description: The image tag + type: string + type: object + namespace: + default: null + description: The namespace value used by older templates, will be overwriten + if top level namespace is present, kept for backward compatibility + nullable: true + type: string + type: object + namespace: + default: kube-system + description: The namespace in which metrics-server is deployed + type: string + nodeSelector: + default: null + description: NodeSelector configuration applied to all the deployments + nullable: true + type: object + version: 0.8.0 From 653ba7fc13ad1e4eb7a53dc7d154235299d4975c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 19:55:36 +0200 Subject: [PATCH 581/601] Update PostgreSQL Operator metadata and add version 1.27.0 (#499) Co-authored-by: github-actions --- .../1.27.0.yml | 31 +++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.27.0.yml diff --git a/repo/packages/postgresql-operator.packages.kadras.io/1.27.0.yml b/repo/packages/postgresql-operator.packages.kadras.io/1.27.0.yml new file mode 100644 index 0000000..054ae8e --- /dev/null +++ b/repo/packages/postgresql-operator.packages.kadras.io/1.27.0.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: postgresql-operator.packages.kadras.io.1.27.0 +spec: + licenses: + - Apache 2.0 + refName: postgresql-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-postgresql-operator/releases + releasedAt: "2025-08-14T17:53:47Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-postgresql-operator@sha256:7ba0b9f3ab4414eecd25540f29d5176abd8290c2850c3c85115c78ea2d9b25b8 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 1.27.0 From 17f0b06fd3db02b77df93f16100e991d877b5e3a Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 20:02:18 +0200 Subject: [PATCH 582/601] Update RabbitMQ Operator metadata and add version 2.16.0 (#500) Co-authored-by: github-actions --- .../2.16.0.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.16.0.yml diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.16.0.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.16.0.yml new file mode 100644 index 0000000..25f9a79 --- /dev/null +++ b/repo/packages/rabbitmq-operator.packages.kadras.io/2.16.0.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: rabbitmq-operator.packages.kadras.io.2.16.0 +spec: + licenses: + - Apache 2.0 + refName: rabbitmq-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases + releasedAt: "2025-08-14T17:59:56Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:8b6e5549a49b6ec947878770d4fa317c1f90a12b655db7c838cf84df9e6f0b11 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Logging configuration. + properties: + level: + default: info + description: The Operator log level. Valid options are `info` and `debug`. + enum: + - info + - debug + type: string + type: object + type: object + version: 2.16.0 From 91bf5d6965a2a5cf8b42c92632b74607ee750b09 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 20:09:39 +0200 Subject: [PATCH 583/601] Update Dependency Track metadata and add version 4.13.3 (#501) Co-authored-by: github-actions --- .../4.13.3.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/dependency-track.packages.kadras.io/4.13.3.yml diff --git a/repo/packages/dependency-track.packages.kadras.io/4.13.3.yml b/repo/packages/dependency-track.packages.kadras.io/4.13.3.yml new file mode 100644 index 0000000..2635b0c --- /dev/null +++ b/repo/packages/dependency-track.packages.kadras.io/4.13.3.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dependency-track.packages.kadras.io.4.13.3 +spec: + licenses: + - Apache 2.0 + refName: dependency-track.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases + releasedAt: "2025-08-14T18:07:53Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dependency-track@sha256:7e997d3514792da849ef9ad483ee574f34de4f19115d0c4395f81690f55d8015 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + api_server: + additionalProperties: false + description: Settings for the API Server component. + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + format: + default: console + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `warn`, `error`.' + enum: + - trace + - debug + - info + - warn + - error + type: string + type: object + metrics: + additionalProperties: false + description: Settings for metrics. + properties: + enabled: + default: true + description: Whether to enable the generation of Prometheus metrics. + type: boolean + type: object + resources: + additionalProperties: false + description: Resource configuration for the API Server component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "4" + description: CPU limits configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory limits configuration for the API Server + component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: "0.5" + description: CPU requests configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory requests configuration for the API Server + component. + type: string + type: object + type: object + storage: + additionalProperties: false + description: Storage configuration for the API Server component. + properties: + class_name: + default: "" + description: Class name for the PersistenceVolume to create. + type: string + size: + default: 1Gi + description: Size of the PersistenceVolume to create. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Dependency Track. It must be a valid DNS name. + minLength: 4 + type: string + frontend: + additionalProperties: false + description: Settings for the Frontend component. + properties: + replicas: + default: 1 + description: The number of Frontend replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + resources: + additionalProperties: false + description: Resource configuration for the Frontend component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU limits configuration for the Frontend component. + type: string + memory: + default: 128Mi + description: Memory limits configuration for the Frontend component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 150m + description: CPU requests configuration for the Frontend component. + type: string + memory: + default: 64Mi + description: Memory requests configuration for the Frontend + component. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use for enabling TLS in + Dependency Track. + example: kadras-ca-issuer + minLength: 4 + type: string + x-example-description: Kadras private CA + postgresql: + additionalProperties: false + description: Settings for the PostgreSQL database. + properties: + instances: + default: 1 + description: Number of instances for the PostgreSQL database cluster. + Define at least 3 for production scenarios. + minimum: 1 + type: integer + storage: + additionalProperties: false + description: Storage configuration for each PostgreSQL instance. + properties: + size: + default: 1Gi + description: Size of the PersistenceVolume to create for each PostgreSQL + instance. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + system_requirement_check: + default: true + description: Whether Dependency Track will check for memory and CPU requirements + at startup time. + type: boolean + type: object + version: 4.13.3 From 5981ae273963377e14427955c7b23aad567a1785 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 20:22:55 +0200 Subject: [PATCH 584/601] Update Tempo Operator metadata and add version 0.17.1 (#502) Co-authored-by: github-actions --- .../0.17.1.yml | 293 ++++++++++++++++++ 1 file changed, 293 insertions(+) create mode 100644 repo/packages/tempo-operator.packages.kadras.io/0.17.1.yml diff --git a/repo/packages/tempo-operator.packages.kadras.io/0.17.1.yml b/repo/packages/tempo-operator.packages.kadras.io/0.17.1.yml new file mode 100644 index 0000000..3d610f9 --- /dev/null +++ b/repo/packages/tempo-operator.packages.kadras.io/0.17.1.yml @@ -0,0 +1,293 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: tempo-operator.packages.kadras.io.0.17.1 +spec: + licenses: + - Apache 2.0 + refName: tempo-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-tempo-operator/releases + releasedAt: "2025-08-14T18:19:45Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-tempo-operator@sha256:3af49f0336f722e4e8cb9adbb0b48e0c821178e1fbf04cde0ce87621ccf62f57 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + configMapData: + default: {} + description: The YAML contents of the `tempo-operator-manager-config` ConfigMap. + See https://github.com/grafana/tempo-operator/blob/main/docs/operator/config.yaml + for more information. + nullable: true + controller: + additionalProperties: false + description: Settings for the Tempo Operator controller. + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order to + enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tempo: + additionalProperties: false + description: Settings for Tempo. + properties: + extraConfig: + default: {} + description: Additional configuration for Tempo that will be merged + with the one generated by the Operator. It has higher precedence than + the Operator. + nullable: true + jaegerui: + additionalProperties: false + description: Settings for Jaeger UI. + properties: + enabled: + default: false + description: Whether to enable the Jaeger UI to visualize traces. + type: boolean + type: object + namespace: + default: default + description: Namespace where to provision a Tempo installation, stack + or monolithic. + type: string + observability: + additionalProperties: false + description: Settings for observability. + properties: + grafana: + additionalProperties: false + properties: + createDatasource: + default: false + description: Whether a Datasource managed by Grafana Operator + should be created for Tempo. + type: boolean + type: object + metrics: + additionalProperties: false + properties: + createPrometheusRules: + default: false + description: Whether PrometheusRules for alerts managed by Prometheus + Operator should be created for Tempo. + type: boolean + createServiceMonitors: + default: false + description: Whether ServiceMonitors managed by Prometheus Operator + should be created for Tempo. + type: boolean + type: object + tracing: + additionalProperties: false + properties: + otlpHttpEndpoint: + default: "" + description: The OTLP HTTP endpoint where to send traces. Only + for TempoStack. + type: string + samplingFraction: + default: "" + description: Sampling frequence for Tempo traces. Only for TempoStack. + type: string + type: object + type: object + resources: + additionalProperties: false + description: Settings for total resources. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 750m + type: string + memory: + default: 2Gi + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 500m + type: string + memory: + default: 1Gi + type: string + type: object + type: object + storage: + additionalProperties: false + description: Settings for storage. + properties: + backend: + additionalProperties: false + description: Tracing backend object storage configuration. + properties: + secret: + additionalProperties: false + properties: + name: + default: "" + description: Name of the Secret containing the credentials + to access the configured object storage. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + to access the configured object storage. + type: string + type: object + type: + default: memory + description: 'Type of object storage that should be used. Valid + options: `azure`, `gcs`, `s3`, `memory` (only for TempoMonolithic).' + enum: + - azure + - gcs + - s3 + - memory + type: string + type: object + size: + default: 10Gi + description: The size of the storage used by Tempo. + type: string + type: object + tempoMonolithic: + additionalProperties: false + description: Settings for the built-in TempoMonolithic instance. + properties: + enabled: + default: false + description: Whether to deploy the built-in TempoMonolithic instance. + type: boolean + type: object + tempoStack: + additionalProperties: false + description: Settings for the built-in TempoStack instance. + properties: + compactor: + additionalProperties: false + description: Settings for the Tempo Compactor. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Compactor + component. In order to enable high availability, it should + be greater than 1. + type: integer + type: object + distributor: + additionalProperties: false + description: Settings for the Tempo Distributor. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Distributor + component. In order to enable high availability, it should + be greater than 1. + type: integer + type: object + enabled: + default: false + description: Whether to deploy the built-in TempoStack instance. + type: boolean + gateway: + additionalProperties: false + description: Settings for the Tempo Gateway. + properties: + enabled: + default: false + description: Whether to enable the Tempo Gateway. + type: boolean + ingress: + additionalProperties: false + description: Ingress for the Tempo Gateway. + properties: + annotations: + additionalProperties: false + description: The annotations for the Ingress object. + properties: {} + type: object + host: + default: "" + description: The hostname of the Ingress object. + type: string + ingressClassName: + default: contour + description: The class of the Ingress Controller to use + for the Tempo Gateway. + type: string + type: + default: null + description: 'Type of Ingress for the Tempo Gateway. Valid + options: `ingress`, `route`.' + enum: + - ingress + - route + nullable: true + type: string + type: object + type: object + ingester: + additionalProperties: false + description: Settings for the Tempo Ingester. + properties: + podSecurityContext: + additionalProperties: false + description: PodSecurityContext for the Ingester component. + properties: {} + type: object + replicas: + default: 1 + description: Number of replicas to deploy for the Ingester component. + In order to enable high availability, it should be greater + than 1. + type: integer + type: object + querier: + additionalProperties: false + description: Settings for the Tempo Querier. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Querier component. + In order to enable high availability, it should be greater + than 1. + type: integer + type: object + queryFrontend: + additionalProperties: false + description: Settings for the Tempo Query Frontend. + properties: + replicas: + default: 1 + description: Number of replicas to deploy for the Query Frontend + component. In order to enable high availability, it should + be greater than 1. + type: integer + type: object + type: object + type: object + type: object + version: 0.17.1 From 58a1ad113baca98d97a8e98ea38ba0bc319a455f Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 21:59:16 +0200 Subject: [PATCH 585/601] Update Knative Serving metadata and add version 1.19.0 (#503) Co-authored-by: github-actions --- .../1.19.0.yml | 310 ++++++++++++++++++ 1 file changed, 310 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.19.0.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.19.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.19.0.yml new file mode 100644 index 0000000..7cfbbb5 --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.19.0.yml @@ -0,0 +1,310 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.19.0 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2025-08-14T19:57:25Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:d722be4e836dcd0eca222196d795e92a3f51e6c3b0357011e7ce2ece425f424a + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + enum: + - http + - https + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + enum: + - Enabled + - Redirected + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + minimum: 0 + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + enum: + - zipkin + - none + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + enum: + - "true" + - "false" + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + maxLength: 3 + minLength: 1 + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + minLength: 4 + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + minLength: 1 + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + minLength: 1 + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + min_kubernetes_version: + default: "" + description: The minimum Kubernetes version that this package will accept + as valid. If not set, Knative Serving will accept the last 3 minor versions + of Kubernetes. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 20 + minimum: 1 + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 5 + minimum: 1 + type: integer + type: object + type: object + type: object + version: 1.19.0 From 95609c99ea852650e52d6918cc5359c105f10af5 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 22:05:50 +0200 Subject: [PATCH 586/601] Update Crossplane metadata and add version 2.0.2 (#504) Co-authored-by: github-actions --- .../crossplane.packages.kadras.io/2.0.2.yml | 487 ++++++++++++++++++ 1 file changed, 487 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/2.0.2.yml diff --git a/repo/packages/crossplane.packages.kadras.io/2.0.2.yml b/repo/packages/crossplane.packages.kadras.io/2.0.2.yml new file mode 100644 index 0000000..2d66683 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/2.0.2.yml @@ -0,0 +1,487 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.2.0.2 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2025-08-14T20:03:47Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:764e5de98ade05c75454843952d324a9a7aa66c5e27be8930d9e29d144c36bf7 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + dnsPolicy: + default: "" + description: Specify the `dnsPolicy` to be used by the Crossplane pod. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment + application container. Replaces any `.` in a variable name with `_`. For + example, `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsCrossplaneInit: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment + init container. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + function: + properties: + packages: + default: [] + description: A list of Function packages to install + items: {} + type: array + type: object + functionCache: + properties: + medium: + default: "" + description: Set to `Memory` to hold the function cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the function + cache. Disables the default function cache `emptyDir` Volume. + type: string + sizeLimit: + default: 512Mi + description: The size limit for the function cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' + type: boolean + image: + properties: + ignoreTag: + default: false + description: Do not use the {{ .image.tag }} value to compute the image + uri. + type: boolean + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.crossplane.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: [] + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + items: {} + type: array + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + port: + default: "" + description: The port the metrics server listens on. + type: string + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + defaultActivations: + default: [] + description: Define entries for the default managed resource activation + policy. If defined, a default MRAP will contain these activations. + items: + default: '*' + type: string + type: array + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + revisionHistoryLimit: + description: The number of RBAC Manager ReplicaSets to retain. + oneOf: + - default: null + nullable: true + type: integer + - default: null + nullable: true + type: number + - default: null + nullable: true + type: boolean + - default: null + nullable: true + type: string + - default: null + nullable: true + type: object + - default: null + items: {} + nullable: true + type: array + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the RBAC Manager pod + deployment. + items: {} + type: array + type: object + readiness: + properties: + port: + default: "" + description: The port the readyz server listens on. + type: string + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 500m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 1024Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + revisionHistoryLimit: + description: The number of Crossplane ReplicaSets to retain. + oneOf: + - default: null + nullable: true + type: integer + - default: null + nullable: true + type: number + - default: null + nullable: true + type: boolean + - default: null + nullable: true + type: string + - default: null + nullable: true + type: object + - default: null + items: {} + nullable: true + type: array + runtimeClassName: + default: "" + description: The runtimeClassName name to apply to the Crossplane and RBAC + Manager pods. + type: string + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + service: + properties: + customAnnotations: + default: {} + description: Configure annotations on the service object. Only enabled + when webhooks.enabled = true + type: object + type: object + serviceAccount: + properties: + create: + default: true + description: Specifies whether Crossplane ServiceAccount should be created + type: boolean + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + name: + default: "" + description: Provide the name of an already created Crossplane ServiceAccount. + Required when `serviceAccount.create` is `false` + type: string + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + port: + default: "" + description: The port the webhook server listens on. + type: string + type: object + type: object + version: 2.0.2 From e71b9fa7463887dccff9ce6986b4dac9101e95f4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 22:32:20 +0200 Subject: [PATCH 587/601] Update Kadras Engineering Platform metadata and add version 0.26.0 (#505) Co-authored-by: github-actions --- .../0.26.0.yml | 255 ++++++++++++++++++ 1 file changed, 255 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.26.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.26.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.26.0.yml new file mode 100644 index 0000000..5ae1ee7 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.26.0.yml @@ -0,0 +1,255 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.26.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2025-08-14T20:30:27Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:10ef8428a059b359334656a85aa593192686a6422f44d90fcfcf9d850f27f254 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci: + additionalProperties: false + description: Settings for accessing the OCI registry that the platform + will use. + properties: + pull_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to pull images from the OCI registry. + properties: + name: + default: "" + description: The name of the Secret holding the credentials + to pull images from the OCI registry. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to pull images from the OCI registry. + type: string + type: object + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `run`.' + enum: + - standalone + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.26.0 From f4a8a5fc4904fca53e348d5a29c4a3c379f725e6 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 22:34:15 +0200 Subject: [PATCH 588/601] chore: Remove deprecated packages --- README.md | 1 - .../1.17.2.yml | 231 --------- .../crossplane.packages.kadras.io/1.20.0.yml | 468 ------------------ .../dapr.packages.kadras.io/1.15.5.yml | 208 -------- .../dapr.packages.kadras.io/metadata.yml | 20 - .../4.13.2.yml | 211 -------- .../0.25.0.yml | 276 ----------- .../flux.packages.kadras.io/2.6.0.yml | 107 ---- .../1.18.0.yml | 304 ------------ .../kyverno.packages.kadras.io/1.14.1.yml | 182 ------- .../0.7.2.yml | 148 ------ .../1.26.0.yml | 31 -- .../2.13.0.yml | 44 -- .../0.15.3.yml | 293 ----------- .../0.3.0.yml | 114 ----- 15 files changed, 2638 deletions(-) delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.17.2.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.20.0.yml delete mode 100644 repo/packages/dapr.packages.kadras.io/1.15.5.yml delete mode 100644 repo/packages/dapr.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/dependency-track.packages.kadras.io/4.13.2.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.25.0.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.6.0.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.18.0.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.14.1.yml delete mode 100644 repo/packages/metrics-server.packages.kadras.io/0.7.2.yml delete mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.26.0.yml delete mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.13.0.yml delete mode 100644 repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml delete mode 100644 repo/packages/workspace-provisioner.packages.kadras.io/0.3.0.yml diff --git a/README.md b/README.md index 613291c..9cd220b 100644 --- a/README.md +++ b/README.md @@ -16,7 +16,6 @@ This repository contains the following Carvel packages. | [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates. | | [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | | [crossplane](https://github.com/kadras-io/package-for-crossplane) | A Kubernetes extension that transforms your Kubernetes cluster into a universal control plane. | -| [dapr](https://github.com/kadras-io/package-for-dapr) | A Kubernetes extension that provides integrated APIs for communication, state, and workflow. | | [dependency-track](https://github.com/kadras-io/package-for-dependency-track) | OWASP Dependency Track is a continuous SBOM Analysis Platform for managing software supply chain security risks. | | [developer-portal](https://github.com/kadras-io/package-for-developer-portal) | Kadras Developer Portal, based on Backstage. It supports application developers with paved paths to production on Kubernetes. | | [engineering-platform](https://github.com/kadras-io/engineering-platform) | A curated set of Carvel packages to build an engineering platform supporting application developers with paved paths to production on Kubernetes. | diff --git a/repo/packages/cert-manager.packages.kadras.io/1.17.2.yml b/repo/packages/cert-manager.packages.kadras.io/1.17.2.yml deleted file mode 100644 index 55aff47..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.17.2.yml +++ /dev/null @@ -1,231 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.17.2 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2025-05-30T19:24:22Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:95a278e351c04d81ea080013372a10e7e17bc99d739527ac27bcedf286710b33 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cainjector: - additionalProperties: false - description: Settings for the cainjector controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - dns01: - additionalProperties: false - description: Configures the behaviour of the ACME DNS01 challenge solver. - properties: - recursive_nameservers: - default: [] - description: Each nameserver can be either the IP address and port - of a standard recursive DNS server, or the endpoint to an RFC - 8484 DNS over HTTPS endpoint. - items: - default: "" - type: string - type: array - recursive_nameservers_only: - default: false - description: When true, cert-manager will only ever query the configured - DNS resolvers to perform the ACME DNS01 self check. This is useful - in DNS constrained environments, where access to authoritative - nameservers is restricted. Enabling this option could cause the - DNS01 self check to take longer due to caching performed by the - recursive nameservers. - type: boolean - type: object - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility.' - minLength: 1 - type: string - type: object - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - challenge: - additionalProperties: false - properties: - dns_provider: - default: digital_ocean - description: 'The DNS provider to use for the ACME dns01 challenge. - Valid options: `cloudflare`, `digital_ocean`.' - enum: - - cloudflare - - digital_ocean - type: string - secret: - additionalProperties: false - properties: - key: - default: "" - description: The key within the Secret that contains the credentials - needed for the dns01 challenge. - type: string - name: - default: "" - description: Name of the Secret containing the credentials needed - for the dns01 challenge. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - needed for the dns01 challenge. - type: string - type: object - type: - default: http01 - description: 'The type of challenge used by the ACME CA Server. - Valid options: `http01`, `dns01`.' - enum: - - http01 - - dns01 - type: string - type: object - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - production: - default: false - description: Whether to use Let's Encrypt staging (recommended for non-production - environments) or production. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - minLength: 1 - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_pki: - additionalProperties: false - description: Settings for the built-in, private PKI - properties: - include: - default: true - description: Whether to include a ClusterIssuer for a private PKI. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - at least 3 replicas are recommended. - minimum: 1 - type: integer - secure_port: - default: 6443 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility.' - type: integer - type: object - type: object - version: 1.17.2 diff --git a/repo/packages/crossplane.packages.kadras.io/1.20.0.yml b/repo/packages/crossplane.packages.kadras.io/1.20.0.yml deleted file mode 100644 index 6c0428c..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.20.0.yml +++ /dev/null @@ -1,468 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.20.0 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2025-05-30T20:10:40Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:e50bcaa46d5bbe691ed6cb9cefe2940113840334b0079951634e4b4541be05cf - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - functionCache: - properties: - medium: - default: "" - description: Set to `Memory` to hold the function cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the function - cache. Disables the default function cache `emptyDir` Volume. - type: string - sizeLimit: - default: 512Mi - description: The size limit for the function cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.crossplane.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - port: - default: "" - description: The port the metrics server listens on. - type: string - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - revisionHistoryLimit: - description: The number of RBAC Manager ReplicaSets to retain. - oneOf: - - default: null - nullable: true - type: integer - - default: null - nullable: true - type: number - - default: null - nullable: true - type: boolean - - default: null - nullable: true - type: string - - default: null - nullable: true - type: object - - default: null - items: {} - nullable: true - type: array - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - readiness: - properties: - port: - default: "" - description: The port the readyz server listens on. - type: string - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - revisionHistoryLimit: - description: The number of Crossplane ReplicaSets to retain. - oneOf: - - default: null - nullable: true - type: integer - - default: null - nullable: true - type: number - - default: null - nullable: true - type: boolean - - default: null - nullable: true - type: string - - default: null - nullable: true - type: object - - default: null - items: {} - nullable: true - type: array - runtimeClassName: - default: "" - description: The runtimeClassName name to apply to the Crossplane and RBAC - Manager pods. - type: string - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - create: - default: true - description: Specifies whether Crossplane ServiceAccount should be created - type: boolean - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - name: - default: "" - description: Provide the name of an already created Crossplane ServiceAccount. - Required when `serviceAccount.create` is `false` - type: string - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - port: - default: "" - description: The port the webhook server listens on. - type: string - type: object - type: object - version: 1.20.0 diff --git a/repo/packages/dapr.packages.kadras.io/1.15.5.yml b/repo/packages/dapr.packages.kadras.io/1.15.5.yml deleted file mode 100644 index bfa768f..0000000 --- a/repo/packages/dapr.packages.kadras.io/1.15.5.yml +++ /dev/null @@ -1,208 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dapr.packages.kadras.io.1.15.5 -spec: - refName: dapr.packages.kadras.io - releasedAt: "2025-05-30T20:15:30Z" - template: - spec: - deploy: - - kapp: - intoNs: dapr-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dapr@sha256:2a01f0fe18ba0eb064b1f671ee0ef8b8183d70875386219abc12fc664404b9a3 - template: - - helmTemplate: - name: dapr - namespace: dapr-system - path: config/helm/upstream/dapr - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - global: - properties: - actors: - properties: - enabled: - default: true - description: Enables actor functionality in the cluster - type: boolean - serviceName: - default: placement - description: Name of the service that provides actor placement services - type: string - type: object - argoRolloutServiceReconciler: - description: 'the issuerFilenames dictionary, if setup, have to contain - 3 keys: ca,cert,key issuerFilenames: ca: "ca.crt" cert: "tls.crt" key: - "tls.key"' - properties: - enabled: - default: false - type: boolean - type: object - daprControlPlaneOs: - default: linux - type: string - dnsSuffix: - default: .cluster.local - type: string - extraVolumeMounts: - default: {} - description: 'sentry: placement: operator: injector: scheduler:' - type: object - extraVolumes: - default: {} - description: and extraVolumeMounts are used to mount additional volumes - to the Dapr control plane pods. Useful for using alternative authentication - credentials to sentry. - type: object - ha: - properties: - disruption: - properties: - maximumUnavailable: - default: 25% - type: string - minimumAvailable: - default: "" - type: string - type: object - enabled: - default: false - type: boolean - replicaCount: - default: 3 - type: integer - type: object - imagePullPolicy: - default: IfNotPresent - type: string - imagePullSecrets: - default: "" - description: 'To help compatibility with other charts which use global.imagePullSecrets. - Allow either a string with single imagepullsecret or an array of {name: - pullSecret} maps (k8s-style) or an array of strings (more common helm-style). - global: imagePullSecrets: "pullSecret" or global: imagePullSecrets: - - name: pullSecret1 - name: pullSecret2 or global: imagePullSecrets: - - pullSecret1 - pullSecret2' - type: string - issuerFilenames: - default: {} - type: object - k8sLabels: - properties: - app.kubernetes.io/component: - default: '{{ .Values.component }}' - type: string - app.kubernetes.io/managed-by: - default: '{{ .Release.Service }}' - type: string - app.kubernetes.io/name: - default: '{{ .Release.Name }}' - type: string - app.kubernetes.io/part-of: - default: dapr - type: string - app.kubernetes.io/version: - default: '{{ .Values.global.tag }}' - type: string - type: object - labels: - default: {} - type: object - logAsJson: - default: false - type: boolean - mtls: - properties: - allowedClockSkew: - default: 15m - type: string - controlPlaneTrustDomain: - default: cluster.local - type: string - enabled: - default: true - type: boolean - mountSentryVolume: - default: true - description: If set to true, a bound service account token will - be mounted and used to authenticate to Sentry. - type: boolean - workloadCertTTL: - default: 24h - type: string - type: object - nodeSelector: - default: {} - type: object - operator: - properties: - watchdogCanPatchPodLabels: - default: false - type: boolean - type: object - priorityClassName: - default: "" - type: string - prometheus: - properties: - enabled: - default: true - type: boolean - port: - default: 9090 - type: integer - type: object - rbac: - properties: - namespaced: - default: false - type: boolean - type: object - registry: - default: ghcr.io/dapr - type: string - reminders: - properties: - serviceName: - default: "" - description: Name of the service that provides reminders If empty, - uses the built-in reminders capabilities in Dapr sidecars - type: string - type: object - scheduler: - properties: - enabled: - default: true - description: Enables scheduler functionality in the cluster - type: boolean - type: object - seccompProfile: - default: "" - type: string - tag: - default: 1.15.5 - type: string - tolerations: - default: [] - items: {} - type: array - type: object - type: object - version: 1.15.5 diff --git a/repo/packages/dapr.packages.kadras.io/metadata.yml b/repo/packages/dapr.packages.kadras.io/metadata.yml deleted file mode 100644 index 6f2379a..0000000 --- a/repo/packages/dapr.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,20 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: dapr.packages.kadras.io -spec: - categories: - - apis - - microservices - displayName: dapr - iconSVGBase64: PHN2ZyBpZD0iTGF5ZXJfMSIgZGF0YS1uYW1lPSJMYXllciAxIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHZpZXdCb3g9IjAgMCA0ODAgMjU1LjYwODc5Ij48ZGVmcz48c3R5bGU+LmNscy0xe2ZpbGw6IzBkMjE5Mjt9LmNscy0ye2ZpbGw6I2ZmZjtpc29sYXRpb246aXNvbGF0ZTtvcGFjaXR5OjAuMDg7fTwvc3R5bGU+PC9kZWZzPjxyZWN0IGlkPSJSZWN0YW5nbGUtNCIgY2xhc3M9ImNscy0xIiB4PSI5OS43ODA0MiIgeT0iMTEuMTg5MzgiIHdpZHRoPSIyODIuMTUxNjgiIGhlaWdodD0iMTk4LjU3Mjc0IiByeD0iNS40OTM0NyIvPjxyZWN0IGlkPSJSZWN0YW5nbGUtNC0yIiBkYXRhLW5hbWU9IlJlY3RhbmdsZS00IiBjbGFzcz0iY2xzLTIiIHg9Ijk5Ljc4MDQyIiB5PSIxMS4xODkzOCIgd2lkdGg9IjEwNC4zNjkzNiIgaGVpZ2h0PSIxOTguNTcyNzQiLz48cmVjdCBpZD0iUmVjdGFuZ2xlLTMiIGNsYXNzPSJjbHMtMSIgeD0iMTAuNjc5ODciIHk9IjE5Ni45NTA5MyIgd2lkdGg9IjQ1Ni42NDAyNyIgaGVpZ2h0PSI0Ny42NTk1MiIgcng9IjEwLjIxODI3Ii8+PHJlY3QgaWQ9IlJlY3RhbmdsZS00LTMiIGRhdGEtbmFtZT0iUmVjdGFuZ2xlLTQiIGNsYXNzPSJjbHMtMiIgeD0iMTAuNjc5ODciIHk9IjE5Ni45NTA5MyIgd2lkdGg9IjE0MS4yODUyMSIgaGVpZ2h0PSI1OC42NTc4NiIvPjwvc3ZnPg== - longDescription: Dapr provides integrated APIs for communication, state, and workflow. - Dapr leverages industry best practices for security, resiliency, and observability, - so you can focus on your code. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: APIs for Building Secure and Reliable Microservices. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/package-for-dapr - for community support. diff --git a/repo/packages/dependency-track.packages.kadras.io/4.13.2.yml b/repo/packages/dependency-track.packages.kadras.io/4.13.2.yml deleted file mode 100644 index 324e9f3..0000000 --- a/repo/packages/dependency-track.packages.kadras.io/4.13.2.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dependency-track.packages.kadras.io.4.13.2 -spec: - licenses: - - Apache 2.0 - refName: dependency-track.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases - releasedAt: "2025-05-30T20:13:17Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dependency-track@sha256:82ef90789ee3eec8ed5fa36b149175c8f782d3774487ab905c4c0d35c07ce397 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - api_server: - additionalProperties: false - description: Settings for the API Server component. - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - format: - default: console - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `warn`, `error`.' - enum: - - trace - - debug - - info - - warn - - error - type: string - type: object - metrics: - additionalProperties: false - description: Settings for metrics. - properties: - enabled: - default: true - description: Whether to enable the generation of Prometheus metrics. - type: boolean - type: object - resources: - additionalProperties: false - description: Resource configuration for the API Server component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "4" - description: CPU limits configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory limits configuration for the API Server - component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: "0.5" - description: CPU requests configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory requests configuration for the API Server - component. - type: string - type: object - type: object - storage: - additionalProperties: false - description: Storage configuration for the API Server component. - properties: - class_name: - default: "" - description: Class name for the PersistenceVolume to create. - type: string - size: - default: 1Gi - description: Size of the PersistenceVolume to create. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Dependency Track. It must be a valid DNS name. - minLength: 4 - type: string - frontend: - additionalProperties: false - description: Settings for the Frontend component. - properties: - replicas: - default: 1 - description: The number of Frontend replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - resources: - additionalProperties: false - description: Resource configuration for the Frontend component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU limits configuration for the Frontend component. - type: string - memory: - default: 128Mi - description: Memory limits configuration for the Frontend component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 150m - description: CPU requests configuration for the Frontend component. - type: string - memory: - default: 64Mi - description: Memory requests configuration for the Frontend - component. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use for enabling TLS in - Dependency Track. - example: kadras-ca-issuer - minLength: 4 - type: string - x-example-description: Kadras private CA - postgresql: - additionalProperties: false - description: Settings for the PostgreSQL database. - properties: - instances: - default: 1 - description: Number of instances for the PostgreSQL database cluster. - Define at least 3 for production scenarios. - minimum: 1 - type: integer - storage: - additionalProperties: false - description: Storage configuration for each PostgreSQL instance. - properties: - size: - default: 1Gi - description: Size of the PersistenceVolume to create for each PostgreSQL - instance. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - system_requirement_check: - default: true - description: Whether Dependency Track will check for memory and CPU requirements - at startup time. - type: boolean - type: object - version: 4.13.2 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.25.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.25.0.yml deleted file mode 100644 index a973378..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.25.0.yml +++ /dev/null @@ -1,276 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.25.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases - releasedAt: "2025-06-01T13:02:19Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:31f410957c88b52c62d0a56b09f2f4a37994c5e2fc589c58821d75bb520bc639 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - crossplane: - default: {} - description: Configuration for the Crossplane package. - nullable: true - dapr: - default: {} - description: Configuration for the Dapr package. - nullable: true - dependency_track: - default: {} - description: Configuration for the Dependency Track package. - nullable: true - developer_portal: - default: {} - description: Configuration for the Developer Portal package. - nullable: true - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - gitops_configurer: - default: {} - description: Configuration for the GitOps Configurer package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - additional_packages: - default: [] - description: A list of packages to include in the installation. - items: - default: "" - type: string - type: array - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - enum: - - private - - letsencrypt_staging - - letsencrypt - - custom - type: string - type: object - type: object - namespace: - default: kadras-system - description: The namespace where to install the platform. - type: string - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the platform will use. - properties: - repository: - default: "" - description: The repository in the OCI Registry where the platform - will publish OCI images. - example: my-org - type: string - x-example-description: Repository on GitHub Container Registry - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the OCI registry. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the OCI registry. The credentials should provide - read-only access to the OCI registry except when installing - the platform with one of these profiles: `standalone`, `dev`, - `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - server: - default: "" - description: The server of the OCI Registry where the platform will - publish OCI images. - example: ghcr.io - type: string - x-example-description: GitHub Container Registry - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `build`, `run`.' - enum: - - standalone - - build - - run - type: string - type: object - postgresql_operator: - default: {} - description: Configuration for the PostgreSQL Operator package. - nullable: true - rabbitmq_operator: - default: {} - description: Configuration for the RabbitMQ Operator package. - nullable: true - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - service_binding: - default: {} - description: Configuration for the Service Binding package. - nullable: true - tempo_operator: - default: {} - description: Configuration for the Tempo Operator package. - nullable: true - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.25.0 diff --git a/repo/packages/flux.packages.kadras.io/2.6.0.yml b/repo/packages/flux.packages.kadras.io/2.6.0.yml deleted file mode 100644 index 539db0e..0000000 --- a/repo/packages/flux.packages.kadras.io/2.6.0.yml +++ /dev/null @@ -1,107 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: flux.packages.kadras.io.2.6.0 -spec: - licenses: - - Apache 2.0 - refName: flux.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-flux/releases - releasedAt: "2025-05-30T19:49:58Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-flux@sha256:a34b67ff57b00d97e426a5935f93d58e26cbca04a602e365d43149e70d10e8ec - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: json - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `error`.' - enum: - - trace - - debug - - info - - error - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Flux optional components to deploy. - properties: - helm_controller: - default: false - description: Whether to deploy the Helm Controller. - type: boolean - image_automation_controller: - default: false - description: Whether to deploy the Image Automation Controller. - type: boolean - image_reflector_controller: - default: false - description: Whether to deploy the Image Reflector Controller. - type: boolean - kustomize_controller: - default: true - description: Whether to deploy the Kustomize Controller. - type: boolean - notification_controller: - default: false - description: Whether to deploy the Notification Controller. - type: boolean - type: object - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - type: object - version: 2.6.0 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.18.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.18.0.yml deleted file mode 100644 index 5949496..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.18.0.yml +++ /dev/null @@ -1,304 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.18.0 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2025-05-30T19:38:47Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:e2b14d7b0b9e44591f899914491992cb3c9b749fac63795dfffae18a1952dc8d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - enum: - - http - - https - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - enum: - - Enabled - - Redirected - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - minimum: 0 - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - enum: - - zipkin - - none - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - enum: - - "true" - - "false" - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - maxLength: 3 - minLength: 1 - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - minLength: 4 - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - minLength: 1 - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - minLength: 1 - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 20 - minimum: 1 - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 5 - minimum: 1 - type: integer - type: object - type: object - type: object - version: 1.18.0 diff --git a/repo/packages/kyverno.packages.kadras.io/1.14.1.yml b/repo/packages/kyverno.packages.kadras.io/1.14.1.yml deleted file mode 100644 index dd23be7..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.14.1.yml +++ /dev/null @@ -1,182 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.14.1 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2025-05-30T18:47:37Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:1bfaf0b5211db5c1fbd199abf4312ea58a38e096d58b10ec55ffc98e84b602db - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - minimum: 1 - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - enum: - - text - - json - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - maximum: 6 - minimum: 1 - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - enum: - - grpc - - prometheus - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.14.1 diff --git a/repo/packages/metrics-server.packages.kadras.io/0.7.2.yml b/repo/packages/metrics-server.packages.kadras.io/0.7.2.yml deleted file mode 100644 index c2b500a..0000000 --- a/repo/packages/metrics-server.packages.kadras.io/0.7.2.yml +++ /dev/null @@ -1,148 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: metrics-server.packages.kadras.io.0.7.2 -spec: - licenses: - - Apache 2.0 - refName: metrics-server.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-metrics-server/releases - releasedAt: "2024-09-01T11:51:51Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-metrics-server@sha256:ee9771dfe5dd1f1aa725eccddca870cc707c523fe0e60d11533d2412be616381 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - daemonset: - additionalProperties: false - properties: - updateStrategy: - default: null - description: Update strategy of daemonsets - nullable: true - type: string - type: object - deployment: - additionalProperties: false - properties: - rollingUpdate: - additionalProperties: false - properties: - maxSurge: - default: null - description: The maxSurge of rollingUpdate. Applied only if RollingUpdate - is used as updateStrategy - nullable: true - type: integer - maxUnavailable: - default: null - description: The maxUnavailable of rollingUpdate. Applied only if - RollingUpdate is used as updateStrategy - nullable: true - type: integer - type: object - updateStrategy: - default: null - description: Update strategy of deployments - nullable: true - type: string - type: object - metricsServer: - additionalProperties: false - properties: - config: - additionalProperties: false - properties: - apiServiceInsecureTLS: - default: true - description: Whether to enable insecure TLS for metrics-server api - service - type: boolean - args: - default: [] - description: Arguments passed into metrics-server container - items: - default: "" - type: string - type: array - probe: - additionalProperties: false - properties: - failureThreshold: - default: 3 - description: Probe failureThreshold of metrics-server deployment - type: integer - periodSeconds: - default: 10 - description: Probe period of metrics-server deployment - type: integer - type: object - securePort: - default: 4443 - description: The HTTPS secure port used by metrics-server - type: integer - tolerations: - default: [] - description: Metrics-server deployment tolerations - nullable: true - updateStrategy: - default: RollingUpdate - description: The update strategy of the metrics-server deployment - type: string - type: object - createNamespace: - default: true - description: Whether to create namespace specified for metrics-server - type: boolean - image: - additionalProperties: false - properties: - name: - default: "" - description: The path of image - type: string - pullPolicy: - default: IfNotPresent - description: The pull policy of image - type: string - repository: - default: "" - description: The repository of metrics-server image - type: string - tag: - default: "" - description: The image tag - type: string - type: object - namespace: - default: null - description: The namespace value used by older templates, will be overwriten - if top level namespace is present, kept for backward compatibility - nullable: true - type: string - type: object - namespace: - default: kube-system - description: The namespace in which metrics-server is deployed - type: string - nodeSelector: - default: null - description: NodeSelector configuration applied to all the deployments - nullable: true - type: object - version: 0.7.2 diff --git a/repo/packages/postgresql-operator.packages.kadras.io/1.26.0.yml b/repo/packages/postgresql-operator.packages.kadras.io/1.26.0.yml deleted file mode 100644 index cc2b422..0000000 --- a/repo/packages/postgresql-operator.packages.kadras.io/1.26.0.yml +++ /dev/null @@ -1,31 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: postgresql-operator.packages.kadras.io.1.26.0 -spec: - licenses: - - Apache 2.0 - refName: postgresql-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-postgresql-operator/releases - releasedAt: "2025-05-30T19:55:50Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-postgresql-operator@sha256:ed88afe9d2728ff37959c5c7ee4d26b40b4fc5d33258243fb85eed4f52719800 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - default: null - nullable: true - version: 1.26.0 diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.13.0.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.13.0.yml deleted file mode 100644 index f1066d6..0000000 --- a/repo/packages/rabbitmq-operator.packages.kadras.io/2.13.0.yml +++ /dev/null @@ -1,44 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: rabbitmq-operator.packages.kadras.io.2.13.0 -spec: - licenses: - - Apache 2.0 - refName: rabbitmq-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases - releasedAt: "2025-05-30T19:52:33Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:5055748f058a71d03389a18b7f0a5c3c2dc00d5797c6aaa24b2fb6680eb8ab0f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Logging configuration. - properties: - level: - default: info - description: The Operator log level. Valid options are `info` and `debug`. - enum: - - info - - debug - type: string - type: object - type: object - version: 2.13.0 diff --git a/repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml b/repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml deleted file mode 100644 index 8b5ac0d..0000000 --- a/repo/packages/tempo-operator.packages.kadras.io/0.15.3.yml +++ /dev/null @@ -1,293 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: tempo-operator.packages.kadras.io.0.15.3 -spec: - licenses: - - Apache 2.0 - refName: tempo-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-tempo-operator/releases - releasedAt: "2025-03-30T09:56:13Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-tempo-operator@sha256:3daff7e08c4d5f8deaa7c1b854b88ce764dc5628c92d1fbde4bb95548cd0754f - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - configMapData: - default: {} - description: The YAML contents of the `tempo-operator-manager-config` ConfigMap. - See https://github.com/grafana/tempo-operator/blob/main/docs/operator/config.yaml - for more information. - nullable: true - controller: - additionalProperties: false - description: Settings for the Tempo Operator controller. - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order to - enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tempo: - additionalProperties: false - description: Settings for Tempo. - properties: - extraConfig: - default: {} - description: Additional configuration for Tempo that will be merged - with the one generated by the Operator. It has higher precedence than - the Operator. - nullable: true - jaegerui: - additionalProperties: false - description: Settings for Jaeger UI. - properties: - enabled: - default: false - description: Whether to enable the Jaeger UI to visualize traces. - type: boolean - type: object - namespace: - default: default - description: Namespace where to provision a Tempo installation, stack - or monolithic. - type: string - observability: - additionalProperties: false - description: Settings for observability. - properties: - grafana: - additionalProperties: false - properties: - createDatasource: - default: false - description: Whether a Datasource managed by Grafana Operator - should be created for Tempo. - type: boolean - type: object - metrics: - additionalProperties: false - properties: - createPrometheusRules: - default: false - description: Whether PrometheusRules for alerts managed by Prometheus - Operator should be created for Tempo. - type: boolean - createServiceMonitors: - default: false - description: Whether ServiceMonitors managed by Prometheus Operator - should be created for Tempo. - type: boolean - type: object - tracing: - additionalProperties: false - properties: - otlpHttpEndpoint: - default: "" - description: The OTLP HTTP endpoint where to send traces. Only - for TempoStack. - type: string - samplingFraction: - default: "" - description: Sampling frequence for Tempo traces. Only for TempoStack. - type: string - type: object - type: object - resources: - additionalProperties: false - description: Settings for total resources. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 750m - type: string - memory: - default: 2Gi - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 500m - type: string - memory: - default: 1Gi - type: string - type: object - type: object - storage: - additionalProperties: false - description: Settings for storage. - properties: - backend: - additionalProperties: false - description: Tracing backend object storage configuration. - properties: - secret: - additionalProperties: false - properties: - name: - default: "" - description: Name of the Secret containing the credentials - to access the configured object storage. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - to access the configured object storage. - type: string - type: object - type: - default: memory - description: 'Type of object storage that should be used. Valid - options: `azure`, `gcs`, `s3`, `memory` (only for TempoMonolithic).' - enum: - - azure - - gcs - - s3 - - memory - type: string - type: object - size: - default: 10Gi - description: The size of the storage used by Tempo. - type: string - type: object - tempoMonolithic: - additionalProperties: false - description: Settings for the built-in TempoMonolithic instance. - properties: - enabled: - default: false - description: Whether to deploy the built-in TempoMonolithic instance. - type: boolean - type: object - tempoStack: - additionalProperties: false - description: Settings for the built-in TempoStack instance. - properties: - compactor: - additionalProperties: false - description: Settings for the Tempo Compactor. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Compactor - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - distributor: - additionalProperties: false - description: Settings for the Tempo Distributor. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Distributor - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - enabled: - default: false - description: Whether to deploy the built-in TempoStack instance. - type: boolean - gateway: - additionalProperties: false - description: Settings for the Tempo Gateway. - properties: - enabled: - default: false - description: Whether to enable the Tempo Gateway. - type: boolean - ingress: - additionalProperties: false - description: Ingress for the Tempo Gateway. - properties: - annotations: - additionalProperties: false - description: The annotations for the Ingress object. - properties: {} - type: object - host: - default: "" - description: The hostname of the Ingress object. - type: string - ingressClassName: - default: contour - description: The class of the Ingress Controller to use - for the Tempo Gateway. - type: string - type: - default: null - description: 'Type of Ingress for the Tempo Gateway. Valid - options: `ingress`, `route`.' - enum: - - ingress - - route - nullable: true - type: string - type: object - type: object - ingester: - additionalProperties: false - description: Settings for the Tempo Ingester. - properties: - podSecurityContext: - additionalProperties: false - description: PodSecurityContext for the Ingester component. - properties: {} - type: object - replicas: - default: 1 - description: Number of replicas to deploy for the Ingester component. - In order to enable high availability, it should be greater - than 1. - type: integer - type: object - querier: - additionalProperties: false - description: Settings for the Tempo Querier. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Querier component. - In order to enable high availability, it should be greater - than 1. - type: integer - type: object - queryFrontend: - additionalProperties: false - description: Settings for the Tempo Query Frontend. - properties: - replicas: - default: 1 - description: Number of replicas to deploy for the Query Frontend - component. In order to enable high availability, it should - be greater than 1. - type: integer - type: object - type: object - type: object - type: object - version: 0.15.3 diff --git a/repo/packages/workspace-provisioner.packages.kadras.io/0.3.0.yml b/repo/packages/workspace-provisioner.packages.kadras.io/0.3.0.yml deleted file mode 100644 index 32bc1cc..0000000 --- a/repo/packages/workspace-provisioner.packages.kadras.io/0.3.0.yml +++ /dev/null @@ -1,114 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: workspace-provisioner.packages.kadras.io.0.3.0 -spec: - licenses: - - Apache 2.0 - refName: workspace-provisioner.packages.kadras.io - releaseNotes: https://github.com/kadras-io/workspace-provisioner/releases - releasedAt: "2023-09-08T16:33:23Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/workspace-provisioner@sha256:b852990e1cf32796e852880ed1d5eccbbef709f2f58d5fd3e342540667633ac3 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Cosign key - pair. - type: string - type: object - type: object - git: - additionalProperties: false - description: Configuration to access the Git repositories used in the GitOps - workflows. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Git credentials. - properties: - name: - default: "" - description: The name of the Secret holding the Git credentials. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the Git credentials. - type: string - type: object - server: - default: https://github.com - description: The Git server hosting the Git repositories used in the - GitOps workflows. - type: string - type: object - namespaces: - default: [] - description: Configuration for the namespaces the platform will provision - and manage. - items: - additionalProperties: false - description: Details about the namespace to configure. - properties: - name: - default: "" - type: string - type: object - type: array - oci_registry: - additionalProperties: false - description: Settings for the OCI registry that the workspace will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials to - access the OCI registry. - properties: - name: - default: "" - description: The name of the Secret holding the credentials to access - the OCI registry. - type: string - namespace: - default: "" - description: The namespace of the Secret holding the credentials - to access the OCI registry. - type: string - type: object - type: object - service_account: - default: supply-chain - description: The `ServiceAccount` to be configured with credentials and - roles in each workspace. - type: string - type: object - version: 0.3.0 From b21cf193c407a8963cd5fffae88e6f8928647c29 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Thu, 14 Aug 2025 22:34:36 +0200 Subject: [PATCH 589/601] Release version 0.26.0 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 267b2c4..fbac509 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.25.0 + VERSION: 0.26.0 jobs: build: From e1006cd709bbe44c502d2a916c58c24df4d8b6eb Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 15 Sep 2025 16:34:21 +0200 Subject: [PATCH 590/601] deps: bump sigstore/cosign-installer from 3.9.2 to 3.10.0 (#506) Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.9.2 to 3.10.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v3.9.2...v3.10.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-version: 3.10.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index fbac509..69837ed 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.9.2 + uses: sigstore/cosign-installer@v3.10.0 - name: Log into container registry uses: redhat-actions/podman-login@v1.7 From c534b7aba64c3d4f27f3685c265ed1cfeb226220 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 15 Sep 2025 16:34:48 +0200 Subject: [PATCH 591/601] Update Kyverno metadata and add version 1.15.1 (#507) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.15.1.yml | 182 ++++++++++++++++++ 1 file changed, 182 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.15.1.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.15.1.yml b/repo/packages/kyverno.packages.kadras.io/1.15.1.yml new file mode 100644 index 0000000..762815c --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.15.1.yml @@ -0,0 +1,182 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.15.1 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2025-09-15T14:32:28Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:069b230b662c880274eafe7566be3a1824806858d044f2f3ce19d999a837674f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + minimum: 1 + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + enum: + - text + - json + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + maximum: 6 + minimum: 1 + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + enum: + - grpc + - prometheus + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.15.1 From d2fb7da74435154fc3fe57f5da2e82bb811a06b7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 15 Sep 2025 16:51:54 +0200 Subject: [PATCH 592/601] Update Contour metadata and add version 1.33.0 (#508) Co-authored-by: github-actions --- .../contour.packages.kadras.io/1.33.0.yml | 226 ++++++++++++++++++ 1 file changed, 226 insertions(+) create mode 100644 repo/packages/contour.packages.kadras.io/1.33.0.yml diff --git a/repo/packages/contour.packages.kadras.io/1.33.0.yml b/repo/packages/contour.packages.kadras.io/1.33.0.yml new file mode 100644 index 0000000..f21dff3 --- /dev/null +++ b/repo/packages/contour.packages.kadras.io/1.33.0.yml @@ -0,0 +1,226 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: contour.packages.kadras.io.1.33.0 +spec: + licenses: + - Apache 2.0 + refName: contour.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-contour/releases + releasedAt: "2025-09-15T14:46:26Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + - --kube-api-qps=25 + - --kube-api-burst=50 + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-contour@sha256:2de76924ca9bda2f1f67cbdfc00433572f9ac482cb35e80ee3c7100d217a06fb + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + certificates: + additionalProperties: false + description: TLS configuration to secure the communication between Contour + and Envoy. + properties: + duration: + default: 8760h + description: If using cert-manager, how long the certificates should + be valid for. If `useCertManager` is false, this field is ignored. + type: string + renewBefore: + default: 360h + description: If using cert-manager, how long before expiration the certificates + should be renewed. If `useCertManager` is false, this field is ignored. + type: string + useCertManager: + default: false + description: 'Whether to use cert-manager to provision TLS certificates + for securing the communication between Contour and Envoy. If `false`, + the `contour-certgen` Job will be used to provision certificates. + If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' + type: boolean + type: object + contour: + additionalProperties: false + description: Settings for the Contour component. + properties: + config: + additionalProperties: false + description: Configuration for the Contour Deployment. + properties: + logFormat: + default: text + description: Log output format for Contour. Either `text` (default) + or `json`. + enum: + - json + - text + type: string + logLevel: + default: info + description: The Contour log level. Valid options are `info` and + `debug`. + enum: + - info + - debug + type: string + useProxyProtocol: + default: false + description: Whether to enable PROXY protocol for all Envoy listeners. + type: boolean + type: object + configMapData: + default: {} + description: The YAML contents of the `contour` ConfigMap. See https://projectcontour.io/docs/latest/configuration/#configuration-file + for more information. + nullable: true + replicas: + default: 2 + description: The number of Contour replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + envoy: + additionalProperties: false + description: Settings for the Envoy component. + properties: + config: + additionalProperties: false + description: Configuration for the Envoy workload. + properties: + logLevel: + default: info + description: The Envoy log level. + enum: + - trace + - debug + - info + - warning + - warn + - error + - critical + - "off" + type: string + type: object + service: + additionalProperties: false + description: Envoy service settings. + properties: + annotations: + default: null + description: Annotations to set on the Envoy service. + nullable: true + externalTrafficPolicy: + default: Local + description: The external traffic policy for the Envoy service. + enum: + - Cluster + - Local + type: string + loadBalancerIP: + default: "" + description: The desired load balancer IP. If `type` is not `LoadBalancer', + this field is ignored. It is up to the cloud provider whether + to honor this request. If not specified, the load balancer IP + will be assigned by the cloud provider. + type: string + nodePorts: + additionalProperties: false + description: NodePort settings for the Envoy service. If type is + not `NodePort` or `LoadBalancer`, these settings are ignored. + properties: + http: + default: 0 + description: The node port number to expose Envoy's HTTP listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + https: + default: 0 + description: The node port number to expose Envoy's HTTPS listener + on. If not specified, a node port will be auto-assigned by + Kubernetes. + type: integer + type: object + type: + default: LoadBalancer + description: The type of Kubernetes service to provision for Envoy. + enum: + - NodePort + - ClusterIP + - LoadBalancer + type: string + type: object + workload: + additionalProperties: false + description: Envoy workload settings. + properties: + hostNetwork: + default: false + description: Whether to enable host networking for the Envoy pods. + type: boolean + hostPorts: + additionalProperties: false + description: Host port settings for the Envoy pods. + properties: + enabled: + default: true + description: Whether to enable host ports. If false, `http` + & `https` are ignored. + type: boolean + http: + default: 80 + description: If enabled, the host port number to expose Envoy's + HTTP listener on. + type: integer + https: + default: 443 + description: If enabled, the host port number to expose Envoy's + HTTPS listener on. + type: integer + type: object + replicas: + default: 2 + description: The number of Envoy replicas to deploy when `type` + is set to `Deployment`. + type: integer + terminationGracePeriodSeconds: + default: 300 + description: The termination grace period, in seconds, for the Envoy + pods. + minimum: 30 + type: integer + type: + default: DaemonSet + description: The type of Kubernetes workload that Envoy is deployed + as. Options are `Deployment` or `DaemonSet`. If not specified, + it defaults to `DaemonSet`. + enum: + - Deployment + - DaemonSet + type: string + type: object + type: object + namespace: + default: projectcontour + description: The namespace in which to deploy Contour and Envoy. + minLength: 1 + type: string + type: object + version: 1.33.0 From b39c0853ecd1e40ad06602e314036e36849a04f7 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 15 Sep 2025 17:01:58 +0200 Subject: [PATCH 593/601] Update Knative Serving metadata and add version 1.19.5 (#509) Co-authored-by: github-actions --- .../1.19.5.yml | 310 ++++++++++++++++++ 1 file changed, 310 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.19.5.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.19.5.yml b/repo/packages/knative-serving.packages.kadras.io/1.19.5.yml new file mode 100644 index 0000000..4ccf79f --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.19.5.yml @@ -0,0 +1,310 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.19.5 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2025-09-15T14:59:32Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:80e7b2444be3b3d078a29a2d2e581e85ed0ea2e5b15108f049d1880775ed2633 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + enum: + - http + - https + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + enum: + - Enabled + - Redirected + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + minimum: 0 + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + enum: + - zipkin + - none + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + enum: + - "true" + - "false" + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + maxLength: 3 + minLength: 1 + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + minLength: 4 + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + minLength: 1 + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + minLength: 1 + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + min_kubernetes_version: + default: "" + description: The minimum Kubernetes version that this package will accept + as valid. If not set, Knative Serving will accept the last 3 minor versions + of Kubernetes. + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 20 + minimum: 1 + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 5 + minimum: 1 + type: integer + type: object + type: object + type: object + version: 1.19.5 From f391298211940a55b10c2fc0259fe0ed85a1898e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 15 Sep 2025 17:18:07 +0200 Subject: [PATCH 594/601] Update RabbitMQ Operator metadata and add version 2.16.1 (#510) Co-authored-by: github-actions --- .../2.16.1.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.16.1.yml diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.16.1.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.16.1.yml new file mode 100644 index 0000000..1b18205 --- /dev/null +++ b/repo/packages/rabbitmq-operator.packages.kadras.io/2.16.1.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: rabbitmq-operator.packages.kadras.io.2.16.1 +spec: + licenses: + - Apache 2.0 + refName: rabbitmq-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases + releasedAt: "2025-09-15T15:15:32Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:d8066a1d87ead89aa1b8801f54fbf8a111313c56ab9bf0fec2611b5b0fe06534 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Logging configuration. + properties: + level: + default: info + description: The Operator log level. Valid options are `info` and `debug`. + enum: + - info + - debug + type: string + type: object + type: object + version: 2.16.1 From edbb71335a02fb688d2baf8df0ca2bf68e1cb21e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Mon, 15 Sep 2025 17:53:34 +0200 Subject: [PATCH 595/601] Update Dependency Track metadata and add version 4.13.4 (#511) Co-authored-by: github-actions --- .../4.13.4.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/dependency-track.packages.kadras.io/4.13.4.yml diff --git a/repo/packages/dependency-track.packages.kadras.io/4.13.4.yml b/repo/packages/dependency-track.packages.kadras.io/4.13.4.yml new file mode 100644 index 0000000..faa8fc4 --- /dev/null +++ b/repo/packages/dependency-track.packages.kadras.io/4.13.4.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dependency-track.packages.kadras.io.4.13.4 +spec: + licenses: + - Apache 2.0 + refName: dependency-track.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases + releasedAt: "2025-09-15T15:45:57Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dependency-track@sha256:8572050568c80b0b94fb93df767bc7d5eeecd3ac0fd847af8dd1d743538f1eab + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + api_server: + additionalProperties: false + description: Settings for the API Server component. + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + format: + default: console + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `warn`, `error`.' + enum: + - trace + - debug + - info + - warn + - error + type: string + type: object + metrics: + additionalProperties: false + description: Settings for metrics. + properties: + enabled: + default: true + description: Whether to enable the generation of Prometheus metrics. + type: boolean + type: object + resources: + additionalProperties: false + description: Resource configuration for the API Server component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "4" + description: CPU limits configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory limits configuration for the API Server + component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: "0.5" + description: CPU requests configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory requests configuration for the API Server + component. + type: string + type: object + type: object + storage: + additionalProperties: false + description: Storage configuration for the API Server component. + properties: + class_name: + default: "" + description: Class name for the PersistenceVolume to create. + type: string + size: + default: 1Gi + description: Size of the PersistenceVolume to create. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Dependency Track. It must be a valid DNS name. + minLength: 4 + type: string + frontend: + additionalProperties: false + description: Settings for the Frontend component. + properties: + replicas: + default: 1 + description: The number of Frontend replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + resources: + additionalProperties: false + description: Resource configuration for the Frontend component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU limits configuration for the Frontend component. + type: string + memory: + default: 128Mi + description: Memory limits configuration for the Frontend component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 150m + description: CPU requests configuration for the Frontend component. + type: string + memory: + default: 64Mi + description: Memory requests configuration for the Frontend + component. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use for enabling TLS in + Dependency Track. + example: kadras-ca-issuer + minLength: 4 + type: string + x-example-description: Kadras private CA + postgresql: + additionalProperties: false + description: Settings for the PostgreSQL database. + properties: + instances: + default: 1 + description: Number of instances for the PostgreSQL database cluster. + Define at least 3 for production scenarios. + minimum: 1 + type: integer + storage: + additionalProperties: false + description: Storage configuration for each PostgreSQL instance. + properties: + size: + default: 1Gi + description: Size of the PersistenceVolume to create for each PostgreSQL + instance. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + system_requirement_check: + default: true + description: Whether Dependency Track will check for memory and CPU requirements + at startup time. + type: boolean + type: object + version: 4.13.4 From b7059a4cd8caf25e80d69e8c440c95fcf8da4a0d Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 24 Sep 2025 18:19:10 +0200 Subject: [PATCH 596/601] Update Kadras Developer Portal metadata and add version 0.8.0 (#512) Co-authored-by: github-actions --- .../0.8.0.yml | 681 ++++++++++++++++++ 1 file changed, 681 insertions(+) create mode 100644 repo/packages/developer-portal.packages.kadras.io/0.8.0.yml diff --git a/repo/packages/developer-portal.packages.kadras.io/0.8.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.8.0.yml new file mode 100644 index 0000000..11223c1 --- /dev/null +++ b/repo/packages/developer-portal.packages.kadras.io/0.8.0.yml @@ -0,0 +1,681 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: developer-portal.packages.kadras.io.0.8.0 +spec: + refName: developer-portal.packages.kadras.io + releasedAt: "2025-09-24T16:17:36Z" + template: + spec: + deploy: + - kapp: + intoNs: backstage + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-developer-portal@sha256:b455104c820ab67c804113843d00528eac7ac6f1bf2abfc9140db15ff6a01d36 + template: + - helmTemplate: + name: backstage + namespace: backstage + path: config/helm/upstream/backstage + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + backstage: + description: Backstage parameters @default -- See below + properties: + affinity: + default: {} + description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' + type: object + annotations: + default: {} + description: Additional custom annotations for the `Deployment` resource + type: object + appConfig: + default: {} + description: 'Allows to define the appConfig as a multiline string that + generates a ConfigMap automatically, not requiring to have it pre + provisioned as with the extraAppConfig key. DO NOT USE if you need + to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: + https://somedomain.tld -- Generates ConfigMap and configures it in + the Backstage pods' + type: object + args: + default: [] + description: Backstage container command arguments + items: {} + type: array + autoscaling: + description: 'Autoscaling configuration.
Ref: https://kubernetes.io/docs/tasks/run-application/horizontal-pod-autoscale/' + properties: + enabled: + default: false + type: boolean + maxReplicas: + default: 100 + type: integer + minReplicas: + default: 1 + type: integer + targetCPUUtilizationPercentage: + default: 80 + type: integer + type: object + command: + default: [] + description: Backstage container command + items: + default: node + type: string + type: array + containerPorts: + description: Container ports on the Deployment + properties: + backend: + default: 7007 + type: integer + type: object + containerSecurityContext: + default: {} + description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' + type: object + extraAppConfig: + default: [] + description: Extra app configuration files to inline into command arguments + items: {} + type: array + extraContainers: + default: [] + description: Deployment sidecars + items: {} + type: array + extraEnvVars: + default: [] + description: Backstage container environment variables + items: {} + type: array + extraEnvVarsCM: + default: [] + description: Backstage container environment variables from existing + ConfigMaps + items: {} + type: array + extraEnvVarsSecrets: + default: [] + description: Backstage container environment variables from existing + Secrets + items: {} + type: array + extraPorts: + default: [] + description: Backstage container additional ports + items: {} + type: array + extraVolumeMounts: + default: [] + description: Backstage container additional volume mounts + items: {} + type: array + extraVolumes: + default: [] + description: Backstage container additional volumes + items: {} + type: array + hostAliases: + default: [] + description: 'Host Aliases for the pod
Ref: https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/' + items: {} + type: array + image: + properties: + digest: + default: "" + description: Backstage image digest (digest takes precedence over + image tag) + type: string + pullPolicy: + default: Always + description: 'Specify a imagePullPolicy. Defaults to ''Always'' + if image tag is ''latest'', else set to ''IfNotPresent''
+ Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' + type: string + pullSecrets: + default: [] + description: 'Optionally specify an array of imagePullSecrets. Secrets + must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +
E.g: `pullSecrets: [myRegistryKeySecretName]`' + items: {} + type: array + registry: + default: ghcr.io + description: Backstage image registry + type: string + repository: + default: backstage/backstage + description: Backstage image repository + type: string + tag: + default: latest + description: Backstage image tag (immutable tags are recommended) + type: string + type: object + initContainers: + default: [] + description: Backstage container init containers + items: {} + type: array + installDir: + default: /app + description: Directory containing the backstage installation + type: string + livenessProbe: + description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + items: {} + type: array + extraTls: + default: [] + description: 'The TLS configuration for additional hostnames to be covered + with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls + ' + items: {} + type: array + host: + default: "" + description: 'Hostname to be used to expose the route to access the + backstage application (e.g: backstage.IP.nip.io)' + type: string + path: + default: / + description: 'Path to be used to expose the full route to access the + backstage application (e.g: IP.nip.io/backstage)' + type: string + tls: + description: Ingress TLS parameters + properties: + enabled: + default: false + description: Enable TLS configuration for the host defined at `ingress.host` + parameter + type: boolean + secretName: + default: "" + description: The name to which the TLS Secret will be called + type: string + type: object + type: object + kubeVersion: + default: "" + description: |- + Common parameters + -- Override Kubernetes version + type: string + metrics: + description: Metrics configuration + properties: + serviceMonitor: + description: ServiceMonitor configuration
Allows configuring + your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) + using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) + can understand. + properties: + annotations: + default: {} + description: ServiceMonitor annotations + type: object + enabled: + default: false + description: If enabled, a ServiceMonitor resource for Prometheus + Operator is created
Prometheus Operator must be installed + in your cluster prior to enabling. + type: boolean + interval: + description: ServiceMonitor scrape interval + oneOf: + - default: null + nullable: true + type: integer + - default: null + nullable: true + type: number + - default: null + nullable: true + type: boolean + - default: null + nullable: true + type: string + - default: null + nullable: true + type: object + - default: null + items: {} + nullable: true + type: array + labels: + default: {} + description: Additional ServiceMonitor labels + type: object + path: + default: /metrics + description: ServiceMonitor endpoint path
Note that the /metrics + endpoint is NOT present in a freshly scaffolded Backstage app. + To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). + type: string + port: + default: http-backend + description: ServiceMonitor endpoint port
The port where + the metrics are exposed. If using OpenTelemetry as [documented + here](https://backstage.io/docs/tutorials/setup-opentelemetry/), + then the port needs to be explicitly specified. OpenTelemetry's + default port is 9464. + type: string + type: object + type: object + nameOverride: + default: "" + description: String to partially override common.names.fullname + type: string + networkPolicy: + description: '@section NetworkPolicy parameters' + properties: + egressRules: + description: Egress Rules + properties: + customRules: + default: [] + description: Additional custom egress rules + items: {} + type: array + denyConnectionsToExternal: + default: false + description: Deny external connections. Should not be enabled when + working with an external database. + type: boolean + type: object + enabled: + default: false + description: Specifies whether a NetworkPolicy should be created + type: boolean + ingressRules: + description: Ingress Rules + properties: + customRules: + default: [] + description: Additional custom ingress rules + items: {} + type: array + namespaceSelector: + default: {} + description: Namespace selector label allowed to access the Backstage + instance + type: object + podSelector: + default: {} + description: Pod selector label allowed to access the Backstage + instance + type: object + type: object + type: object + postgresql: + description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) + @default -- See below + properties: + architecture: + default: standalone + description: PostgreSQL architecture (`standalone` or `replication`) + type: string + auth: + description: The authentication details of the Postgres database + properties: + existingSecret: + default: "" + description: Name of existing secret to use for PostgreSQL credentials + type: string + password: + default: "" + description: Password for the custom user to create + type: string + secretKeys: + description: The secret keys Postgres will look for to retrieve + the relevant password + properties: + adminPasswordKey: + default: admin-password + description: The key in which Postgres will look for, for the + admin password, in the existing Secret + type: string + replicationPasswordKey: + default: replication-password + description: The key in which Postgres will look for, for the + replication password, in the existing Secret + type: string + userPasswordKey: + default: user-password + description: The key in which Postgres will look for, for the + user password, in the existing Secret + type: string + type: object + username: + default: bn_backstage + description: Name for a custom user to create + type: string + type: object + enabled: + default: false + description: Switch to enable or disable the PostgreSQL helm chart + type: boolean + type: object + service: + description: |- + @section Traffic Exposure parameters + Service parameters -- Service parameters @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for Backstage service + type: object + clusterIP: + default: "" + description: 'Backstage service Cluster IP
E.g `clusterIP: None`' + type: string + externalTrafficPolicy: + default: Cluster + description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' + type: string + extraPorts: + default: [] + description: Extra ports to expose in the Backstage service (normally + used with the `sidecar` value) + items: {} + type: array + ipFamilies: + default: [] + description: 'IP Families
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' + items: {} + type: array + ipFamilyPolicy: + default: "" + description: 'IP Family Policy
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' + type: string + loadBalancerIP: + default: "" + description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' + type: string + loadBalancerSourceRanges: + default: [] + description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer +
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' + items: {} + type: array + nodePorts: + description: Node port for the Backstage client connections Choose port + between `30000-32767` + properties: + backend: + default: "" + type: string + type: object + ports: + description: Backstage svc port for client connections + properties: + backend: + default: 7007 + type: integer + name: + default: http-backend + description: Backstage svc port name + type: string + targetPort: + default: backend + description: Backstage svc target port referencing receiving pod + container port + type: string + type: object + sessionAffinity: + default: None + description: 'Control where client requests go, to the same pod or round-robin + (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' + type: string + type: + default: ClusterIP + description: Kubernetes Service type + type: string + type: object + serviceAccount: + description: Service Account Configuration @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for the ServiceAccount. + type: object + automountServiceAccountToken: + default: true + description: Auto-mount the service account token in the pod + type: boolean + create: + default: false + description: Enable the creation of a ServiceAccount for Backstage pods + type: boolean + labels: + default: {} + description: Additional custom labels to the service ServiceAccount. + type: object + name: + default: "" + description: Name of the ServiceAccount to use If not set and `serviceAccount.create` + is true, a name is generated + type: string + type: object + type: object + version: 0.8.0 From 0380ac09e17034aaef199249f96dddc225891892 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 24 Sep 2025 18:31:27 +0200 Subject: [PATCH 597/601] Update Kadras Engineering Platform metadata and add version 0.27.0 (#513) Co-authored-by: github-actions --- .../0.27.0.yml | 255 ++++++++++++++++++ 1 file changed, 255 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.27.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.27.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.27.0.yml new file mode 100644 index 0000000..494bf13 --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.27.0.yml @@ -0,0 +1,255 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.27.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2025-09-24T16:27:22Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:478450ba6ff5c780bac64e697df2f66666c8d27a08e66393836839cd0e3a139f + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci: + additionalProperties: false + description: Settings for accessing the OCI registry that the platform + will use. + properties: + pull_secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to pull images from the OCI registry. + properties: + name: + default: "" + description: The name of the Secret holding the credentials + to pull images from the OCI registry. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to pull images from the OCI registry. + type: string + type: object + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `run`.' + enum: + - standalone + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.27.0 From f0f12629e90f2089344a46ada992ef289da9879b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 24 Sep 2025 18:32:48 +0200 Subject: [PATCH 598/601] chore: Remove deprecated packages --- .../contour.packages.kadras.io/1.32.0.yml | 226 ------ .../4.13.3.yml | 211 ------ .../0.7.0.yml | 665 ------------------ .../0.26.0.yml | 255 ------- .../1.19.0.yml | 310 -------- .../kyverno.packages.kadras.io/1.15.0.yml | 182 ----- .../2.16.0.yml | 44 -- 7 files changed, 1893 deletions(-) delete mode 100644 repo/packages/contour.packages.kadras.io/1.32.0.yml delete mode 100644 repo/packages/dependency-track.packages.kadras.io/4.13.3.yml delete mode 100644 repo/packages/developer-portal.packages.kadras.io/0.7.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.26.0.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.19.0.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.15.0.yml delete mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.16.0.yml diff --git a/repo/packages/contour.packages.kadras.io/1.32.0.yml b/repo/packages/contour.packages.kadras.io/1.32.0.yml deleted file mode 100644 index 3a24ccf..0000000 --- a/repo/packages/contour.packages.kadras.io/1.32.0.yml +++ /dev/null @@ -1,226 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: contour.packages.kadras.io.1.32.0 -spec: - licenses: - - Apache 2.0 - refName: contour.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-contour/releases - releasedAt: "2025-05-30T19:34:05Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - - --kube-api-qps=25 - - --kube-api-burst=50 - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-contour@sha256:c2dc6b1eeaf6ffdcc7d30bd0d21cfe3966ea9648542254383962ded12e14ebd4 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - certificates: - additionalProperties: false - description: TLS configuration to secure the communication between Contour - and Envoy. - properties: - duration: - default: 8760h - description: If using cert-manager, how long the certificates should - be valid for. If `useCertManager` is false, this field is ignored. - type: string - renewBefore: - default: 360h - description: If using cert-manager, how long before expiration the certificates - should be renewed. If `useCertManager` is false, this field is ignored. - type: string - useCertManager: - default: false - description: 'Whether to use cert-manager to provision TLS certificates - for securing the communication between Contour and Envoy. If `false`, - the `contour-certgen` Job will be used to provision certificates. - If `true`, cert-manager must be installed in the cluster. See: https://github.com/kadras-io/package-for-cert-manager.' - type: boolean - type: object - contour: - additionalProperties: false - description: Settings for the Contour component. - properties: - config: - additionalProperties: false - description: Configuration for the Contour Deployment. - properties: - logFormat: - default: text - description: Log output format for Contour. Either `text` (default) - or `json`. - enum: - - json - - text - type: string - logLevel: - default: info - description: The Contour log level. Valid options are `info` and - `debug`. - enum: - - info - - debug - type: string - useProxyProtocol: - default: false - description: Whether to enable PROXY protocol for all Envoy listeners. - type: boolean - type: object - configMapData: - default: {} - description: The YAML contents of the `contour` ConfigMap. See https://projectcontour.io/docs/latest/configuration/#configuration-file - for more information. - nullable: true - replicas: - default: 2 - description: The number of Contour replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - envoy: - additionalProperties: false - description: Settings for the Envoy component. - properties: - config: - additionalProperties: false - description: Configuration for the Envoy workload. - properties: - logLevel: - default: info - description: The Envoy log level. - enum: - - trace - - debug - - info - - warning - - warn - - error - - critical - - "off" - type: string - type: object - service: - additionalProperties: false - description: Envoy service settings. - properties: - annotations: - default: null - description: Annotations to set on the Envoy service. - nullable: true - externalTrafficPolicy: - default: Local - description: The external traffic policy for the Envoy service. - enum: - - Cluster - - Local - type: string - loadBalancerIP: - default: "" - description: The desired load balancer IP. If `type` is not `LoadBalancer', - this field is ignored. It is up to the cloud provider whether - to honor this request. If not specified, the load balancer IP - will be assigned by the cloud provider. - type: string - nodePorts: - additionalProperties: false - description: NodePort settings for the Envoy service. If type is - not `NodePort` or `LoadBalancer`, these settings are ignored. - properties: - http: - default: 0 - description: The node port number to expose Envoy's HTTP listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - https: - default: 0 - description: The node port number to expose Envoy's HTTPS listener - on. If not specified, a node port will be auto-assigned by - Kubernetes. - type: integer - type: object - type: - default: LoadBalancer - description: The type of Kubernetes service to provision for Envoy. - enum: - - NodePort - - ClusterIP - - LoadBalancer - type: string - type: object - workload: - additionalProperties: false - description: Envoy workload settings. - properties: - hostNetwork: - default: false - description: Whether to enable host networking for the Envoy pods. - type: boolean - hostPorts: - additionalProperties: false - description: Host port settings for the Envoy pods. - properties: - enabled: - default: true - description: Whether to enable host ports. If false, `http` - & `https` are ignored. - type: boolean - http: - default: 80 - description: If enabled, the host port number to expose Envoy's - HTTP listener on. - type: integer - https: - default: 443 - description: If enabled, the host port number to expose Envoy's - HTTPS listener on. - type: integer - type: object - replicas: - default: 2 - description: The number of Envoy replicas to deploy when `type` - is set to `Deployment`. - type: integer - terminationGracePeriodSeconds: - default: 300 - description: The termination grace period, in seconds, for the Envoy - pods. - minimum: 30 - type: integer - type: - default: DaemonSet - description: The type of Kubernetes workload that Envoy is deployed - as. Options are `Deployment` or `DaemonSet`. If not specified, - it defaults to `DaemonSet`. - enum: - - Deployment - - DaemonSet - type: string - type: object - type: object - namespace: - default: projectcontour - description: The namespace in which to deploy Contour and Envoy. - minLength: 1 - type: string - type: object - version: 1.32.0 diff --git a/repo/packages/dependency-track.packages.kadras.io/4.13.3.yml b/repo/packages/dependency-track.packages.kadras.io/4.13.3.yml deleted file mode 100644 index 2635b0c..0000000 --- a/repo/packages/dependency-track.packages.kadras.io/4.13.3.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dependency-track.packages.kadras.io.4.13.3 -spec: - licenses: - - Apache 2.0 - refName: dependency-track.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases - releasedAt: "2025-08-14T18:07:53Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dependency-track@sha256:7e997d3514792da849ef9ad483ee574f34de4f19115d0c4395f81690f55d8015 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - api_server: - additionalProperties: false - description: Settings for the API Server component. - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - format: - default: console - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `warn`, `error`.' - enum: - - trace - - debug - - info - - warn - - error - type: string - type: object - metrics: - additionalProperties: false - description: Settings for metrics. - properties: - enabled: - default: true - description: Whether to enable the generation of Prometheus metrics. - type: boolean - type: object - resources: - additionalProperties: false - description: Resource configuration for the API Server component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "4" - description: CPU limits configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory limits configuration for the API Server - component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: "0.5" - description: CPU requests configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory requests configuration for the API Server - component. - type: string - type: object - type: object - storage: - additionalProperties: false - description: Storage configuration for the API Server component. - properties: - class_name: - default: "" - description: Class name for the PersistenceVolume to create. - type: string - size: - default: 1Gi - description: Size of the PersistenceVolume to create. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Dependency Track. It must be a valid DNS name. - minLength: 4 - type: string - frontend: - additionalProperties: false - description: Settings for the Frontend component. - properties: - replicas: - default: 1 - description: The number of Frontend replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - resources: - additionalProperties: false - description: Resource configuration for the Frontend component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU limits configuration for the Frontend component. - type: string - memory: - default: 128Mi - description: Memory limits configuration for the Frontend component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 150m - description: CPU requests configuration for the Frontend component. - type: string - memory: - default: 64Mi - description: Memory requests configuration for the Frontend - component. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use for enabling TLS in - Dependency Track. - example: kadras-ca-issuer - minLength: 4 - type: string - x-example-description: Kadras private CA - postgresql: - additionalProperties: false - description: Settings for the PostgreSQL database. - properties: - instances: - default: 1 - description: Number of instances for the PostgreSQL database cluster. - Define at least 3 for production scenarios. - minimum: 1 - type: integer - storage: - additionalProperties: false - description: Storage configuration for each PostgreSQL instance. - properties: - size: - default: 1Gi - description: Size of the PersistenceVolume to create for each PostgreSQL - instance. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - system_requirement_check: - default: true - description: Whether Dependency Track will check for memory and CPU requirements - at startup time. - type: boolean - type: object - version: 4.13.3 diff --git a/repo/packages/developer-portal.packages.kadras.io/0.7.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.7.0.yml deleted file mode 100644 index d446174..0000000 --- a/repo/packages/developer-portal.packages.kadras.io/0.7.0.yml +++ /dev/null @@ -1,665 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: developer-portal.packages.kadras.io.0.7.0 -spec: - refName: developer-portal.packages.kadras.io - releasedAt: "2025-06-01T12:44:42Z" - template: - spec: - deploy: - - kapp: - intoNs: backstage - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-developer-portal@sha256:9fd869302b8daa8c12535819b6c2659b778cf36712760b0e84045c2b7b4940df - template: - - helmTemplate: - name: backstage - namespace: backstage - path: config/helm/upstream/backstage - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - backstage: - description: Backstage parameters @default -- See below - properties: - affinity: - default: {} - description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' - type: object - annotations: - default: {} - description: Additional custom annotations for the `Deployment` resource - type: object - appConfig: - default: {} - description: 'Allows to define the appConfig as a multiline string that - generates a ConfigMap automatically, not requiring to have it pre - provisioned as with the extraAppConfig key. DO NOT USE if you need - to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: - https://somedomain.tld -- Generates ConfigMap and configures it in - the Backstage pods' - type: object - args: - default: [] - description: Backstage container command arguments - items: {} - type: array - command: - default: [] - description: Backstage container command - items: - default: node - type: string - type: array - containerPorts: - description: Container ports on the Deployment - properties: - backend: - default: 7007 - type: integer - type: object - containerSecurityContext: - default: {} - description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' - type: object - extraAppConfig: - default: [] - description: Extra app configuration files to inline into command arguments - items: {} - type: array - extraContainers: - default: [] - description: Deployment sidecars - items: {} - type: array - extraEnvVars: - default: [] - description: Backstage container environment variables - items: {} - type: array - extraEnvVarsCM: - default: [] - description: Backstage container environment variables from existing - ConfigMaps - items: {} - type: array - extraEnvVarsSecrets: - default: [] - description: Backstage container environment variables from existing - Secrets - items: {} - type: array - extraPorts: - default: [] - description: Backstage container additional ports - items: {} - type: array - extraVolumeMounts: - default: [] - description: Backstage container additional volume mounts - items: {} - type: array - extraVolumes: - default: [] - description: Backstage container additional volumes - items: {} - type: array - hostAliases: - default: [] - description: 'Host Aliases for the pod
Ref: https://kubernetes.io/docs/concepts/services-networking/add-entries-to-pod-etc-hosts-with-host-aliases/' - items: {} - type: array - image: - properties: - digest: - default: "" - description: Backstage image digest (digest takes precedence over - image tag) - type: string - pullPolicy: - default: Always - description: 'Specify a imagePullPolicy. Defaults to ''Always'' - if image tag is ''latest'', else set to ''IfNotPresent''
- Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' - type: string - pullSecrets: - default: [] - description: 'Optionally specify an array of imagePullSecrets. Secrets - must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -
E.g: `pullSecrets: [myRegistryKeySecretName]`' - items: {} - type: array - registry: - default: ghcr.io - description: Backstage image registry - type: string - repository: - default: backstage/backstage - description: Backstage image repository - type: string - tag: - default: latest - description: Backstage image tag (immutable tags are recommended) - type: string - type: object - initContainers: - default: [] - description: Backstage container init containers - items: {} - type: array - installDir: - default: /app - description: Directory containing the backstage installation - type: string - livenessProbe: - description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - items: {} - type: array - extraTls: - default: [] - description: 'The TLS configuration for additional hostnames to be covered - with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls - ' - items: {} - type: array - host: - default: "" - description: 'Hostname to be used to expose the route to access the - backstage application (e.g: backstage.IP.nip.io)' - type: string - path: - default: / - description: 'Path to be used to expose the full route to access the - backstage application (e.g: IP.nip.io/backstage)' - type: string - tls: - description: Ingress TLS parameters - properties: - enabled: - default: false - description: Enable TLS configuration for the host defined at `ingress.host` - parameter - type: boolean - secretName: - default: "" - description: The name to which the TLS Secret will be called - type: string - type: object - type: object - kubeVersion: - default: "" - description: |- - Common parameters - -- Override Kubernetes version - type: string - metrics: - description: Metrics configuration - properties: - serviceMonitor: - description: ServiceMonitor configuration
Allows configuring - your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) - using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) - can understand. - properties: - annotations: - default: {} - description: ServiceMonitor annotations - type: object - enabled: - default: false - description: If enabled, a ServiceMonitor resource for Prometheus - Operator is created
Prometheus Operator must be installed - in your cluster prior to enabling. - type: boolean - interval: - description: ServiceMonitor scrape interval - oneOf: - - default: null - nullable: true - type: integer - - default: null - nullable: true - type: number - - default: null - nullable: true - type: boolean - - default: null - nullable: true - type: string - - default: null - nullable: true - type: object - - default: null - items: {} - nullable: true - type: array - labels: - default: {} - description: Additional ServiceMonitor labels - type: object - path: - default: /metrics - description: ServiceMonitor endpoint path
Note that the /metrics - endpoint is NOT present in a freshly scaffolded Backstage app. - To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). - type: string - port: - default: http-backend - description: ServiceMonitor endpoint port
The port where - the metrics are exposed. If using OpenTelemetry as [documented - here](https://backstage.io/docs/tutorials/setup-opentelemetry/), - then the port needs to be explicitly specified. OpenTelemetry's - default port is 9464. - type: string - type: object - type: object - nameOverride: - default: "" - description: String to partially override common.names.fullname - type: string - networkPolicy: - description: '@section NetworkPolicy parameters' - properties: - egressRules: - description: Egress Rules - properties: - customRules: - default: [] - description: Additional custom egress rules - items: {} - type: array - denyConnectionsToExternal: - default: false - description: Deny external connections. Should not be enabled when - working with an external database. - type: boolean - type: object - enabled: - default: false - description: Specifies whether a NetworkPolicy should be created - type: boolean - ingressRules: - description: Ingress Rules - properties: - customRules: - default: [] - description: Additional custom ingress rules - items: {} - type: array - namespaceSelector: - default: {} - description: Namespace selector label allowed to access the Backstage - instance - type: object - podSelector: - default: {} - description: Pod selector label allowed to access the Backstage - instance - type: object - type: object - type: object - postgresql: - description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) - @default -- See below - properties: - architecture: - default: standalone - description: PostgreSQL architecture (`standalone` or `replication`) - type: string - auth: - description: The authentication details of the Postgres database - properties: - existingSecret: - default: "" - description: Name of existing secret to use for PostgreSQL credentials - type: string - password: - default: "" - description: Password for the custom user to create - type: string - secretKeys: - description: The secret keys Postgres will look for to retrieve - the relevant password - properties: - adminPasswordKey: - default: admin-password - description: The key in which Postgres will look for, for the - admin password, in the existing Secret - type: string - replicationPasswordKey: - default: replication-password - description: The key in which Postgres will look for, for the - replication password, in the existing Secret - type: string - userPasswordKey: - default: user-password - description: The key in which Postgres will look for, for the - user password, in the existing Secret - type: string - type: object - username: - default: bn_backstage - description: Name for a custom user to create - type: string - type: object - enabled: - default: false - description: Switch to enable or disable the PostgreSQL helm chart - type: boolean - type: object - service: - description: |- - @section Traffic Exposure parameters - Service parameters -- Service parameters @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for Backstage service - type: object - clusterIP: - default: "" - description: 'Backstage service Cluster IP
E.g `clusterIP: None`' - type: string - externalTrafficPolicy: - default: Cluster - description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' - type: string - extraPorts: - default: [] - description: Extra ports to expose in the Backstage service (normally - used with the `sidecar` value) - items: {} - type: array - ipFamilies: - default: [] - description: 'IP Families
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' - items: {} - type: array - ipFamilyPolicy: - default: "" - description: 'IP Family Policy
Ref: https://kubernetes.io/docs/concepts/services-networking/dual-stack' - type: string - loadBalancerIP: - default: "" - description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' - type: string - loadBalancerSourceRanges: - default: [] - description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer -
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' - items: {} - type: array - nodePorts: - description: Node port for the Backstage client connections Choose port - between `30000-32767` - properties: - backend: - default: "" - type: string - type: object - ports: - description: Backstage svc port for client connections - properties: - backend: - default: 7007 - type: integer - name: - default: http-backend - description: Backstage svc port name - type: string - targetPort: - default: backend - description: Backstage svc target port referencing receiving pod - container port - type: string - type: object - sessionAffinity: - default: None - description: 'Control where client requests go, to the same pod or round-robin - (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' - type: string - type: - default: ClusterIP - description: Kubernetes Service type - type: string - type: object - serviceAccount: - description: Service Account Configuration @default -- See below - properties: - annotations: - default: {} - description: Additional custom annotations for the ServiceAccount. - type: object - automountServiceAccountToken: - default: true - description: Auto-mount the service account token in the pod - type: boolean - create: - default: false - description: Enable the creation of a ServiceAccount for Backstage pods - type: boolean - labels: - default: {} - description: Additional custom labels to the service ServiceAccount. - type: object - name: - default: "" - description: Name of the ServiceAccount to use If not set and `serviceAccount.create` - is true, a name is generated - type: string - type: object - type: object - version: 0.7.0 diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.26.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.26.0.yml deleted file mode 100644 index 5ae1ee7..0000000 --- a/repo/packages/engineering-platform.packages.kadras.io/0.26.0.yml +++ /dev/null @@ -1,255 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: engineering-platform.packages.kadras.io.0.26.0 -spec: - licenses: - - Apache 2.0 - refName: engineering-platform.packages.kadras.io - releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases - releasedAt: "2025-08-14T20:30:27Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:10ef8428a059b359334656a85aa593192686a6422f44d90fcfcf9d850f27f254 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cert_manager: - default: {} - description: Configuration for the Cert Manager package. - nullable: true - contour: - default: {} - description: Configuration for the Contour package. - nullable: true - crossplane: - default: {} - description: Configuration for the Crossplane package. - nullable: true - dependency_track: - default: {} - description: Configuration for the Dependency Track package. - nullable: true - developer_portal: - default: {} - description: Configuration for the Developer Portal package. - nullable: true - flux: - default: {} - description: Configuration for the Flux package. - nullable: true - gitops_configurer: - default: {} - description: Configuration for the GitOps Configurer package. - nullable: true - knative: - additionalProperties: false - description: Configuration for Knative related packages. - properties: - serving: - default: {} - description: Configuration for the Knative Serving package. - nullable: true - type: object - kyverno: - additionalProperties: false - description: Configuration for the Kyverno related packages. - properties: - core: - default: {} - description: Configuration for the Kyverno package. - nullable: true - type: object - metrics_server: - default: {} - description: Configuration for the Metrics Server package. - nullable: true - platform: - additionalProperties: false - description: Configuration for the platform packages. - properties: - additional_packages: - default: [] - description: A list of packages to include in the installation. - items: - default: "" - type: string - type: array - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cosign: - additionalProperties: false - description: Settings for Cosign, used for signing and verifying OCI - artifacts. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the Cosign key - pair. - properties: - name: - default: "" - description: The name of the Secret holding the Cosign key pair. - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the Cosign - key pair. - type: string - type: object - type: object - excluded_packages: - default: [] - description: A list of packages to exclude from being installed. - items: - default: "" - type: string - type: array - git: - additionalProperties: false - description: Settings for the Git server that the platform will use. - properties: - secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to access the Git server. - properties: - name: - default: "" - description: 'The name of the Secret holding the credentials - to access the Git server. The credentials should provide read-only - access to the Git server except when installing the platform - with one of these profiles: `standalone`, `build`.' - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to access the Git server. - type: string - type: object - server: - default: https://github.com - description: The server hosting the Git repositories used by the - plaform. - example: https://github.com - type: string - x-example-description: GitHub - type: object - ingress: - additionalProperties: false - description: Setting for the Ingress controller that the platform will - use. - properties: - domain: - default: "" - description: The base domain name the platform will use to configure - the Ingress controller. It must be a valid DNS name. - type: string - issuer: - additionalProperties: false - description: A reference to the ClusterIssuer the platform will - use to enable TLS communications. - properties: - email: - default: "" - description: The email address that Let's Encrypt will use to - send info on expiring certificates or other issues. Required - when the type is `letsencrypt_staging` or `letsencrypt`. - type: string - name: - default: "" - description: A reference to a custom ClusterIssuer previously - created on the cluster where the platform will be installed. - Required when the type is `custom`. - type: string - type: - default: private - description: 'The type of ClusterIssuer the platform will use - to enable TLS communications. Options: `private`, `letsencrypt_staging`, - `letsencrypt`, `custom`.' - enum: - - private - - letsencrypt_staging - - letsencrypt - - custom - type: string - type: object - type: object - namespace: - default: kadras-system - description: The namespace where to install the platform. - type: string - oci: - additionalProperties: false - description: Settings for accessing the OCI registry that the platform - will use. - properties: - pull_secret: - additionalProperties: false - description: Configuration for the Secret holding the credentials - to pull images from the OCI registry. - properties: - name: - default: "" - description: The name of the Secret holding the credentials - to pull images from the OCI registry. - type: string - namespace: - default: kadras-system - description: The namespace of the Secret holding the credentials - to pull images from the OCI registry. - type: string - type: object - type: object - profile: - default: run - description: 'The platform profile to install. Options: `standalone`, - `run`.' - enum: - - standalone - - run - type: string - type: object - postgresql_operator: - default: {} - description: Configuration for the PostgreSQL Operator package. - nullable: true - rabbitmq_operator: - default: {} - description: Configuration for the RabbitMQ Operator package. - nullable: true - secretgen_controller: - default: {} - description: Configuration for the Secretgen Controller package. - nullable: true - service_binding: - default: {} - description: Configuration for the Service Binding package. - nullable: true - tempo_operator: - default: {} - description: Configuration for the Tempo Operator package. - nullable: true - workspace_provisioner: - default: {} - description: Configuration for the Workspace Provisioner package. - nullable: true - type: object - version: 0.26.0 diff --git a/repo/packages/knative-serving.packages.kadras.io/1.19.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.19.0.yml deleted file mode 100644 index 7cfbbb5..0000000 --- a/repo/packages/knative-serving.packages.kadras.io/1.19.0.yml +++ /dev/null @@ -1,310 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: knative-serving.packages.kadras.io.1.19.0 -spec: - capacityRequirementsDescription: For prototyping purposes, one-node cluster that - has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only - one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have - multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk - storage. - licenses: - - Apache 2.0 - refName: knative-serving.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases - releasedAt: "2025-08-14T19:57:25Z" - template: - spec: - deploy: - - kapp: - rawOptions: - - --wait-timeout=5m - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-knative-serving@sha256:d722be4e836dcd0eca222196d795e92a3f51e6c3b0357011e7ce2ece425f424a - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - config: - additionalProperties: false - description: Settings for the Knative Serving ConfigMaps. - properties: - deployment: - additionalProperties: false - description: Deployment configuration stored in the `config-deployment` - ConfigMap. - properties: - progress-deadline: - default: 600s - description: The duration to wait for the deployment to be ready - before considering it failed. - type: string - queue-sidecar-cpu-limit: - default: 1000m - description: The queue proxy's CPU limit. If omitted, a default - value (currently `1000m`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-cpu-request: - default: 25m - description: The queue proxy's CPU request. If omitted, a default - value (currently '25m'), is used. - type: string - queue-sidecar-memory-limit: - default: 200Mi - description: The queue proxy's memory limit. If omitted, a default - value (currently `800Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - queue-sidecar-memory-request: - default: 50Mi - description: The queue proxy's memory request. If omitted, a default - value (currently `400Mi`), is used when `queueproxy.resource-defaults` - is set to `Enabled`. - type: string - type: object - network: - additionalProperties: false - description: Network configuration stored in the `config-network` ConfigMap. - properties: - default-external-scheme: - default: http - description: Defines the scheme used for external URLs if autoTLS - is not enabled. This can be used for making Knative report all - URLs as `https`, for example, if you're fronting Knative with - an external loadbalancer that deals with TLS termination and Knative - doesn't know about that otherwise. - enum: - - http - - https - type: string - domain-template: - default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' - description: The golang text template string to use when constructing - the Knative Service's DNS name. - type: string - http-protocol: - default: Redirected - description: 'Controls the behavior of the HTTP endpoint for the - Knative ingress. `Enabled`: The Knative ingress will be able to - serve HTTP connection. `Redirected`: The Knative ingress will - send a 301 redirect for all http connections, asking the clients - to use HTTPS.' - enum: - - Enabled - - Redirected - type: string - namespace-wildcard-cert-selector: - default: "" - description: A LabelSelector which determines which namespaces should - have a wildcard certificate provisioned. - type: string - rollout-duration: - default: 0 - description: The minimal duration in seconds over which the Configuration - traffic targets are rolled out to the newest revision. - minimum: 0 - type: integer - type: object - tracing: - additionalProperties: false - description: Network configuration stored in the `config-tracing` ConfigMap. - properties: - backend: - default: none - description: The type of distributed tracing backend. - enum: - - zipkin - - none - type: string - debug: - default: "false" - description: Enable the Zipkin debug mode. This allows all spans - to be sent to the server bypassing sampling. - enum: - - "true" - - "false" - type: string - sample-rate: - default: "0.1" - description: The percentage (0-1) of requests to trace. - maxLength: 3 - minLength: 1 - type: string - zipkin-endpoint: - default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans - description: The Zipkin collector endpoint where traces are sent. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Knative Services. It must be a valid DNS name. - Stored in the `config-domain` ConfigMap. - minLength: 4 - type: string - ingress: - additionalProperties: false - description: Settings for the Ingress controller. - properties: - contour: - additionalProperties: false - description: Ingress configuration stored in the `config-contour` ConfigMap. - properties: - default-tls-secret: - default: "" - description: If auto-TLS is disabled, fallback to this certificate. - An operator is required to setup a TLSCertificateDelegation for - this Secret to be used. - type: string - external: - additionalProperties: false - description: Configuration for the external Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the external Ingress controller - is installed. - minLength: 1 - type: string - type: object - internal: - additionalProperties: false - description: Configuration for the internal Ingress controller - properties: - namespace: - default: projectcontour - description: The namespace where the internal Ingress controller - is installed. - minLength: 1 - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use if you want to enable - autoTLS. Stored in the `config-certmanager` ConfigMap. - example: kadras-ca-issuer - type: string - x-example-description: Kadras private CA - min_kubernetes_version: - default: "" - description: The minimum Kubernetes version that this package will accept - as valid. If not set, Knative Serving will accept the last 3 minor versions - of Kubernetes. - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use a proxy. - type: string - type: object - workloads: - additionalProperties: false - description: Settings for the Knative Serving workloads. - properties: - activator: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 20 - minimum: 1 - type: integer - type: object - autoscaler: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - domain_mapping_webhook: - additionalProperties: false - properties: - replicas: - default: 1 - description: The number of replicas for this Deployment. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - webhook: - additionalProperties: false - properties: - minReplicas: - default: 1 - description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. - In order to enable high availability, it should be greater than - 1. - maximum: 5 - minimum: 1 - type: integer - type: object - type: object - type: object - version: 1.19.0 diff --git a/repo/packages/kyverno.packages.kadras.io/1.15.0.yml b/repo/packages/kyverno.packages.kadras.io/1.15.0.yml deleted file mode 100644 index 853fdc0..0000000 --- a/repo/packages/kyverno.packages.kadras.io/1.15.0.yml +++ /dev/null @@ -1,182 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: kyverno.packages.kadras.io.1.15.0 -spec: - licenses: - - Apache 2.0 - refName: kyverno.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases - releasedAt: "2025-08-14T17:02:37Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-kyverno@sha256:8790305444f5ccc2cd5715aca7ef9c596db45a4edd3e891b9b5c752dfa22e4ec - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - admission_controller: - additionalProperties: false - description: Settings for the Admission Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Admission Controller. In - order to enable high availability, it should be at least 3 (2 is not - permitted). - minimum: 1 - type: integer - type: object - background_controller: - additionalProperties: false - description: Settings for the Background Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Background Controller. In - order to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - ca_cert_data: - default: "" - description: PEM-encoded certificate data to trust TLS connections with - a custom CA. - type: string - cleanup_controller: - additionalProperties: false - description: Settings for the Cleanup Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Cleanup Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - logging: - additionalProperties: false - description: Settings for logging. - properties: - encoding: - default: text - description: 'Log encoding format. Options: `text`, `json`.' - enum: - - text - - json - type: string - level: - default: 2 - description: Number of the log level verbosity (from `1` to `6`). - maximum: 6 - minimum: 1 - type: integer - type: object - metrics: - additionalProperties: false - description: Settings for metrics via Prometheus or OpenTelemetry. - properties: - collector: - default: "" - description: The endpoint where the OpenTelemetry-based collector receives - telemetry data. - type: string - type: - default: prometheus - description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) - for exporting metrics. - enum: - - grpc - - prometheus - type: string - type: object - optional_components: - additionalProperties: false - description: Settings for which Kyverno optional components to deploy. - properties: - background_controller: - default: true - description: Whether to deploy the Background Controller, responsible - for processing of generate and mutate-existing rules. - type: boolean - cleanup_controller: - default: true - description: Whether to deploy the Cleanup Controller, responsible for - processing `CleanupPolicy` resources. - type: boolean - reports_controller: - default: true - description: Whether to deploy the Reports Controller, responsible for - handling `PolicyReport` resources. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - reports_controller: - additionalProperties: false - description: Settings for the Reports Controller component. - properties: - replicas: - default: 1 - description: The number of replicas for the Reports Controller. In order - to enable high availability, it should be greater than 1. - minimum: 1 - type: integer - type: object - tracing: - additionalProperties: false - description: Settings for tracing via OpenTelemetry. - properties: - ca_cert_secret: - default: "" - description: The Secret containing the certificate which is used by - the Opentelemetry Tracing Client. If empty string is set, an insecure - connection will be used. - type: string - enabled: - default: false - description: Whether to configure Kyverno to export OpenTelemetry traces - to a distributed tracing backend. - type: boolean - endpoint: - default: "" - description: The endpoint where the distributed tracing backend accepts - OpenTelemetry traces. - type: string - port: - default: 4317 - description: The port exposed by the distributed tracing backend to - accept OpenTelemetry traces. - type: integer - type: object - type: object - version: 1.15.0 diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.16.0.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.16.0.yml deleted file mode 100644 index 25f9a79..0000000 --- a/repo/packages/rabbitmq-operator.packages.kadras.io/2.16.0.yml +++ /dev/null @@ -1,44 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: rabbitmq-operator.packages.kadras.io.2.16.0 -spec: - licenses: - - Apache 2.0 - refName: rabbitmq-operator.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases - releasedAt: "2025-08-14T17:59:56Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:8b6e5549a49b6ec947878770d4fa317c1f90a12b655db7c838cf84df9e6f0b11 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - logging: - additionalProperties: false - description: Logging configuration. - properties: - level: - default: info - description: The Operator log level. Valid options are `info` and `debug`. - enum: - - info - - debug - type: string - type: object - type: object - version: 2.16.0 From 6affdb23dad0d0a27715373472bf21191159c181 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 24 Sep 2025 18:33:06 +0200 Subject: [PATCH 599/601] docs: Update readme --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 9cd220b..fedb0d3 100644 --- a/README.md +++ b/README.md @@ -36,7 +36,7 @@ This repository contains the following Carvel packages. ### Prerequisites -* Kubernetes 1.31+ +* Kubernetes 1.32+ * Carvel [`kctrl`](https://carvel.dev/kapp-controller/docs/latest/install/#installing-kapp-controller-cli-kctrl) CLI. * Carvel [kapp-controller](https://carvel.dev/kapp-controller) deployed in your Kubernetes cluster. You can install it with Carvel [`kapp`](https://carvel.dev/kapp/docs/latest/install) (recommended choice) or `kubectl`. From 8f7de1955616366b9b7cf99bffd12c8bfe0b2d6e Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 24 Sep 2025 18:33:18 +0200 Subject: [PATCH 600/601] Release version 0.27.0 --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 69837ed..006812c 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -5,7 +5,7 @@ on: env: REGISTRY: ghcr.io IMAGE_NAME: ${{ github.repository }} - VERSION: 0.26.0 + VERSION: 0.27.0 jobs: build: From 628af22b9d818f29f18d6b9391ec213fa40e0501 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 24 Nov 2025 07:19:18 +0100 Subject: [PATCH 601/601] deps: bump actions/checkout from 5.0.0 to 6.0.0 (#516) --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 006812c..b98fffa 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,7 +19,7 @@ jobs: image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code - uses: actions/checkout@v5.0.0 + uses: actions/checkout@v6.0.0 - name: Set up Carvel uses: carvel-dev/setup-action@v2.0.1