From f0d10ec014fd22fdef99acb0405796d58bb99cc6 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 25 Sep 2024 22:16:25 +0000 Subject: [PATCH 01/15] deps: bump actions/checkout from 4.1.7 to 4.2.0 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.1.7 to 4.2.0. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4.1.7...v4.2.0) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 104a644..47372d2 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,7 +19,7 @@ jobs: image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code - uses: actions/checkout@v4.1.7 + uses: actions/checkout@v4.2.0 - name: Set up Carvel uses: carvel-dev/setup-action@v2.0.1 From e6233aad7908283256628369b43546d2336f12d9 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Sun, 6 Oct 2024 22:51:29 +0000 Subject: [PATCH 02/15] deps: bump sigstore/cosign-installer from 3.6.0 to 3.7.0 Bumps [sigstore/cosign-installer](https://github.com/sigstore/cosign-installer) from 3.6.0 to 3.7.0. - [Release notes](https://github.com/sigstore/cosign-installer/releases) - [Commits](https://github.com/sigstore/cosign-installer/compare/v3.6.0...v3.7.0) --- updated-dependencies: - dependency-name: sigstore/cosign-installer dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 47372d2..fef815e 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -87,7 +87,7 @@ jobs: IMAGE_DIGEST: ${{ needs.build.outputs.image-digest }} steps: - name: Install Cosign - uses: sigstore/cosign-installer@v3.6.0 + uses: sigstore/cosign-installer@v3.7.0 - name: Log into container registry uses: redhat-actions/podman-login@v1.7 From 95e53afecb0f3ca01afe9c68a1cbc649edf8de7f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 7 Oct 2024 22:56:55 +0000 Subject: [PATCH 03/15] deps: bump actions/checkout from 4.2.0 to 4.2.1 Bumps [actions/checkout](https://github.com/actions/checkout) from 4.2.0 to 4.2.1. - [Release notes](https://github.com/actions/checkout/releases) - [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md) - [Commits](https://github.com/actions/checkout/compare/v4.2.0...v4.2.1) --- updated-dependencies: - dependency-name: actions/checkout dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] --- .github/workflows/release.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index fef815e..0123c60 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -19,7 +19,7 @@ jobs: image-digest: ${{ steps.image-info.outputs.image_digest }} steps: - name: Checkout source code - uses: actions/checkout@v4.2.0 + uses: actions/checkout@v4.2.1 - name: Set up Carvel uses: carvel-dev/setup-action@v2.0.1 From 172c2087e0249ef7e7bb6ac189422b6b978b7256 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 17:07:17 +0200 Subject: [PATCH 04/15] Update Kyverno metadata and add version 1.12.6 (#435) Co-authored-by: github-actions --- .../kyverno.packages.kadras.io/1.12.6.yml | 182 ++++++++++++++++++ 1 file changed, 182 insertions(+) create mode 100644 repo/packages/kyverno.packages.kadras.io/1.12.6.yml diff --git a/repo/packages/kyverno.packages.kadras.io/1.12.6.yml b/repo/packages/kyverno.packages.kadras.io/1.12.6.yml new file mode 100644 index 0000000..2125e49 --- /dev/null +++ b/repo/packages/kyverno.packages.kadras.io/1.12.6.yml @@ -0,0 +1,182 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: kyverno.packages.kadras.io.1.12.6 +spec: + licenses: + - Apache 2.0 + refName: kyverno.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-kyverno/releases + releasedAt: "2024-10-23T15:04:55Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-kyverno@sha256:91dd7f089bcb66795555269a8b72cd4cb77e21aa62c8677af0aa8ea2aa9db66d + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + admission_controller: + additionalProperties: false + description: Settings for the Admission Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Admission Controller. In + order to enable high availability, it should be at least 3 (2 is not + permitted). + minimum: 1 + type: integer + type: object + background_controller: + additionalProperties: false + description: Settings for the Background Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Background Controller. In + order to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cleanup_controller: + additionalProperties: false + description: Settings for the Cleanup Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Cleanup Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: text + description: 'Log encoding format. Options: `text`, `json`.' + enum: + - text + - json + type: string + level: + default: 2 + description: Number of the log level verbosity (from `1` to `6`). + maximum: 6 + minimum: 1 + type: integer + type: object + metrics: + additionalProperties: false + description: Settings for metrics via Prometheus or OpenTelemetry. + properties: + collector: + default: "" + description: The endpoint where the OpenTelemetry-based collector receives + telemetry data. + type: string + type: + default: prometheus + description: Whether to use OpenTelemetry (`grpc`) or Prometheus (`prometheus`) + for exporting metrics. + enum: + - grpc + - prometheus + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Kyverno optional components to deploy. + properties: + background_controller: + default: true + description: Whether to deploy the Background Controller, responsible + for processing of generate and mutate-existing rules. + type: boolean + cleanup_controller: + default: true + description: Whether to deploy the Cleanup Controller, responsible for + processing `CleanupPolicy` resources. + type: boolean + reports_controller: + default: true + description: Whether to deploy the Reports Controller, responsible for + handling `PolicyReport` resources. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + reports_controller: + additionalProperties: false + description: Settings for the Reports Controller component. + properties: + replicas: + default: 1 + description: The number of replicas for the Reports Controller. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + tracing: + additionalProperties: false + description: Settings for tracing via OpenTelemetry. + properties: + ca_cert_secret: + default: "" + description: The Secret containing the certificate which is used by + the Opentelemetry Tracing Client. If empty string is set, an insecure + connection will be used. + type: string + enabled: + default: false + description: Whether to configure Kyverno to export OpenTelemetry traces + to a distributed tracing backend. + type: boolean + endpoint: + default: "" + description: The endpoint where the distributed tracing backend accepts + OpenTelemetry traces. + type: string + port: + default: 4317 + description: The port exposed by the distributed tracing backend to + accept OpenTelemetry traces. + type: integer + type: object + type: object + version: 1.12.6 From 3aea3cdf72b2f442069f342e13eab98c6da3c907 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 17:21:24 +0200 Subject: [PATCH 05/15] Update cert-manager metadata and add version 1.16.1 (#436) Co-authored-by: github-actions --- .../1.16.1.yml | 207 ++++++++++++++++++ 1 file changed, 207 insertions(+) create mode 100644 repo/packages/cert-manager.packages.kadras.io/1.16.1.yml diff --git a/repo/packages/cert-manager.packages.kadras.io/1.16.1.yml b/repo/packages/cert-manager.packages.kadras.io/1.16.1.yml new file mode 100644 index 0000000..1feb187 --- /dev/null +++ b/repo/packages/cert-manager.packages.kadras.io/1.16.1.yml @@ -0,0 +1,207 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: cert-manager.packages.kadras.io.1.16.1 +spec: + licenses: + - Apache 2.0 + refName: cert-manager.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases + releasedAt: "2024-10-23T15:19:13Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-cert-manager@sha256:0c1c909ffebaf302aef55684dc5fb20907bad141b50a5482c301cb0c2aeb573b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cainjector: + additionalProperties: false + description: Settings for the cainjector controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + description: Settings for the cert-manager controller. + properties: + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + 2 replicas are recommended. + minimum: 1 + type: integer + type: object + leader_election: + additionalProperties: false + description: Leader election configuration for the cert-manager and cert-manager-cainjector + Deployments. + properties: + namespace: + default: kube-system + description: 'Namespace used to perform leader election. The default + namespace needs changing in environments like GKE. More information: + https://cert-manager.io/docs/installation/compatibility.' + minLength: 1 + type: string + type: object + letsencrypt: + additionalProperties: false + description: Settings for Let's Encrypt. + properties: + challenge: + additionalProperties: false + properties: + dns_provider: + default: digital_ocean + description: 'The DNS provider to use for the ACME dns01 challenge. + Valid options: `digital_ocean`.' + enum: + - digital_ocean + type: string + secret: + additionalProperties: false + properties: + key: + default: "" + description: The key within the Secret that contains the credentials + needed for the dns01 challenge. + type: string + name: + default: "" + description: Name of the Secret containing the credentials needed + for the dns01 challenge. + type: string + namespace: + default: kadras-system + description: Namespace containing the Secret with the credentials + needed for the dns01 challenge. + type: string + type: object + type: + default: http01 + description: 'The type of challenge used by the ACME CA Server. + Valid options: `http01`, `dns01`.' + enum: + - http01 + - dns01 + type: string + type: object + email: + default: "" + description: The email address that Let's Encrypt will use to send info + on expiring certificates or other issues. + type: string + include: + default: false + description: Whether to include a ClusterIssuer for Let's Encrypt. + type: boolean + production: + default: false + description: Whether to use Let's Encrypt staging (recommended for non-production + environments) or production. + type: boolean + type: object + namespace: + default: cert-manager + description: The namespace in which to deploy cert-manager. + minLength: 1 + type: string + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + private_pki: + additionalProperties: false + description: Settings for the built-in, private PKI + properties: + include: + default: true + description: Whether to include a ClusterIssuer for a private PKI. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + webhook: + additionalProperties: false + description: Settings for the cert-manager webhook. + properties: + host_network: + default: false + description: 'Whether to run the webhook in the host network so that + it can be reached by the cert-manager controller in environments like + AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' + type: boolean + loglevel: + default: 2 + description: Number of the log level verbosity. + maximum: 5 + minimum: 1 + type: integer + replicas: + default: 1 + description: The number of replicas. In order to enable high availability, + at least 3 replicas are recommended. + minimum: 1 + type: integer + secure_port: + default: 6443 + description: 'The port where the webhook is exposed. The default port + needs changing in environments like AWS EKS and AWS Fargate. More + information: https://cert-manager.io/docs/installation/compatibility.' + type: integer + type: object + type: object + version: 1.16.1 From 66b1467dcd80405968be6cda5aa94054a9d3b115 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 17:36:09 +0200 Subject: [PATCH 06/15] Update Knative Serving metadata and add version 1.16.0 (#437) Co-authored-by: github-actions --- .../1.16.0.yml | 304 ++++++++++++++++++ 1 file changed, 304 insertions(+) create mode 100644 repo/packages/knative-serving.packages.kadras.io/1.16.0.yml diff --git a/repo/packages/knative-serving.packages.kadras.io/1.16.0.yml b/repo/packages/knative-serving.packages.kadras.io/1.16.0.yml new file mode 100644 index 0000000..b8d7f1d --- /dev/null +++ b/repo/packages/knative-serving.packages.kadras.io/1.16.0.yml @@ -0,0 +1,304 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: knative-serving.packages.kadras.io.1.16.0 +spec: + capacityRequirementsDescription: For prototyping purposes, one-node cluster that + has at least 3 CPUs and 4 GB of memory. For production purposes, if you have only + one node, at least 6 CPUs, 6 GB of memory, and 30 GB of disk storage. If you have + multiple nodes, for each node at least 2 CPUs, 4 GB of memory, and 20 GB of disk + storage. + licenses: + - Apache 2.0 + refName: knative-serving.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-knative-serving/releases + releasedAt: "2024-10-23T15:34:31Z" + template: + spec: + deploy: + - kapp: + rawOptions: + - --wait-timeout=5m + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-knative-serving@sha256:d06089096467bb462741a0ba3ea90b0153785fa0fbe90307c666215eec19d393 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + config: + additionalProperties: false + description: Settings for the Knative Serving ConfigMaps. + properties: + deployment: + additionalProperties: false + description: Deployment configuration stored in the `config-deployment` + ConfigMap. + properties: + progress-deadline: + default: 600s + description: The duration to wait for the deployment to be ready + before considering it failed. + type: string + queue-sidecar-cpu-limit: + default: 1000m + description: The queue proxy's CPU limit. If omitted, a default + value (currently `1000m`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-cpu-request: + default: 25m + description: The queue proxy's CPU request. If omitted, a default + value (currently '25m'), is used. + type: string + queue-sidecar-memory-limit: + default: 200Mi + description: The queue proxy's memory limit. If omitted, a default + value (currently `800Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + queue-sidecar-memory-request: + default: 50Mi + description: The queue proxy's memory request. If omitted, a default + value (currently `400Mi`), is used when `queueproxy.resource-defaults` + is set to `Enabled`. + type: string + type: object + network: + additionalProperties: false + description: Network configuration stored in the `config-network` ConfigMap. + properties: + default-external-scheme: + default: http + description: Defines the scheme used for external URLs if autoTLS + is not enabled. This can be used for making Knative report all + URLs as `https`, for example, if you're fronting Knative with + an external loadbalancer that deals with TLS termination and Knative + doesn't know about that otherwise. + enum: + - http + - https + type: string + domain-template: + default: '{{.Name}}.{{.Namespace}}.{{.Domain}}' + description: The golang text template string to use when constructing + the Knative Service's DNS name. + type: string + http-protocol: + default: Redirected + description: 'Controls the behavior of the HTTP endpoint for the + Knative ingress. `Enabled`: The Knative ingress will be able to + serve HTTP connection. `Redirected`: The Knative ingress will + send a 301 redirect for all http connections, asking the clients + to use HTTPS.' + enum: + - Enabled + - Redirected + type: string + namespace-wildcard-cert-selector: + default: "" + description: A LabelSelector which determines which namespaces should + have a wildcard certificate provisioned. + type: string + rollout-duration: + default: 0 + description: The minimal duration in seconds over which the Configuration + traffic targets are rolled out to the newest revision. + minimum: 0 + type: integer + type: object + tracing: + additionalProperties: false + description: Network configuration stored in the `config-tracing` ConfigMap. + properties: + backend: + default: none + description: The type of distributed tracing backend. + enum: + - zipkin + - none + type: string + debug: + default: "false" + description: Enable the Zipkin debug mode. This allows all spans + to be sent to the server bypassing sampling. + enum: + - "true" + - "false" + type: string + sample-rate: + default: "0.1" + description: The percentage (0-1) of requests to trace. + maxLength: 3 + minLength: 1 + type: string + zipkin-endpoint: + default: http://tempo.observability-system.svc.cluster.local:9411/api/v2/spans + description: The Zipkin collector endpoint where traces are sent. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Knative Services. It must be a valid DNS name. + Stored in the `config-domain` ConfigMap. + minLength: 4 + type: string + ingress: + additionalProperties: false + description: Settings for the Ingress controller. + properties: + contour: + additionalProperties: false + description: Ingress configuration stored in the `config-contour` ConfigMap. + properties: + default-tls-secret: + default: "" + description: If auto-TLS is disabled, fallback to this certificate. + An operator is required to setup a TLSCertificateDelegation for + this Secret to be used. + type: string + external: + additionalProperties: false + description: Configuration for the external Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the external Ingress controller + is installed. + minLength: 1 + type: string + type: object + internal: + additionalProperties: false + description: Configuration for the internal Ingress controller + properties: + namespace: + default: projectcontour + description: The namespace where the internal Ingress controller + is installed. + minLength: 1 + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use if you want to enable + autoTLS. Stored in the `config-certmanager` ConfigMap. + example: kadras-ca-issuer + type: string + x-example-description: Kadras private CA + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use a proxy. + type: string + type: object + workloads: + additionalProperties: false + description: Settings for the Knative Serving workloads. + properties: + activator: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 20 + minimum: 1 + type: integer + type: object + autoscaler: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + controller: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + domain_mapping_webhook: + additionalProperties: false + properties: + replicas: + default: 1 + description: The number of replicas for this Deployment. In order + to enable high availability, it should be greater than 1. + minimum: 1 + type: integer + type: object + webhook: + additionalProperties: false + properties: + minReplicas: + default: 1 + description: The minimum number of replicas as controlled by a HorizontalPodAutoscaler. + In order to enable high availability, it should be greater than + 1. + maximum: 5 + minimum: 1 + type: integer + type: object + type: object + type: object + version: 1.16.0 From 55c8559561871f0819cdfa65cef8a45b9c12821c Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 17:41:36 +0200 Subject: [PATCH 07/15] Update PostgreSQL Operator metadata and add version 1.24.1 (#438) Co-authored-by: github-actions --- .../1.24.1.yml | 31 +++++++++++++++++++ 1 file changed, 31 insertions(+) create mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml diff --git a/repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml b/repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml new file mode 100644 index 0000000..bcd1ea6 --- /dev/null +++ b/repo/packages/postgresql-operator.packages.kadras.io/1.24.1.yml @@ -0,0 +1,31 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: postgresql-operator.packages.kadras.io.1.24.1 +spec: + licenses: + - Apache 2.0 + refName: postgresql-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-postgresql-operator/releases + releasedAt: "2024-10-23T15:40:03Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-postgresql-operator@sha256:feac04e108012c264ba5d2932a5c05c129e9c367f45ee9233b642593c7356755 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + default: null + nullable: true + version: 1.24.1 From 668ea81fb385989b5e098b8a1df363d277830435 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 17:53:58 +0200 Subject: [PATCH 08/15] Update RabbitMQ Operator metadata and add version 2.11.0 (#439) Co-authored-by: github-actions --- .../2.11.0.yml | 44 +++++++++++++++++++ 1 file changed, 44 insertions(+) create mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml diff --git a/repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml b/repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml new file mode 100644 index 0000000..e9476b6 --- /dev/null +++ b/repo/packages/rabbitmq-operator.packages.kadras.io/2.11.0.yml @@ -0,0 +1,44 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: rabbitmq-operator.packages.kadras.io.2.11.0 +spec: + licenses: + - Apache 2.0 + refName: rabbitmq-operator.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-rabbitmq-operator/releases + releasedAt: "2024-10-23T15:52:14Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-rabbitmq-operator@sha256:b510e8dd5b1da589f69fcf9882f0f0444840f32fac66d088f1cafc78aef6d1d4 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Logging configuration. + properties: + level: + default: info + description: The Operator log level. Valid options are `info` and `debug`. + enum: + - info + - debug + type: string + type: object + type: object + version: 2.11.0 From 64034eef5180bf8b06209b39794b5a30fe925420 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 17:59:06 +0200 Subject: [PATCH 09/15] Update Dependency Track metadata and add version 4.12.0 (#440) Co-authored-by: github-actions --- .../4.12.0.yml | 211 ++++++++++++++++++ 1 file changed, 211 insertions(+) create mode 100644 repo/packages/dependency-track.packages.kadras.io/4.12.0.yml diff --git a/repo/packages/dependency-track.packages.kadras.io/4.12.0.yml b/repo/packages/dependency-track.packages.kadras.io/4.12.0.yml new file mode 100644 index 0000000..e213497 --- /dev/null +++ b/repo/packages/dependency-track.packages.kadras.io/4.12.0.yml @@ -0,0 +1,211 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: dependency-track.packages.kadras.io.4.12.0 +spec: + licenses: + - Apache 2.0 + refName: dependency-track.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases + releasedAt: "2024-10-23T15:53:31Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-dependency-track@sha256:0097ca41b942d4d3132c7b6b5d40879015b1ec2a7db1076aaf814bfa990f281b + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + api_server: + additionalProperties: false + description: Settings for the API Server component. + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + format: + default: console + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `warn`, `error`.' + enum: + - trace + - debug + - info + - warn + - error + type: string + type: object + metrics: + additionalProperties: false + description: Settings for metrics. + properties: + enabled: + default: true + description: Whether to enable the generation of Prometheus metrics. + type: boolean + type: object + resources: + additionalProperties: false + description: Resource configuration for the API Server component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: "4" + description: CPU limits configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory limits configuration for the API Server + component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: "0.5" + description: CPU requests configuration for the API Server component. + type: string + memory: + default: 5Gi + description: Memory requests configuration for the API Server + component. + type: string + type: object + type: object + storage: + additionalProperties: false + description: Storage configuration for the API Server component. + properties: + class_name: + default: "" + description: Class name for the PersistenceVolume to create. + type: string + size: + default: 1Gi + description: Size of the PersistenceVolume to create. + type: string + type: object + type: object + domain_name: + default: "" + description: Domain name for Dependency Track. It must be a valid DNS name. + minLength: 4 + type: string + frontend: + additionalProperties: false + description: Settings for the Frontend component. + properties: + replicas: + default: 1 + description: The number of Frontend replicas. In order to enable high + availability, it should be greater than 1. + minimum: 1 + type: integer + resources: + additionalProperties: false + description: Resource configuration for the Frontend component. + properties: + limits: + additionalProperties: false + properties: + cpu: + default: 500m + description: CPU limits configuration for the Frontend component. + type: string + memory: + default: 128Mi + description: Memory limits configuration for the Frontend component. + type: string + type: object + requests: + additionalProperties: false + properties: + cpu: + default: 150m + description: CPU requests configuration for the Frontend component. + type: string + memory: + default: 64Mi + description: Memory requests configuration for the Frontend + component. + type: string + type: object + type: object + type: object + ingress_issuer: + default: "" + description: A reference to the ClusterIssuer to use for enabling TLS in + Dependency Track. + example: kadras-ca-issuer + minLength: 4 + type: string + x-example-description: Kadras private CA + postgresql: + additionalProperties: false + description: Settings for the PostgreSQL database. + properties: + instances: + default: 1 + description: Number of instances for the PostgreSQL database cluster. + Define at least 3 for production scenarios. + minimum: 1 + type: integer + storage: + additionalProperties: false + description: Storage configuration for each PostgreSQL instance. + properties: + size: + default: 1Gi + description: Size of the PersistenceVolume to create for each PostgreSQL + instance. + type: string + type: object + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + system_requirement_check: + default: true + description: Whether Dependency Track will check for memory and CPU requirements + at startup time. + type: boolean + type: object + version: 4.12.0 From ceb6f4f20b1ec35a662df3bb349cc855aaa2c9f5 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 18:03:59 +0200 Subject: [PATCH 10/15] Update Crossplane metadata and add version 1.17.1+kadras.1 (#441) Co-authored-by: github-actions --- .../1.17.1+kadras.1.yml | 377 ++++++++++++++++++ 1 file changed, 377 insertions(+) create mode 100644 repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml diff --git a/repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml b/repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml new file mode 100644 index 0000000..38533e8 --- /dev/null +++ b/repo/packages/crossplane.packages.kadras.io/1.17.1+kadras.1.yml @@ -0,0 +1,377 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: crossplane.packages.kadras.io.1.17.1+kadras.1 +spec: + refName: crossplane.packages.kadras.io + releasedAt: "2024-10-23T16:01:40Z" + template: + spec: + deploy: + - kapp: + intoNs: crossplane-system + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-crossplane@sha256:86bb758e3c81f0afa16711da1c6914cf05c5dfea1bf577cb19d3b9bf1793c511 + template: + - helmTemplate: + name: crossplane + namespace: crossplane-system + path: config/helm/upstream/crossplane + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + affinity: + default: {} + description: Add `affinities` to the Crossplane pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the Crossplane pod. + items: {} + type: array + configuration: + properties: + packages: + default: [] + description: A list of Configuration packages to install. + items: {} + type: array + type: object + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane pod deployment. + type: object + customLabels: + default: {} + description: Add custom `labels` to the Crossplane pod deployment. + type: object + deploymentStrategy: + default: RollingUpdate + description: The deployment strategy for the Crossplane and RBAC Manager + pods. + type: string + dnsPolicy: + default: "" + description: Specify the `dnsPolicy` to be used by the Crossplane pod. + type: string + extraEnvVarsCrossplane: + default: {} + description: Add custom environmental variables to the Crossplane pod deployment. + Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` + becomes `SAMPLE_KEY=value1`. + type: object + extraEnvVarsRBACManager: + default: {} + description: Add custom environmental variables to the RBAC Manager pod + deployment. Replaces any `.` in a variable name with `_`. For example, + `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. + type: object + extraObjects: + default: [] + description: To add arbitrary Kubernetes Objects during a Helm Install + items: {} + type: array + extraVolumeMountsCrossplane: + default: {} + description: Add custom `volumeMounts` to the Crossplane pod. + type: object + extraVolumesCrossplane: + default: {} + description: Add custom `volumes` to the Crossplane pod. + type: object + function: + properties: + packages: + default: [] + description: A list of Function packages to install + items: {} + type: array + type: object + hostNetwork: + default: false + description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: + enabling `hostNetwork` grants the Crossplane Pod access to the host network + namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' + type: boolean + image: + properties: + pullPolicy: + default: IfNotPresent + description: The image pull policy used for Crossplane and RBAC Manager + pods. + type: string + repository: + default: xpkg.upbound.io/crossplane/crossplane + description: Repository for the Crossplane pod image. + type: string + tag: + default: "" + description: The Crossplane image tag. Defaults to the value of `appVersion` + in `Chart.yaml`. + type: string + type: object + imagePullSecrets: + default: [] + description: The imagePullSecret names to add to the Crossplane ServiceAccount. + items: {} + type: array + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the Crossplane pod. + type: boolean + metrics: + properties: + enabled: + default: false + description: Enable Prometheus path, port and scrape annotations and + expose port 8080 for both the Crossplane and RBAC Manager pods. + type: boolean + type: object + nodeSelector: + default: {} + description: Add `nodeSelectors` to the Crossplane pod deployment. + type: object + packageCache: + properties: + configMap: + default: "" + description: The name of a ConfigMap to use as the package cache. Disables + the default package cache `emptyDir` Volume. + type: string + medium: + default: "" + description: Set to `Memory` to hold the package cache in a RAM backed + file system. Useful for Crossplane development. + type: string + pvc: + default: "" + description: The name of a PersistentVolumeClaim to use as the package + cache. Disables the default package cache `emptyDir` Volume. + type: string + sizeLimit: + default: 20Mi + description: The size limit for the package cache. If medium is `Memory` + the `sizeLimit` can't exceed Node memory. + type: string + type: object + podSecurityContextCrossplane: + default: {} + description: Add a custom `securityContext` to the Crossplane pod. + type: object + podSecurityContextRBACManager: + default: {} + description: Add a custom `securityContext` to the RBAC Manager pod. + type: object + priorityClassName: + default: "" + description: The PriorityClass name to apply to the Crossplane and RBAC + Manager pods. + type: string + provider: + properties: + packages: + default: [] + description: A list of Provider packages to install. + items: {} + type: array + type: object + rbacManager: + properties: + affinity: + default: {} + description: Add `affinities` to the RBAC Manager pod deployment. + type: object + args: + default: [] + description: Add custom arguments to the RBAC Manager pod. + items: {} + type: array + deploy: + default: true + description: Deploy the RBAC Manager pod and its required roles. + type: boolean + leaderElection: + default: true + description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) + for the RBAC Manager pod. + type: boolean + nodeSelector: + default: {} + description: Add `nodeSelectors` to the RBAC Manager pod deployment. + type: object + replicas: + default: 1 + description: The number of RBAC Manager pod `replicas` to deploy. + type: integer + skipAggregatedClusterRoles: + default: false + description: Don't install aggregated Crossplane ClusterRoles. + type: boolean + tolerations: + default: [] + description: Add `tolerations` to the RBAC Manager pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the RBAC Manager pod + deployment. + items: {} + type: array + type: object + registryCaBundleConfig: + properties: + key: + default: "" + description: The ConfigMap key containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + name: + default: "" + description: The ConfigMap name containing a custom CA bundle to enable + fetching packages from registries with unknown or untrusted certificates. + type: string + type: object + replicas: + default: 1 + description: helm-docs renders these comments into markdown. Use markdown + formatting where appropiate. -- The number of Crossplane pod `replicas` + to deploy. + type: integer + resourcesCrossplane: + properties: + limits: + properties: + cpu: + default: 500m + description: CPU resource limits for the Crossplane pod. + type: string + memory: + default: 1024Mi + description: Memory resource limits for the Crossplane pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the Crossplane pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the Crossplane pod. + type: string + type: object + type: object + resourcesRBACManager: + properties: + limits: + properties: + cpu: + default: 100m + description: CPU resource limits for the RBAC Manager pod. + type: string + memory: + default: 512Mi + description: Memory resource limits for the RBAC Manager pod. + type: string + type: object + requests: + properties: + cpu: + default: 100m + description: CPU resource requests for the RBAC Manager pod. + type: string + memory: + default: 256Mi + description: Memory resource requests for the RBAC Manager pod. + type: string + type: object + type: object + securityContextCrossplane: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the Crossplane pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the Crossplane pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the Crossplane pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the Crossplane pod. + type: integer + type: object + securityContextRBACManager: + properties: + allowPrivilegeEscalation: + default: false + description: Enable `allowPrivilegeEscalation` for the RBAC Manager + pod. + type: boolean + readOnlyRootFilesystem: + default: true + description: Set the RBAC Manager pod root file system as read-only. + type: boolean + runAsGroup: + default: 65532 + description: The group ID used by the RBAC Manager pod. + type: integer + runAsUser: + default: 65532 + description: The user ID used by the RBAC Manager pod. + type: integer + type: object + service: + properties: + customAnnotations: + default: {} + description: Configure annotations on the service object. Only enabled + when webhooks.enabled = true + type: object + type: object + serviceAccount: + properties: + customAnnotations: + default: {} + description: Add custom `annotations` to the Crossplane ServiceAccount. + type: object + type: object + tolerations: + default: [] + description: Add `tolerations` to the Crossplane pod deployment. + items: {} + type: array + topologySpreadConstraints: + default: [] + description: Add `topologySpreadConstraints` to the Crossplane pod deployment. + items: {} + type: array + webhooks: + properties: + enabled: + default: true + description: Enable webhooks for Crossplane and installed Provider packages. + type: boolean + type: object + type: object + version: 1.17.1+kadras.1 From 3b6e761d24072309d9f1665d04fd0925a6654d68 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 18:13:17 +0200 Subject: [PATCH 11/15] Update Flux metadata and add version 2.4.0 (#442) Co-authored-by: github-actions --- .../flux.packages.kadras.io/2.4.0.yml | 107 ++++++++++++++++++ 1 file changed, 107 insertions(+) create mode 100644 repo/packages/flux.packages.kadras.io/2.4.0.yml diff --git a/repo/packages/flux.packages.kadras.io/2.4.0.yml b/repo/packages/flux.packages.kadras.io/2.4.0.yml new file mode 100644 index 0000000..cff6420 --- /dev/null +++ b/repo/packages/flux.packages.kadras.io/2.4.0.yml @@ -0,0 +1,107 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: flux.packages.kadras.io.2.4.0 +spec: + licenses: + - Apache 2.0 + refName: flux.packages.kadras.io + releaseNotes: https://github.com/kadras-io/package-for-flux/releases + releasedAt: "2024-10-23T16:04:56Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-flux@sha256:ea9f89ec94bb44794e7262931247c0d69a5026f70c82bc0299f37c55107f6fb6 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + logging: + additionalProperties: false + description: Settings for logging. + properties: + encoding: + default: json + description: 'Log encoding format. Options: `console`, `json`.' + enum: + - console + - json + type: string + level: + default: info + description: 'Log verbosity level. Options: `trace`, `debug`, `info`, + `error`.' + enum: + - trace + - debug + - info + - error + type: string + type: object + optional_components: + additionalProperties: false + description: Settings for which Flux optional components to deploy. + properties: + helm_controller: + default: false + description: Whether to deploy the Helm Controller. + type: boolean + image_automation_controller: + default: false + description: Whether to deploy the Image Automation Controller. + type: boolean + image_reflector_controller: + default: false + description: Whether to deploy the Image Reflector Controller. + type: boolean + kustomize_controller: + default: true + description: Whether to deploy the Kustomize Controller. + type: boolean + notification_controller: + default: false + description: Whether to deploy the Notification Controller. + type: boolean + type: object + policies: + additionalProperties: false + description: Settings for the Kyverno policies. + properties: + include: + default: false + description: Whether to include the out-of-the-box Kyverno policies + to validate and secure the package installation. + type: boolean + type: object + proxy: + additionalProperties: false + description: Settings for the corporate proxy. + properties: + http_proxy: + default: "" + description: The HTTP proxy to use for network traffic. + type: string + https_proxy: + default: "" + description: The HTTPS proxy to use for network traffic. + type: string + no_proxy: + default: "" + description: A comma-separated list of hostnames, IP addresses, or IP + ranges in CIDR format that should not use the proxy. + type: string + type: object + type: object + version: 2.4.0 From ec89016bca2a20c1849b897f1a687726af8dcb74 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 18:49:15 +0200 Subject: [PATCH 12/15] Update Kadras Developer Portal metadata and add version 0.4.0 (#443) Co-authored-by: github-actions --- .../0.4.0.yml | 607 ++++++++++++++++++ 1 file changed, 607 insertions(+) create mode 100644 repo/packages/developer-portal.packages.kadras.io/0.4.0.yml diff --git a/repo/packages/developer-portal.packages.kadras.io/0.4.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.4.0.yml new file mode 100644 index 0000000..8f6c805 --- /dev/null +++ b/repo/packages/developer-portal.packages.kadras.io/0.4.0.yml @@ -0,0 +1,607 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: developer-portal.packages.kadras.io.0.4.0 +spec: + refName: developer-portal.packages.kadras.io + releasedAt: "2024-10-23T16:46:38Z" + template: + spec: + deploy: + - kapp: + intoNs: backstage + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/package-for-developer-portal@sha256:f9c1dd9e16caddeb91ca1cad1525969e4fa986eefb7e36c51dfcba99c65fdfd0 + template: + - helmTemplate: + name: backstage + namespace: backstage + path: config/helm/upstream/backstage + valuesFrom: + - path: config/helm/values.yml + - ytt: + ignoreUnknownComments: true + paths: + - '-' + - config/carvel + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + properties: + backstage: + description: Backstage parameters @default -- See below + properties: + affinity: + default: {} + description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' + type: object + annotations: + default: {} + description: Additional custom annotations for the `Deployment` resource + type: object + appConfig: + default: {} + description: 'Allows to define the appConfig as a multiline string that + generates a ConfigMap automatically, not requiring to have it pre + provisioned as with the extraAppConfig key. DO NOT USE if you need + to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: + https://somedomain.tld -- Generates ConfigMap and configures it in + the Backstage pods' + type: object + args: + default: [] + description: Backstage container command arguments + items: {} + type: array + command: + default: [] + description: Backstage container command + items: + default: node + type: string + type: array + containerPorts: + description: Container ports on the Deployment + properties: + backend: + default: 7007 + type: integer + type: object + containerSecurityContext: + default: {} + description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' + type: object + extraAppConfig: + default: [] + description: Extra app configuration files to inline into command arguments + items: {} + type: array + extraContainers: + default: [] + description: Deployment sidecars + items: {} + type: array + extraEnvVars: + default: [] + description: Backstage container environment variables + items: {} + type: array + extraEnvVarsCM: + default: [] + description: Backstage container environment variables from existing + ConfigMaps + items: {} + type: array + extraEnvVarsSecrets: + default: [] + description: Backstage container environment variables from existing + Secrets + items: {} + type: array + extraVolumeMounts: + default: [] + description: Backstage container additional volume mounts + items: {} + type: array + extraVolumes: + default: [] + description: Backstage container additional volumes + items: {} + type: array + image: + properties: + digest: + default: "" + description: Backstage image digest (digest takes precedence over + image tag) + type: string + pullPolicy: + default: Always + description: 'Specify a imagePullPolicy. Defaults to ''Always'' + if image tag is ''latest'', else set to ''IfNotPresent''
+ Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' + type: string + pullSecrets: + default: [] + description: 'Optionally specify an array of imagePullSecrets. Secrets + must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ +
E.g: `pullSecrets: [myRegistryKeySecretName]`' + items: {} + type: array + registry: + default: ghcr.io + description: Backstage image registry + type: string + repository: + default: backstage/backstage + description: Backstage image repository + type: string + tag: + default: latest + description: Backstage image tag (immutable tags are recommended) + type: string + type: object + initContainers: + default: [] + description: Backstage container init containers + items: {} + type: array + installDir: + default: /app + description: Directory containing the backstage installation + type: string + livenessProbe: + description: 'Liveness Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + type: object + revisionHistoryLimit: + default: 10 + description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) + to be kept. May be set to 0 in case of GitOps deployment approach. + type: integer + startupProbe: + description: 'Startup Probe Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes + ' + items: {} + type: array + extraTls: + default: [] + description: 'The TLS configuration for additional hostnames to be covered + with this ingress record.
Ref: https://kubernetes.io/docs/concepts/services-networking/ingress/#tls + ' + items: {} + type: array + host: + default: "" + description: 'Hostname to be used to expose the route to access the + backstage application (e.g: backstage.IP.nip.io)' + type: string + path: + default: / + description: 'Path to be used to expose the full route to access the + backstage application (e.g: IP.nip.io/backstage)' + type: string + tls: + description: Ingress TLS parameters + properties: + enabled: + default: false + description: Enable TLS configuration for the host defined at `ingress.host` + parameter + type: boolean + secretName: + default: "" + description: The name to which the TLS Secret will be called + type: string + type: object + type: object + kubeVersion: + default: "" + description: |- + Common parameters + -- Override Kubernetes version + type: string + metrics: + description: Metrics configuration + properties: + serviceMonitor: + description: ServiceMonitor configuration
Allows configuring + your backstage instance as a scrape target for [Prometheus](https://github.com/prometheus/prometheus) + using a ServiceMonitor custom resource that [Prometheus Operator](https://github.com/prometheus-operator/prometheus-operator) + can understand. + properties: + annotations: + default: {} + description: ServiceMonitor annotations + type: object + enabled: + default: false + description: If enabled, a ServiceMonitor resource for Prometheus + Operator is created
Prometheus Operator must be installed + in your cluster prior to enabling. + type: boolean + interval: + default: "null" + description: ServiceMonitor scrape interval + type: "null" + labels: + default: {} + description: Additional ServiceMonitor labels + type: object + path: + default: /metrics + description: ServiceMonitor endpoint path
Note that the /metrics + endpoint is NOT present in a freshly scaffolded Backstage app. + To setup, follow the [Prometheus metrics tutorial](https://github.com/backstage/backstage/blob/master/contrib/docs/tutorials/prometheus-metrics.md). + type: string + type: object + type: object + nameOverride: + default: "" + description: String to partially override common.names.fullname + type: string + networkPolicy: + description: '@section NetworkPolicy parameters' + properties: + egressRules: + description: Egress Rules + properties: + customRules: + default: [] + description: Additional custom egress rules + items: {} + type: array + denyConnectionsToExternal: + default: false + description: Deny external connections. Should not be enabled when + working with an external database. + type: boolean + type: object + enabled: + default: false + description: Specifies whether a NetworkPolicy should be created + type: boolean + ingressRules: + description: Ingress Rules + properties: + customRules: + default: [] + description: Additional custom ingress rules + items: {} + type: array + namespaceSelector: + default: {} + description: Namespace selector label allowed to access the Backstage + instance + type: object + podSelector: + default: {} + description: Pod selector label allowed to access the Backstage + instance + type: object + type: object + type: object + postgresql: + description: PostgreSQL [chart configuration](https://github.com/bitnami/charts/blob/master/bitnami/postgresql/values.yaml) + @default -- See below + properties: + architecture: + default: standalone + description: PostgreSQL architecture (`standalone` or `replication`) + type: string + auth: + description: The authentication details of the Postgres database + properties: + existingSecret: + default: "" + description: Name of existing secret to use for PostgreSQL credentials + type: string + password: + default: "" + description: Password for the custom user to create + type: string + secretKeys: + description: The secret keys Postgres will look for to retrieve + the relevant password + properties: + adminPasswordKey: + default: admin-password + description: The key in which Postgres will look for, for the + admin password, in the existing Secret + type: string + replicationPasswordKey: + default: replication-password + description: The key in which Postgres will look for, for the + replication password, in the existing Secret + type: string + userPasswordKey: + default: user-password + description: The key in which Postgres will look for, for the + user password, in the existing Secret + type: string + type: object + username: + default: bn_backstage + description: Name for a custom user to create + type: string + type: object + enabled: + default: false + description: Switch to enable or disable the PostgreSQL helm chart + type: boolean + type: object + service: + description: |- + @section Traffic Exposure parameters + Service parameters -- Service parameters @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for Backstage service + type: object + clusterIP: + default: "" + description: 'Backstage service Cluster IP
E.g `clusterIP: None`' + type: string + externalTrafficPolicy: + default: Cluster + description: 'Backstage service external traffic policy Ref: https://kubernetes.io/docs/tasks/access-application-cluster/create-external-load-balancer/#preserving-the-client-source-ip' + type: string + extraPorts: + default: [] + description: Extra ports to expose in the Backstage service (normally + used with the `sidecar` value) + items: {} + type: array + loadBalancerIP: + default: "" + description: 'Backstage service Load Balancer IP
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer' + type: string + loadBalancerSourceRanges: + default: [] + description: 'Load Balancer sources
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#loadbalancer +
E.g `loadBalancerSourceRanges: [10.10.10.0/24]`' + items: {} + type: array + nodePorts: + description: Node port for the Backstage client connections Choose port + between `30000-32767` + properties: + backend: + default: "" + type: string + type: object + ports: + description: Backstage svc port for client connections + properties: + backend: + default: 7007 + type: integer + name: + default: http-backend + description: Backstage svc port name + type: string + targetPort: + default: backend + description: Backstage svc target port referencing receiving pod + container port + type: string + type: object + sessionAffinity: + default: None + description: 'Control where client requests go, to the same pod or round-robin + (values: `ClientIP` or `None`)
Ref: https://kubernetes.io/docs/concepts/services-networking/service/#session-stickiness' + type: string + type: + default: ClusterIP + description: Kubernetes Service type + type: string + type: object + serviceAccount: + description: Service Account Configuration @default -- See below + properties: + annotations: + default: {} + description: Additional custom annotations for the ServiceAccount. + type: object + automountServiceAccountToken: + default: true + description: Auto-mount the service account token in the pod + type: boolean + create: + default: false + description: Enable the creation of a ServiceAccount for Backstage pods + type: boolean + labels: + default: {} + description: Additional custom labels to the service ServiceAccount. + type: object + name: + default: "" + description: Name of the ServiceAccount to use If not set and `serviceAccount.create` + is true, a name is generated + type: string + type: object + type: object + version: 0.4.0 From f7075e64d90d288c0d7b87934da517175609273b Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 18:57:54 +0200 Subject: [PATCH 13/15] Update Kadras Engineering Platform metadata and add version 0.21.0 (#444) Co-authored-by: github-actions --- .../0.21.0.yml | 276 ++++++++++++++++++ 1 file changed, 276 insertions(+) create mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.21.0.yml diff --git a/repo/packages/engineering-platform.packages.kadras.io/0.21.0.yml b/repo/packages/engineering-platform.packages.kadras.io/0.21.0.yml new file mode 100644 index 0000000..68dffef --- /dev/null +++ b/repo/packages/engineering-platform.packages.kadras.io/0.21.0.yml @@ -0,0 +1,276 @@ +apiVersion: data.packaging.carvel.dev/v1alpha1 +kind: Package +metadata: + creationTimestamp: null + name: engineering-platform.packages.kadras.io.0.21.0 +spec: + licenses: + - Apache 2.0 + refName: engineering-platform.packages.kadras.io + releaseNotes: https://github.com/kadras-io/kadras-engineering-platform/releases + releasedAt: "2024-10-23T16:56:28Z" + template: + spec: + deploy: + - kapp: {} + fetch: + - imgpkgBundle: + image: ghcr.io/kadras-io/kadras-engineering-platform@sha256:8f7e2b7db5ebc6fc250229277e9d70762aca962811a5c7ccfaf1bc5f1a09d473 + template: + - ytt: + paths: + - config + - kbld: + paths: + - '-' + - .imgpkg/images.yml + valuesSchema: + openAPIv3: + additionalProperties: false + properties: + cert_manager: + default: {} + description: Configuration for the Cert Manager package. + nullable: true + contour: + default: {} + description: Configuration for the Contour package. + nullable: true + crossplane: + default: {} + description: Configuration for the Crossplane package. + nullable: true + dapr: + default: {} + description: Configuration for the Dapr package. + nullable: true + dependency_track: + default: {} + description: Configuration for the Dependency Track package. + nullable: true + developer_portal: + default: {} + description: Configuration for the Developer Portal package. + nullable: true + flux: + default: {} + description: Configuration for the Flux package. + nullable: true + gitops_configurer: + default: {} + description: Configuration for the GitOps Configurer package. + nullable: true + knative: + additionalProperties: false + description: Configuration for Knative related packages. + properties: + serving: + default: {} + description: Configuration for the Knative Serving package. + nullable: true + type: object + kyverno: + additionalProperties: false + description: Configuration for the Kyverno related packages. + properties: + core: + default: {} + description: Configuration for the Kyverno package. + nullable: true + type: object + metrics_server: + default: {} + description: Configuration for the Metrics Server package. + nullable: true + platform: + additionalProperties: false + description: Configuration for the platform packages. + properties: + additional_packages: + default: [] + description: A list of packages to include in the installation. + items: + default: "" + type: string + type: array + ca_cert_data: + default: "" + description: PEM-encoded certificate data to trust TLS connections with + a custom CA. + type: string + cosign: + additionalProperties: false + description: Settings for Cosign, used for signing and verifying OCI + artifacts. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the Cosign key + pair. + properties: + name: + default: "" + description: The name of the Secret holding the Cosign key pair. + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the Cosign + key pair. + type: string + type: object + type: object + excluded_packages: + default: [] + description: A list of packages to exclude from being installed. + items: + default: "" + type: string + type: array + git: + additionalProperties: false + description: Settings for the Git server that the platform will use. + properties: + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the Git server. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the Git server. The credentials should provide read-only + access to the Git server except when installing the platform + with one of these profiles: `standalone`, `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the Git server. + type: string + type: object + server: + default: https://github.com + description: The server hosting the Git repositories used by the + plaform. + example: https://github.com + type: string + x-example-description: GitHub + type: object + ingress: + additionalProperties: false + description: Setting for the Ingress controller that the platform will + use. + properties: + domain: + default: "" + description: The base domain name the platform will use to configure + the Ingress controller. It must be a valid DNS name. + type: string + issuer: + additionalProperties: false + description: A reference to the ClusterIssuer the platform will + use to enable TLS communications. + properties: + email: + default: "" + description: The email address that Let's Encrypt will use to + send info on expiring certificates or other issues. Required + when the type is `letsencrypt_staging` or `letsencrypt`. + type: string + name: + default: "" + description: A reference to a custom ClusterIssuer previously + created on the cluster where the platform will be installed. + Required when the type is `custom`. + type: string + type: + default: private + description: 'The type of ClusterIssuer the platform will use + to enable TLS communications. Options: `private`, `letsencrypt_staging`, + `letsencrypt`, `custom`.' + enum: + - private + - letsencrypt_staging + - letsencrypt + - custom + type: string + type: object + type: object + namespace: + default: kadras-system + description: The namespace where to install the platform. + type: string + oci_registry: + additionalProperties: false + description: Settings for the OCI registry that the platform will use. + properties: + repository: + default: "" + description: The repository in the OCI Registry where the platform + will publish OCI images. + example: my-org + type: string + x-example-description: Repository on GitHub Container Registry + secret: + additionalProperties: false + description: Configuration for the Secret holding the credentials + to access the OCI registry. + properties: + name: + default: "" + description: 'The name of the Secret holding the credentials + to access the OCI registry. The credentials should provide + read-only access to the OCI registry except when installing + the platform with one of these profiles: `standalone`, `dev`, + `build`.' + type: string + namespace: + default: kadras-system + description: The namespace of the Secret holding the credentials + to access the OCI registry. + type: string + type: object + server: + default: "" + description: The server of the OCI Registry where the platform will + publish OCI images. + example: ghcr.io + type: string + x-example-description: GitHub Container Registry + type: object + profile: + default: run + description: 'The platform profile to install. Options: `standalone`, + `build`, `run`.' + enum: + - standalone + - build + - run + type: string + type: object + postgresql_operator: + default: {} + description: Configuration for the PostgreSQL Operator package. + nullable: true + rabbitmq_operator: + default: {} + description: Configuration for the RabbitMQ Operator package. + nullable: true + secretgen_controller: + default: {} + description: Configuration for the Secretgen Controller package. + nullable: true + service_binding: + default: {} + description: Configuration for the Service Binding package. + nullable: true + tempo_operator: + default: {} + description: Configuration for the Tempo Operator package. + nullable: true + workspace_provisioner: + default: {} + description: Configuration for the Workspace Provisioner package. + nullable: true + type: object + version: 0.21.0 From 1d958683f81d4e62a69cf9b4d24f8ef6d1d2f9f4 Mon Sep 17 00:00:00 2001 From: Thomas Vitale Date: Wed, 23 Oct 2024 19:00:04 +0200 Subject: [PATCH 14/15] chore: Remove deprecated packages --- README.md | 3 - .../0.12.3.yml | 48 -- .../metadata.yml | 19 - .../1.15.3.yml | 207 ------ .../crossplane.packages.kadras.io/1.17.1.yml | 377 ---------- .../4.11.7.yml | 211 ------ .../0.3.0.yml | 555 -------------- .../0.20.1.yml | 298 -------- .../flux.packages.kadras.io/2.3.0.yml | 107 --- .../1.15.2.yml | 304 -------- .../kpack.packages.kadras.io/0.15.0.yml | 157 ---- .../kpack.packages.kadras.io/metadata.yml | 20 - .../kyverno.packages.kadras.io/1.12.5.yml | 182 ----- .../1.24.0.yml | 31 - .../2.10.0.yml | 44 -- .../0.53.4.yml | 690 ------------------ .../metadata.yml | 19 - 17 files changed, 3272 deletions(-) delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/0.12.3.yml delete mode 100644 repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/cert-manager.packages.kadras.io/1.15.3.yml delete mode 100644 repo/packages/crossplane.packages.kadras.io/1.17.1.yml delete mode 100644 repo/packages/dependency-track.packages.kadras.io/4.11.7.yml delete mode 100644 repo/packages/developer-portal.packages.kadras.io/0.3.0.yml delete mode 100644 repo/packages/engineering-platform.packages.kadras.io/0.20.1.yml delete mode 100644 repo/packages/flux.packages.kadras.io/2.3.0.yml delete mode 100644 repo/packages/knative-serving.packages.kadras.io/1.15.2.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/0.15.0.yml delete mode 100644 repo/packages/kpack.packages.kadras.io/metadata.yml delete mode 100644 repo/packages/kyverno.packages.kadras.io/1.12.5.yml delete mode 100644 repo/packages/postgresql-operator.packages.kadras.io/1.24.0.yml delete mode 100644 repo/packages/rabbitmq-operator.packages.kadras.io/2.10.0.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/0.53.4.yml delete mode 100644 repo/packages/tekton-pipelines.packages.kadras.io/metadata.yml diff --git a/README.md b/README.md index 4fbf792..c3b20a3 100644 --- a/README.md +++ b/README.md @@ -13,7 +13,6 @@ This repository contains the following Carvel packages. | Package | Description | |---------|-------------| -| [buildpacks-catalog](https://github.com/kadras-io/buildpacks-catalog) | A curated set of buildpacks, stacks, and builders to use with kpack, a Kubernetes-native implementation of Cloud Native Buildpacks. | | [cert-manager](https://github.com/kadras-io/package-for-cert-manager) | A cloud-native solution to automatically provision and manage X.509 certificates. | | [contour](https://github.com/kadras-io/package-for-contour) | An Envoy-based ingress controller that supports dynamic configuration updates and multi-team ingress delegation. | | [crossplane](https://github.com/kadras-io/package-for-crossplane) | A Kubernetes extension that transforms your Kubernetes cluster into a universal control plane. | @@ -24,7 +23,6 @@ This repository contains the following Carvel packages. | [flux](https://github.com/kadras-io/package-for-flux) | A continuous deployment solution for Kubernetes, powered by the GitOps Toolkit. | | [gitops-configurer](https://github.com/kadras-io/gitops-configurer) | Provides GitOps configuration for the Kadras Engineering Platform. | | [knative-serving](https://github.com/kadras-io/package-for-knative-serving) | A solution built on Kubernetes to support deploying and serving of applications and functions as serverless containers. | -| [kpack](https://github.com/kadras-io/package-for-kpack) | A Kubernetes-native implementation of Cloud Native Buildpacks to build source code into OCI images from within your cluster. | | [kyverno](https://github.com/kadras-io/package-for-kyverno) | A policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans. | | [metrics-server](https://github.com/kadras-io/package-for-metrics-server) | A scalable and efficient source of container resource metrics for Kubernetes built-in autoscaling pipelines. | | [postgresql-operator](https://github.com/kadras-io/package-for-postgresql-operator) | CloudNativePG, a Kubernetes operator that covers the full lifecycle of a PostgreSQL database cluster with a primary/standby architecture, using native streaming replication. | @@ -32,7 +30,6 @@ This repository contains the following Carvel packages. | [rbac-configurer](https://github.com/kadras-io/rbac-configurer) | Provides default roles and RBAC configuration for the Kadras Engineering Platform. | | [secretgen-controller](https://github.com/kadras-io/package-for-secretgen-controller) | Generates various types of Secrets in-cluster as well as export and import Secrets across namespaces. | | [service-binding](https://github.com/kadras-io/package-for-service-binding) | A standard and automated way for communicating service secrets to workloads. | -| [tekton-pipelines](https://github.com/kadras-io/package-for-tekton-pipelines) | A cloud-native solution for building CI/CD systems. | | [tempo-operator](https://github.com/kadras-io/package-for-tempo-operator) | A solution to manage Grafana Tempo on Kubernetes and OpenShift clusters. | | [workspace-provisioner](https://github.com/kadras-io/workspace-provisioner) | Provisions and configures workspaces (namespaces or virtual clusters) to work with the Kadras Engineering Platform. | diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/0.12.3.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/0.12.3.yml deleted file mode 100644 index 4c24710..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/0.12.3.yml +++ /dev/null @@ -1,48 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io.0.12.3 -spec: - capacityRequirementsDescription: Container registry with at least 1GB available - space used by kpack to create builder images. - licenses: - - Apache 2.0 - refName: buildpacks-catalog.packages.kadras.io - releaseNotes: https://github.com/kadras-io/buildpacks-catalog/releases - releasedAt: "2024-09-23T20:24:21Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/buildpacks-catalog@sha256:eb9c8b125fc99ea872dd1d1ab8f698632df777ca5367a16b6a615bff4e5bc2e2 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - kp_default_repository: - additionalProperties: false - description: Settings for the default container repository used by kpack. - Same as configured in the kpack package. - properties: - name: - default: "" - description: The default repository where to publish builder images - and dependencies. - example: ghcr.io/thomasvitale/buildpacks - minLength: 1 - type: string - x-example-description: Repository on GitHub Container Registry - type: object - type: object - version: 0.12.3 diff --git a/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml b/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml deleted file mode 100644 index 6cd36c4..0000000 --- a/repo/packages/buildpacks-catalog.packages.kadras.io/metadata.yml +++ /dev/null @@ -1,19 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: PackageMetadata -metadata: - creationTimestamp: null - name: buildpacks-catalog.packages.kadras.io -spec: - categories: - - build - displayName: buildpacks-catalog - iconSVGBase64: PHN2ZyB4bWxucz0iaHR0cDovL3d3dy53My5vcmcvMjAwMC9zdmciIHJvbGU9ImltZyIgdmlld0JveD0iLTAuODAgMzUuNDUgNDMxLjYwIDM1Mi4zNSI+PGRlZnM+PGNsaXBQYXRoIGlkPSJjbGlwLXBhdGgiPjxwYXRoIGQ9Ik0zMjIuMjUgMjczLjYyM3Y4NC45ODdhMTMuNDIzIDEzLjQyMyAwIDAgMCAxMy4zODMgMTMuMzgzIDE1LjIzIDE1LjIzIDAgMCAwIDYuNjkyLTEuNjczbDczLjYxLTQyLjQ5M2ExMy40OTUgMTMuNDk1IDAgMCAwIDYuNjkyLTExLjcxVjIzMS4xM2ExMy40MjMgMTMuNDIzIDAgMCAwLTEzLjM4NC0xMy4zODMgMTUuMjMgMTUuMjMgMCAwIDAtNi42OTIgMS42NzNsLTczLjYxIDQyLjgyN2ExMy4zNjMgMTMuMzYzIDAgMCAwLTYuNjkyIDExLjM3NnoiIGNsYXNzPSJjbHMtMSIvPjwvY2xpcFBhdGg+PGNsaXBQYXRoIGlkPSJjbGlwLXBhdGgtMiI+PHBhdGggZD0iTTI5NS40ODIgNDUuNzY3bC03My42MSA0Mi40OTNhMTMuNDk1IDEzLjQ5NSAwIDAgMC02LjY5MiAxMS43MXY4NC45ODdhMTMuNDIzIDEzLjQyMyAwIDAgMCAxMy4zODQgMTMuMzgzIDE1LjIzIDE1LjIzIDAgMCAwIDYuNjkxLTEuNjczbDczLjYxLTQyLjQ5M2ExMy40OTUgMTMuNDk1IDAgMCAwIDYuNjkyLTExLjcxVjU3LjE0M2ExMy40MjMgMTMuNDIzIDAgMCAwLTEzLjM4My0xMy4zODQgMTIuMDY0IDEyLjA2NCAwIDAgMC02LjY5MiAyLjAwOHoiIGNsYXNzPSJjbHMtMSIvPjwvY2xpcFBhdGg+PGNsaXBQYXRoIGlkPSJjbGlwLXBhdGgtMyI+PHBhdGggZD0iTTEwOC4xMSAyNzMuNjIzdjg0Ljk4N2ExMy40MjMgMTMuNDIzIDAgMCAwIDEzLjM4NCAxMy4zODMgMTUuMjMgMTUuMjMgMCAwIDAgNi42OTItMS42NzNsNzMuNjEtNDIuNDkzYTEzLjQ5NSAxMy40OTUgMCAwIDAgNi42OTItMTEuNzFWMjMxLjEzYTEzLjQyMyAxMy40MjMgMCAwIDAtMTMuMzgzLTEzLjM4MyAxNS4yMyAxNS4yMyAwIDAgMC02LjY5MiAxLjY3M2wtNzMuNjEgNDIuODI3YTEzLjM2MyAxMy4zNjMgMCAwIDAtNi42OTIgMTEuMzc2eiIgY2xhc3M9ImNscy0xIi8+PC9jbGlwUGF0aD48c3R5bGU+LmNscy0xe2ZpbGw6bm9uZX0uY2xzLTJ7ZmlsbDojZGUxNTZjfS5jbHMtNHtmaWxsOiNmMTJmYTV9LmNscy02MHtmaWxsOiM0NzUyOWR9LmNscy02MntmaWxsOiM3ZThiY2N9LmNscy0xMTh7ZmlsbDojMjUyOTYwfS5jbHMtMTIwe2ZpbGw6IzRiNTM5OX08L3N0eWxlPjwvZGVmcz48cGF0aCBkPSJNMzE1LjU1NyAyNjIuMjQ3bC03My42MS00Mi40OTNhMTMuNTE5IDEzLjUxOSAwIDAgMC0xOC40MDIgNC42ODQgMTUuMjMgMTUuMjMgMCAwIDAtMS42NzMgNi42OTJ2ODQuOTg2YTE0LjM2OCAxNC4zNjggMCAwIDAgNi42OTIgMTEuNzExbDg2Ljk5MyA1MC4xODlhMTMuNjI1IDEzLjYyNSAwIDAgMCAxMy4zODQgMGw4Ni45OTQtNTAuMTg5YTEzLjQ5NSAxMy40OTUgMCAwIDAgNi42OTEtMTEuNzFWMjMxLjEzYTEzLjQyMyAxMy40MjMgMCAwIDAtMTMuMzgzLTEzLjM4MyAxNS4yMyAxNS4yMyAwIDAgMC02LjY5MiAxLjY3M2wtNzMuNjEgNDIuODI3YTEzLjYyNSAxMy42MjUgMCAwIDEtMTMuMzg0IDB6IiBjbGFzcz0iY2xzLTIiLz48ZyBjbGlwLXBhdGg9InVybCgjY2xpcC1wYXRoKSI+PHJlY3Qgd2lkdGg9IjEwMC4zNzciIHg9IjMyMi4yNDkiIHk9IjIxNy43NDciIGNsYXNzPSJjbHMtNCIvPjxwYXRoIGQ9Ik0zMjIuMjQ5IDIxNy43NDdoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIgY2xhc3M9ImNscy00Ii8+PHBhdGggZmlsbD0iI2YxMmZhNCIgZD0iTTMyMi4yNDkgMjIwLjQ1M2gxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2YwMmVhMyIgZD0iTTMyMi4yNDkgMjIzLjE1OWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2YwMmVhMiIgZD0iTTMyMi4yNDkgMjI1Ljg2NWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2YwMmRhMSIgZD0iTTMyMi4yNDkgMjI4LjU3MWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2VmMmRhMCIgZD0iTTMyMi4yNDkgMjMxLjI3N2gxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2VmMmM5ZiIgZD0iTTMyMi4yNDkgMjMzLjk4M2gxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2VmMmM5ZSIgZD0iTTMyMi4yNDkgMjM2LjY4OWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2VlMmI5ZCIgZD0iTTMyMi4yNDkgMjM5LjM5NWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2VlMmI5YyIgZD0iTTMyMi4yNDkgMjQyLjEwMWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2VlMmE5YiIgZD0iTTMyMi4yNDkgMjQ0LjgwN2gxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2VkMmE5YSIgZD0iTTMyMi4yNDkgMjQ3LjUxNGgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2VkMjk5OSIgZD0iTTMyMi4yNDkgMjUwLjIyaDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZWQyOTk4IiBkPSJNMzIyLjI0OSAyNTIuOTI2aDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZWMyOTk3IiBkPSJNMzIyLjI0OSAyNTUuNjMyaDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZWMyODk2IiBkPSJNMzIyLjI0OSAyNTguMzM4aDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZWMyODk1IiBkPSJNMzIyLjI0OSAyNjEuMDQ0aDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZWIyNzk0IiBkPSJNMzIyLjI0OSAyNjMuNzVoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlYjI3OTMiIGQ9Ik0zMjIuMjQ5IDI2Ni40NTZoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlYjI2OTIiIGQ9Ik0zMjIuMjQ5IDI2OS4xNjJoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlYTI2OTEiIGQ9Ik0zMjIuMjQ5IDI3MS44NjhoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlYTI1OTAiIGQ9Ik0zMjIuMjQ5IDI3NC41NzRoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlYTI1OGYiIGQ9Ik0zMjIuMjQ5IDI3Ny4yOGgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U5MjQ4ZSIgZD0iTTMyMi4yNDkgMjc5Ljk4NmgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U5MjQ4ZCIgZD0iTTMyMi4yNDkgMjgyLjY5M2gxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U5MjM4YyIgZD0iTTMyMi4yNDkgMjg1LjM5OWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U4MjM4YiIgZD0iTTMyMi4yNDkgMjg4LjEwNWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U4MjI4YSIgZD0iTTMyMi4yNDkgMjkwLjgxMWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U4MjI4OSIgZD0iTTMyMi4yNDkgMjkzLjUxN2gxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U3MjI4NyIgZD0iTTMyMi4yNDkgMjk2LjIyM2gxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U3MjE4NiIgZD0iTTMyMi4yNDkgMjk4LjkyOWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U2MjE4NSIgZD0iTTMyMi4yNDkgMzAxLjYzNWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U2MjA4NCIgZD0iTTMyMi4yNDkgMzA0LjM0MWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U2MjA4MyIgZD0iTTMyMi4yNDkgMzA3LjA0N2gxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U1MWY4MiIgZD0iTTMyMi4yNDkgMzA5Ljc1M2gxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U1MWY4MSIgZD0iTTMyMi4yNDkgMzEyLjQ1OWgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U1MWU4MCIgZD0iTTMyMi4yNDkgMzE1LjE2NmgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U0MWU3ZiIgZD0iTTMyMi4yNDkgMzE3Ljg3MmgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U0MWQ3ZSIgZD0iTTMyMi4yNDkgMzIwLjU3OGgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2U0MWQ3ZCIgZD0iTTMyMi4yNDkgMzIzLjI4NGgxMDAuMzc3djIuNzA2SDMyMi4yNDl6Ii8+PHBhdGggZmlsbD0iI2UzMWM3YyIgZD0iTTMyMi4yNDkgMzI1Ljk5aDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZTMxYzdiIiBkPSJNMzIyLjI0OSAzMjguNjk2aDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZTMxYzdhIiBkPSJNMzIyLjI0OSAzMzEuNDAyaDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZTIxYjc5IiBkPSJNMzIyLjI0OSAzMzQuMTA4aDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZTIxYjc4IiBkPSJNMzIyLjI0OSAzMzYuODE0aDEwMC4zNzd2Mi43MDZIMzIyLjI0OXoiLz48cGF0aCBmaWxsPSIjZTIxYTc3IiBkPSJNMzIyLjI0OSAzMzkuNTJoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlMTFhNzYiIGQ9Ik0zMjIuMjQ5IDM0Mi4yMjZoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlMTE5NzUiIGQ9Ik0zMjIuMjQ5IDM0NC45MzJoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlMTE5NzQiIGQ9Ik0zMjIuMjQ5IDM0Ny42MzhoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlMDE4NzMiIGQ9Ik0zMjIuMjQ5IDM1MC4zNDVoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlMDE4NzIiIGQ9Ik0zMjIuMjQ5IDM1My4wNTFoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNlMDE3NzEiIGQ9Ik0zMjIuMjQ5IDM1NS43NTdoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNkZjE3NzAiIGQ9Ik0zMjIuMjQ5IDM1OC40NjNoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNkZjE2NmYiIGQ9Ik0zMjIuMjQ5IDM2MS4xNjloMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNkZjE2NmUiIGQ9Ik0zMjIuMjQ5IDM2My44NzVoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGZpbGw9IiNkZTE1NmQiIGQ9Ik0zMjIuMjQ5IDM2Ni41ODFoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIvPjxwYXRoIGQ9Ik0zMjIuMjQ5IDM2OS4yODdoMTAwLjM3N3YyLjcwNkgzMjIuMjQ5eiIgY2xhc3M9ImNscy0yIi8+PC9nPjxwYXRoIGQ9Ik0yOTUuNDgyIDQ1Ljc2N2wtNzMuNjEgNDIuNDkzYTEzLjYyNSAxMy42MjUgMCAwIDEtMTMuMzg0IDBsLTczLjYxLTQyLjQ5M2ExMy41MTkgMTMuNTE5IDAgMCAwLTE4LjQwMiA0LjY4NCAxNS4yMyAxNS4yMyAwIDAgMC0xLjY3MyA2LjY5MnY4NC45ODZhMTQuMzY4IDE0LjM2OCAwIDAgMCA2LjY5MSAxMS43MWw4Ni45OTQgNTAuMTlhMTMuNjI1IDEzLjYyNSAwIDAgMCAxMy4zODQgMGw4Ni45OTMtNTAuMTlhMTMuNDk1IDEzLjQ5NSAwIDAgMCA2LjY5Mi0xMS43MVY1Ny4xNDNhMTMuNDIzIDEzLjQyMyAwIDAgMC0xMy4zODMtMTMuMzg0IDEyLjA2NCAxMi4wNjQgMCAwIDAtNi42OTIgMi4wMDh6IiBjbGFzcz0iY2xzLTYwIi8+PGcgY2xpcC1wYXRoPSJ1cmwoI2NsaXAtcGF0aC0yKSI+PHJlY3Qgd2lkdGg9IjEwMC4zNzciIHg9IjIxNS4xOCIgeT0iNDMuNzU5IiBjbGFzcz0iY2xzLTYyIi8+PHBhdGggZD0iTTIxNS4xOCA0My43NTloMTAwLjM3N3YyLjcwOEgyMTUuMTh6IiBjbGFzcz0iY2xzLTYyIi8+PHBhdGggZmlsbD0iIzdkOGFjYiIgZD0iTTIxNS4xOCA0Ni40NjhoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzdjODljYSIgZD0iTTIxNS4xOCA0OS4xNzZoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzdiODhjOSIgZD0iTTIxNS4xOCA1MS44ODRoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzdhODdjOSIgZD0iTTIxNS4xOCA1NC41OTNoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzc5ODZjOCIgZD0iTTIxNS4xOCA1Ny4zMDFoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzc4ODVjNyIgZD0iTTIxNS4xOCA2MC4wMDloMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzc3ODRjNiIgZD0iTTIxNS4xOCA2Mi43MThoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzc2ODNjNSIgZD0iTTIxNS4xOCA2NS40MjZoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzc1ODJjNCIgZD0iTTIxNS4xOCA2OC4xMzRoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzc0ODFjNCIgZD0iTTIxNS4xOCA3MC44NDNoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzczODBjMyIgZD0iTTIxNS4xOCA3My41NTFoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzcyN2ZjMiIgZD0iTTIxNS4xOCA3Ni4yNTloMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzcxN2VjMSIgZD0iTTIxNS4xOCA3OC45NjhoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzcwN2RjMCIgZD0iTTIxNS4xOCA4MS42NzZoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzZmN2NiZiIgZD0iTTIxNS4xOCA4NC4zODRoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzZlN2JiZiIgZD0iTTIxNS4xOCA4Ny4wOTNoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzZkN2FiZSIgZD0iTTIxNS4xOCA4OS44MDFoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzZjNzliZCIgZD0iTTIxNS4xOCA5Mi41MDloMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzZiNzhiYyIgZD0iTTIxNS4xOCA5NS4yMThoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzZhNzdiYiIgZD0iTTIxNS4xOCA5Ny45MjZoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzY5NzZiYSIgZD0iTTIxNS4xOCAxMDAuNjM0aDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM2ODc1YmEiIGQ9Ik0yMTUuMTggMTAzLjM0M2gxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNjc3NGI5IiBkPSJNMjE1LjE4IDEwNi4wNTFoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzY2NzNiOCIgZD0iTTIxNS4xOCAxMDguNzZoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzY1NzJiNyIgZD0iTTIxNS4xOCAxMTEuNDY4aDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM2NDcxYjYiIGQ9Ik0yMTUuMTggMTE0LjE3NmgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNjM3MGI1IiBkPSJNMjE1LjE4IDExNi44ODVoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzYzNmZiNSIgZD0iTTIxNS4xOCAxMTkuNTkzaDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM2MjZkYjQiIGQ9Ik0yMTUuMTggMTIyLjMwMWgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNjE2Y2IzIiBkPSJNMjE1LjE4IDEyNS4wMWgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNjA2YmIyIiBkPSJNMjE1LjE4IDEyNy43MThoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzVmNmFiMSIgZD0iTTIxNS4xOCAxMzAuNDI2aDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM1ZTY5YjAiIGQ9Ik0yMTUuMTggMTMzLjEzNWgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNWQ2OGFmIiBkPSJNMjE1LjE4IDEzNS44NDNoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzVjNjdhZiIgZD0iTTIxNS4xOCAxMzguNTUxaDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM1YjY2YWUiIGQ9Ik0yMTUuMTggMTQxLjI2aDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM1YTY1YWQiIGQ9Ik0yMTUuMTggMTQzLjk2OGgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNTk2NGFjIiBkPSJNMjE1LjE4IDE0Ni42NzZoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzU4NjNhYiIgZD0iTTIxNS4xOCAxNDkuMzg1aDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM1NzYyYWEiIGQ9Ik0yMTUuMTggMTUyLjA5M2gxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNTY2MWFhIiBkPSJNMjE1LjE4IDE1NC44MDFoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzU1NjBhOSIgZD0iTTIxNS4xOCAxNTcuNTFoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzU0NWZhOCIgZD0iTTIxNS4xOCAxNjAuMjE4aDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM1MzVlYTciIGQ9Ik0yMTUuMTggMTYyLjkyNmgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNTI1ZGE2IiBkPSJNMjE1LjE4IDE2NS42MzVoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzUxNWNhNSIgZD0iTTIxNS4xOCAxNjguMzQzaDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM1MDViYTUiIGQ9Ik0yMTUuMTggMTcxLjA1MWgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNGY1YWE0IiBkPSJNMjE1LjE4IDE3My43NmgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNGU1OWEzIiBkPSJNMjE1LjE4IDE3Ni40NjhoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzRkNThhMiIgZD0iTTIxNS4xOCAxNzkuMTc3aDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM0YzU3YTEiIGQ9Ik0yMTUuMTggMTgxLjg4NWgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBmaWxsPSIjNGI1NmEwIiBkPSJNMjE1LjE4IDE4NC41OTNoMTAwLjM3N3YyLjcwOEgyMTUuMTh6Ii8+PHBhdGggZmlsbD0iIzRhNTVhMCIgZD0iTTIxNS4xOCAxODcuMzAyaDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM0OTU0OWYiIGQ9Ik0yMTUuMTggMTkwLjAxaDEwMC4zNzd2Mi43MDhIMjE1LjE4eiIvPjxwYXRoIGZpbGw9IiM0ODUzOWUiIGQ9Ik0yMTUuMTggMTkyLjcxOGgxMDAuMzc3djIuNzA4SDIxNS4xOHoiLz48cGF0aCBkPSJNMjE1LjE4IDE5NS40MjdoMTAwLjM3N3YyLjcwOEgyMTUuMTh6bTAgMi43MDhoMTAwLjM3N3YuMjA1SDIxNS4xOHoiIGNsYXNzPSJjbHMtNjAiLz48L2c+PHBhdGggZD0iTTEwMS40MTkgMjYyLjI0N2wtNzMuNjEtNDIuNDkzYTEzLjUxOSAxMy41MTkgMCAwIDAtMTguNDAzIDQuNjg0IDE1LjIzIDE1LjIzIDAgMCAwLTEuNjczIDYuNjkydjg0Ljk4NmExNC4zNjggMTQuMzY4IDAgMCAwIDYuNjkyIDExLjcxMWw4Ni45OTQgNTAuMTg5YTEzLjYyNSAxMy42MjUgMCAwIDAgMTMuMzg0IDBsODYuOTkzLTUwLjE4OWExMy40OTUgMTMuNDk1IDAgMCAwIDYuNjkyLTExLjcxVjIzMS4xM2ExMy40MjMgMTMuNDIzIDAgMCAwLTEzLjM4My0xMy4zODMgMTUuMjMgMTUuMjMgMCAwIDAtNi42OTIgMS42NzNsLTczLjYxIDQyLjgyN2ExMy42MjUgMTMuNjI1IDAgMCAxLTEzLjM4NCAweiIgY2xhc3M9ImNscy0xMTgiLz48ZyBjbGlwLXBhdGg9InVybCgjY2xpcC1wYXRoLTMpIj48cmVjdCB3aWR0aD0iMTAwLjM3NyIgeD0iMTA4LjExMSIgeT0iMjE3Ljc0NyIgY2xhc3M9ImNscy0xMjAiLz48cGF0aCBkPSJNMTA4LjExMSAyMTcuNzQ3aDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiIGNsYXNzPSJjbHMtMTIwIi8+PHBhdGggZmlsbD0iIzRhNTI5OCIgZD0iTTEwOC4xMTEgMjIwLjQ1M2gxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzRhNTI5NyIgZD0iTTEwOC4xMTEgMjIzLjE1OWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQ5NTE5NiIgZD0iTTEwOC4xMTEgMjI1Ljg2NWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQ4NTA5NSIgZD0iTTEwOC4xMTEgMjI4LjU3MWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQ4NGY5NCIgZD0iTTEwOC4xMTEgMjMxLjI3N2gxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQ3NGY5MyIgZD0iTTEwOC4xMTEgMjMzLjk4M2gxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQ2NGU5MiIgZD0iTTEwOC4xMTEgMjM2LjY4OWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQ2NGQ5MSIgZD0iTTEwOC4xMTEgMjM5LjM5NWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQ1NGM5MCIgZD0iTTEwOC4xMTEgMjQyLjEwMWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQ0NGM4ZiIgZD0iTTEwOC4xMTEgMjQ0LjgwN2gxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQ0NGI4ZSIgZD0iTTEwOC4xMTEgMjQ3LjUxNGgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzQzNGE4ZCIgZD0iTTEwOC4xMTEgMjUwLjIyaDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjNDI0OThjIiBkPSJNMTA4LjExMSAyNTIuOTI2aDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjNDI0OThiIiBkPSJNMTA4LjExMSAyNTUuNjMyaDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjNDE0ODhhIiBkPSJNMTA4LjExMSAyNTguMzM4aDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjNDA0Nzg5IiBkPSJNMTA4LjExMSAyNjEuMDQ0aDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjM2Y0Njg4IiBkPSJNMTA4LjExMSAyNjMuNzVoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMzZjQ2ODciIGQ9Ik0xMDguMTExIDI2Ni40NTZoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMzZTQ1ODYiIGQ9Ik0xMDguMTExIDI2OS4xNjJoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMzZDQ0ODUiIGQ9Ik0xMDguMTExIDI3MS44NjhoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMzZDQzODQiIGQ9Ik0xMDguMTExIDI3NC41NzRoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMzYzQzODMiIGQ9Ik0xMDguMTExIDI3Ny4yOGgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzNiNDI4MiIgZD0iTTEwOC4xMTEgMjc5Ljk4NmgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzNiNDE4MSIgZD0iTTEwOC4xMTEgMjgyLjY5M2gxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzNhNDA4MCIgZD0iTTEwOC4xMTEgMjg1LjM5OWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzM5NDA3ZiIgZD0iTTEwOC4xMTEgMjg4LjEwNWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzM5M2Y3ZSIgZD0iTTEwOC4xMTEgMjkwLjgxMWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzM4M2U3ZCIgZD0iTTEwOC4xMTEgMjkzLjUxN2gxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzM3M2Q3YiIgZD0iTTEwOC4xMTEgMjk2LjIyM2gxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzM3M2Q3YSIgZD0iTTEwOC4xMTEgMjk4LjkyOWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzM2M2M3OSIgZD0iTTEwOC4xMTEgMzAxLjYzNWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzM1M2I3OCIgZD0iTTEwOC4xMTEgMzA0LjM0MWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzM1M2E3NyIgZD0iTTEwOC4xMTEgMzA3LjA0N2gxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzM0M2E3NiIgZD0iTTEwOC4xMTEgMzA5Ljc1M2gxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzMzMzk3NSIgZD0iTTEwOC4xMTEgMzEyLjQ1OWgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzMzMzg3NCIgZD0iTTEwOC4xMTEgMzE1LjE2NmgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzMyMzc3MyIgZD0iTTEwOC4xMTEgMzE3Ljg3MmgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzMxMzc3MiIgZD0iTTEwOC4xMTEgMzIwLjU3OGgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzMxMzY3MSIgZD0iTTEwOC4xMTEgMzIzLjI4NGgxMDAuMzc3djIuNzA2SDEwOC4xMTF6Ii8+PHBhdGggZmlsbD0iIzMwMzU3MCIgZD0iTTEwOC4xMTEgMzI1Ljk5aDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjMmYzNDZmIiBkPSJNMTA4LjExMSAzMjguNjk2aDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjMmYzNDZlIiBkPSJNMTA4LjExMSAzMzEuNDAyaDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjMmUzMzZkIiBkPSJNMTA4LjExMSAzMzQuMTA4aDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjMmQzMjZjIiBkPSJNMTA4LjExMSAzMzYuODE0aDEwMC4zNzd2Mi43MDZIMTA4LjExMXoiLz48cGF0aCBmaWxsPSIjMmMzMTZiIiBkPSJNMTA4LjExMSAzMzkuNTJoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyYzMxNmEiIGQ9Ik0xMDguMTExIDM0Mi4yMjZoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyYjMwNjkiIGQ9Ik0xMDguMTExIDM0NC45MzJoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyYTJmNjgiIGQ9Ik0xMDguMTExIDM0Ny42MzhoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyYTJlNjciIGQ9Ik0xMDguMTExIDM1MC4zNDVoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyOTJlNjYiIGQ9Ik0xMDguMTExIDM1My4wNTFoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyODJkNjUiIGQ9Ik0xMDguMTExIDM1NS43NTdoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyODJjNjQiIGQ9Ik0xMDguMTExIDM1OC40NjNoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyNzJiNjMiIGQ9Ik0xMDguMTExIDM2MS4xNjloMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyNjJiNjIiIGQ9Ik0xMDguMTExIDM2My44NzVoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGZpbGw9IiMyNjJhNjEiIGQ9Ik0xMDguMTExIDM2Ni41ODFoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIvPjxwYXRoIGQ9Ik0xMDguMTExIDM2OS4yODdoMTAwLjM3N3YyLjcwNkgxMDguMTExeiIgY2xhc3M9ImNscy0xMTgiLz48L2c+PC9zdmc+ - longDescription: A set of buildpacks, stacks, and builders to use with kpack, a - Kubernetes-native implementation of Cloud Native Buildpacks. It supports multiple - languages and frameworks. - maintainers: - - name: Thomas Vitale - providerName: Kadras - shortDescription: A set of buildpacks, stacks, and builders to use with kpack. - supportDescription: Go to https://kadras.io for documentation and https://github.com/kadras-io/buildpacks-catalog - for community support. diff --git a/repo/packages/cert-manager.packages.kadras.io/1.15.3.yml b/repo/packages/cert-manager.packages.kadras.io/1.15.3.yml deleted file mode 100644 index fbfe2f6..0000000 --- a/repo/packages/cert-manager.packages.kadras.io/1.15.3.yml +++ /dev/null @@ -1,207 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: cert-manager.packages.kadras.io.1.15.3 -spec: - licenses: - - Apache 2.0 - refName: cert-manager.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-cert-manager/releases - releasedAt: "2024-09-01T09:19:44Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-cert-manager@sha256:f61a4aff8862cdc31c33e1f5a85040243f5f6b55b953132417cad5d653119b3d - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - cainjector: - additionalProperties: false - description: Settings for the cainjector controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - controller: - additionalProperties: false - description: Settings for the cert-manager controller. - properties: - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - 2 replicas are recommended. - minimum: 1 - type: integer - type: object - leader_election: - additionalProperties: false - description: Leader election configuration for the cert-manager and cert-manager-cainjector - Deployments. - properties: - namespace: - default: kube-system - description: 'Namespace used to perform leader election. The default - namespace needs changing in environments like GKE. More information: - https://cert-manager.io/docs/installation/compatibility.' - minLength: 1 - type: string - type: object - letsencrypt: - additionalProperties: false - description: Settings for Let's Encrypt. - properties: - challenge: - additionalProperties: false - properties: - dns_provider: - default: digital_ocean - description: 'The DNS provider to use for the ACME dns01 challenge. - Valid options: `digital_ocean`.' - enum: - - digital_ocean - type: string - secret: - additionalProperties: false - properties: - key: - default: "" - description: The key within the Secret that contains the credentials - needed for the dns01 challenge. - type: string - name: - default: "" - description: Name of the Secret containing the credentials needed - for the dns01 challenge. - type: string - namespace: - default: kadras-system - description: Namespace containing the Secret with the credentials - needed for the dns01 challenge. - type: string - type: object - type: - default: http01 - description: 'The type of challenge used by the ACME CA Server. - Valid options: `http01`, `dns01`.' - enum: - - http01 - - dns01 - type: string - type: object - email: - default: "" - description: The email address that Let's Encrypt will use to send info - on expiring certificates or other issues. - type: string - include: - default: false - description: Whether to include a ClusterIssuer for Let's Encrypt. - type: boolean - production: - default: false - description: Whether to use Let's Encrypt staging (recommended for non-production - environments) or production. - type: boolean - type: object - namespace: - default: cert-manager - description: The namespace in which to deploy cert-manager. - minLength: 1 - type: string - policies: - additionalProperties: false - description: Settings for the Kyverno policies. - properties: - include: - default: false - description: Whether to include the out-of-the-box Kyverno policies - to validate and secure the package installation. - type: boolean - type: object - private_pki: - additionalProperties: false - description: Settings for the built-in, private PKI - properties: - include: - default: true - description: Whether to include a ClusterIssuer for a private PKI. - type: boolean - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - webhook: - additionalProperties: false - description: Settings for the cert-manager webhook. - properties: - host_network: - default: false - description: 'Whether to run the webhook in the host network so that - it can be reached by the cert-manager controller in environments like - AWS EKS. More information: https://cert-manager.io/docs/installation/compatibility.' - type: boolean - loglevel: - default: 2 - description: Number of the log level verbosity. - maximum: 5 - minimum: 1 - type: integer - replicas: - default: 1 - description: The number of replicas. In order to enable high availability, - at least 3 replicas are recommended. - minimum: 1 - type: integer - secure_port: - default: 6443 - description: 'The port where the webhook is exposed. The default port - needs changing in environments like AWS EKS and AWS Fargate. More - information: https://cert-manager.io/docs/installation/compatibility.' - type: integer - type: object - type: object - version: 1.15.3 diff --git a/repo/packages/crossplane.packages.kadras.io/1.17.1.yml b/repo/packages/crossplane.packages.kadras.io/1.17.1.yml deleted file mode 100644 index df4e2ec..0000000 --- a/repo/packages/crossplane.packages.kadras.io/1.17.1.yml +++ /dev/null @@ -1,377 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: crossplane.packages.kadras.io.1.17.1 -spec: - refName: crossplane.packages.kadras.io - releasedAt: "2024-09-23T20:15:58Z" - template: - spec: - deploy: - - kapp: - intoNs: crossplane-system - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-crossplane@sha256:d9b049032f888539f415b03f1b6f4808527cbeb1f0561e1cbcc43d7e7f049dcf - template: - - helmTemplate: - name: crossplane - namespace: crossplane-system - path: config/helm/upstream/crossplane - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - affinity: - default: {} - description: Add `affinities` to the Crossplane pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the Crossplane pod. - items: {} - type: array - configuration: - properties: - packages: - default: [] - description: A list of Configuration packages to install. - items: {} - type: array - type: object - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane pod deployment. - type: object - customLabels: - default: {} - description: Add custom `labels` to the Crossplane pod deployment. - type: object - deploymentStrategy: - default: RollingUpdate - description: The deployment strategy for the Crossplane and RBAC Manager - pods. - type: string - dnsPolicy: - default: "" - description: Specify the `dnsPolicy` to be used by the Crossplane pod. - type: string - extraEnvVarsCrossplane: - default: {} - description: Add custom environmental variables to the Crossplane pod deployment. - Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` - becomes `SAMPLE_KEY=value1`. - type: object - extraEnvVarsRBACManager: - default: {} - description: Add custom environmental variables to the RBAC Manager pod - deployment. Replaces any `.` in a variable name with `_`. For example, - `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`. - type: object - extraObjects: - default: [] - description: To add arbitrary Kubernetes Objects during a Helm Install - items: {} - type: array - extraVolumeMountsCrossplane: - default: {} - description: Add custom `volumeMounts` to the Crossplane pod. - type: object - extraVolumesCrossplane: - default: {} - description: Add custom `volumes` to the Crossplane pod. - type: object - function: - properties: - packages: - default: [] - description: A list of Function packages to install - items: {} - type: array - type: object - hostNetwork: - default: false - description: 'Enable `hostNetwork` for the Crossplane deployment. Caution: - enabling `hostNetwork` grants the Crossplane Pod access to the host network - namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.' - type: boolean - image: - properties: - pullPolicy: - default: IfNotPresent - description: The image pull policy used for Crossplane and RBAC Manager - pods. - type: string - repository: - default: xpkg.upbound.io/crossplane/crossplane - description: Repository for the Crossplane pod image. - type: string - tag: - default: "" - description: The Crossplane image tag. Defaults to the value of `appVersion` - in `Chart.yaml`. - type: string - type: object - imagePullSecrets: - default: [] - description: The imagePullSecret names to add to the Crossplane ServiceAccount. - items: {} - type: array - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the Crossplane pod. - type: boolean - metrics: - properties: - enabled: - default: false - description: Enable Prometheus path, port and scrape annotations and - expose port 8080 for both the Crossplane and RBAC Manager pods. - type: boolean - type: object - nodeSelector: - default: {} - description: Add `nodeSelectors` to the Crossplane pod deployment. - type: object - packageCache: - properties: - configMap: - default: "" - description: The name of a ConfigMap to use as the package cache. Disables - the default package cache `emptyDir` Volume. - type: string - medium: - default: "" - description: Set to `Memory` to hold the package cache in a RAM backed - file system. Useful for Crossplane development. - type: string - pvc: - default: "" - description: The name of a PersistentVolumeClaim to use as the package - cache. Disables the default package cache `emptyDir` Volume. - type: string - sizeLimit: - default: 20Mi - description: The size limit for the package cache. If medium is `Memory` - the `sizeLimit` can't exceed Node memory. - type: string - type: object - podSecurityContextCrossplane: - default: {} - description: Add a custom `securityContext` to the Crossplane pod. - type: object - podSecurityContextRBACManager: - default: {} - description: Add a custom `securityContext` to the RBAC Manager pod. - type: object - priorityClassName: - default: "" - description: The PriorityClass name to apply to the Crossplane and RBAC - Manager pods. - type: string - provider: - properties: - packages: - default: [] - description: A list of Provider packages to install. - items: {} - type: array - type: object - rbacManager: - properties: - affinity: - default: {} - description: Add `affinities` to the RBAC Manager pod deployment. - type: object - args: - default: [] - description: Add custom arguments to the RBAC Manager pod. - items: {} - type: array - deploy: - default: true - description: Deploy the RBAC Manager pod and its required roles. - type: boolean - leaderElection: - default: true - description: Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) - for the RBAC Manager pod. - type: boolean - nodeSelector: - default: {} - description: Add `nodeSelectors` to the RBAC Manager pod deployment. - type: object - replicas: - default: 1 - description: The number of RBAC Manager pod `replicas` to deploy. - type: integer - skipAggregatedClusterRoles: - default: false - description: Don't install aggregated Crossplane ClusterRoles. - type: boolean - tolerations: - default: [] - description: Add `tolerations` to the RBAC Manager pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the RBAC Manager pod - deployment. - items: {} - type: array - type: object - registryCaBundleConfig: - properties: - key: - default: "" - description: The ConfigMap key containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - name: - default: "" - description: The ConfigMap name containing a custom CA bundle to enable - fetching packages from registries with unknown or untrusted certificates. - type: string - type: object - replicas: - default: 1 - description: helm-docs renders these comments into markdown. Use markdown - formatting where appropiate. -- The number of Crossplane pod `replicas` - to deploy. - type: integer - resourcesCrossplane: - properties: - limits: - properties: - cpu: - default: 500m - description: CPU resource limits for the Crossplane pod. - type: string - memory: - default: 1024Mi - description: Memory resource limits for the Crossplane pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the Crossplane pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the Crossplane pod. - type: string - type: object - type: object - resourcesRBACManager: - properties: - limits: - properties: - cpu: - default: 100m - description: CPU resource limits for the RBAC Manager pod. - type: string - memory: - default: 512Mi - description: Memory resource limits for the RBAC Manager pod. - type: string - type: object - requests: - properties: - cpu: - default: 100m - description: CPU resource requests for the RBAC Manager pod. - type: string - memory: - default: 256Mi - description: Memory resource requests for the RBAC Manager pod. - type: string - type: object - type: object - securityContextCrossplane: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the Crossplane pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the Crossplane pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the Crossplane pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the Crossplane pod. - type: integer - type: object - securityContextRBACManager: - properties: - allowPrivilegeEscalation: - default: false - description: Enable `allowPrivilegeEscalation` for the RBAC Manager - pod. - type: boolean - readOnlyRootFilesystem: - default: true - description: Set the RBAC Manager pod root file system as read-only. - type: boolean - runAsGroup: - default: 65532 - description: The group ID used by the RBAC Manager pod. - type: integer - runAsUser: - default: 65532 - description: The user ID used by the RBAC Manager pod. - type: integer - type: object - service: - properties: - customAnnotations: - default: {} - description: Configure annotations on the service object. Only enabled - when webhooks.enabled = true - type: object - type: object - serviceAccount: - properties: - customAnnotations: - default: {} - description: Add custom `annotations` to the Crossplane ServiceAccount. - type: object - type: object - tolerations: - default: [] - description: Add `tolerations` to the Crossplane pod deployment. - items: {} - type: array - topologySpreadConstraints: - default: [] - description: Add `topologySpreadConstraints` to the Crossplane pod deployment. - items: {} - type: array - webhooks: - properties: - enabled: - default: true - description: Enable webhooks for Crossplane and installed Provider packages. - type: boolean - type: object - type: object - version: 1.17.1 diff --git a/repo/packages/dependency-track.packages.kadras.io/4.11.7.yml b/repo/packages/dependency-track.packages.kadras.io/4.11.7.yml deleted file mode 100644 index 144b4e3..0000000 --- a/repo/packages/dependency-track.packages.kadras.io/4.11.7.yml +++ /dev/null @@ -1,211 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: dependency-track.packages.kadras.io.4.11.7 -spec: - licenses: - - Apache 2.0 - refName: dependency-track.packages.kadras.io - releaseNotes: https://github.com/kadras-io/package-for-dependency-track/releases - releasedAt: "2024-09-23T19:54:51Z" - template: - spec: - deploy: - - kapp: {} - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-dependency-track@sha256:143d73b7a7af4a9e55addb7ae816620e5baaaeaf46c7e157795bc6b6ce5cd6a6 - template: - - ytt: - paths: - - config - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - additionalProperties: false - properties: - api_server: - additionalProperties: false - description: Settings for the API Server component. - properties: - logging: - additionalProperties: false - description: Settings for logging. - properties: - format: - default: console - description: 'Log encoding format. Options: `console`, `json`.' - enum: - - console - - json - type: string - level: - default: info - description: 'Log verbosity level. Options: `trace`, `debug`, `info`, - `warn`, `error`.' - enum: - - trace - - debug - - info - - warn - - error - type: string - type: object - metrics: - additionalProperties: false - description: Settings for metrics. - properties: - enabled: - default: true - description: Whether to enable the generation of Prometheus metrics. - type: boolean - type: object - resources: - additionalProperties: false - description: Resource configuration for the API Server component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: "4" - description: CPU limits configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory limits configuration for the API Server - component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: "0.5" - description: CPU requests configuration for the API Server component. - type: string - memory: - default: 5Gi - description: Memory requests configuration for the API Server - component. - type: string - type: object - type: object - storage: - additionalProperties: false - description: Storage configuration for the API Server component. - properties: - class_name: - default: "" - description: Class name for the PersistenceVolume to create. - type: string - size: - default: 1Gi - description: Size of the PersistenceVolume to create. - type: string - type: object - type: object - domain_name: - default: "" - description: Domain name for Dependency Track. It must be a valid DNS name. - minLength: 4 - type: string - frontend: - additionalProperties: false - description: Settings for the Frontend component. - properties: - replicas: - default: 1 - description: The number of Frontend replicas. In order to enable high - availability, it should be greater than 1. - minimum: 1 - type: integer - resources: - additionalProperties: false - description: Resource configuration for the Frontend component. - properties: - limits: - additionalProperties: false - properties: - cpu: - default: 500m - description: CPU limits configuration for the Frontend component. - type: string - memory: - default: 128Mi - description: Memory limits configuration for the Frontend component. - type: string - type: object - requests: - additionalProperties: false - properties: - cpu: - default: 150m - description: CPU requests configuration for the Frontend component. - type: string - memory: - default: 64Mi - description: Memory requests configuration for the Frontend - component. - type: string - type: object - type: object - type: object - ingress_issuer: - default: "" - description: A reference to the ClusterIssuer to use for enabling TLS in - Dependency Track. - example: kadras-ca-issuer - minLength: 4 - type: string - x-example-description: Kadras private CA - postgresql: - additionalProperties: false - description: Settings for the PostgreSQL database. - properties: - instances: - default: 1 - description: Number of instances for the PostgreSQL database cluster. - Define at least 3 for production scenarios. - minimum: 1 - type: integer - storage: - additionalProperties: false - description: Storage configuration for each PostgreSQL instance. - properties: - size: - default: 1Gi - description: Size of the PersistenceVolume to create for each PostgreSQL - instance. - type: string - type: object - type: object - proxy: - additionalProperties: false - description: Settings for the corporate proxy. - properties: - http_proxy: - default: "" - description: The HTTP proxy to use for network traffic. - type: string - https_proxy: - default: "" - description: The HTTPS proxy to use for network traffic. - type: string - no_proxy: - default: "" - description: A comma-separated list of hostnames, IP addresses, or IP - ranges in CIDR format that should not use the proxy. - type: string - type: object - system_requirement_check: - default: true - description: Whether Dependency Track will check for memory and CPU requirements - at startup time. - type: boolean - type: object - version: 4.11.7 diff --git a/repo/packages/developer-portal.packages.kadras.io/0.3.0.yml b/repo/packages/developer-portal.packages.kadras.io/0.3.0.yml deleted file mode 100644 index aceb18c..0000000 --- a/repo/packages/developer-portal.packages.kadras.io/0.3.0.yml +++ /dev/null @@ -1,555 +0,0 @@ -apiVersion: data.packaging.carvel.dev/v1alpha1 -kind: Package -metadata: - creationTimestamp: null - name: developer-portal.packages.kadras.io.0.3.0 -spec: - refName: developer-portal.packages.kadras.io - releasedAt: "2024-09-25T20:01:02Z" - template: - spec: - deploy: - - kapp: - intoNs: backstage - fetch: - - imgpkgBundle: - image: ghcr.io/kadras-io/package-for-developer-portal@sha256:6a2d4d060cfe6e072c95ac69ed77a02dade7a86bb01db5587c4d5670dd574cb7 - template: - - helmTemplate: - name: backstage - namespace: backstage - path: config/helm/upstream/backstage - valuesFrom: - - path: config/helm/values.yml - - ytt: - ignoreUnknownComments: true - paths: - - '-' - - config/carvel - - kbld: - paths: - - '-' - - .imgpkg/images.yml - valuesSchema: - openAPIv3: - properties: - backstage: - description: Backstage parameters @default -- See below - properties: - affinity: - default: {} - description: 'Affinity for pod assignment
Ref: https://kubernetes.io/docs/concepts/configuration/assign-pod-node/#affinity-and-anti-affinity' - type: object - annotations: - default: {} - description: Additional custom annotations for the `Deployment` resource - type: object - appConfig: - default: {} - description: 'Allows to define the appConfig as a multiline string that - generates a ConfigMap automatically, not requiring to have it pre - provisioned as with the extraAppConfig key. DO NOT USE if you need - to put sensitive data in the appConfig. E.g: appConfig: app: baseUrl: - https://somedomain.tld -- Generates ConfigMap and configures it in - the Backstage pods' - type: object - args: - default: [] - description: Backstage container command arguments - items: {} - type: array - command: - default: [] - description: Backstage container command - items: - default: node - type: string - type: array - containerPorts: - description: Container ports on the Deployment - properties: - backend: - default: 7007 - type: integer - type: object - containerSecurityContext: - default: {} - description: 'Security settings for a Container.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/#set-the-security-context-for-a-container' - type: object - extraAppConfig: - default: [] - description: Extra app configuration files to inline into command arguments - items: {} - type: array - extraContainers: - default: [] - description: Deployment sidecars - items: {} - type: array - extraEnvVars: - default: [] - description: Backstage container environment variables - items: {} - type: array - extraEnvVarsCM: - default: [] - description: Backstage container environment variables from existing - ConfigMaps - items: {} - type: array - extraEnvVarsSecrets: - default: [] - description: Backstage container environment variables from existing - Secrets - items: {} - type: array - extraVolumeMounts: - default: [] - description: Backstage container additional volume mounts - items: {} - type: array - extraVolumes: - default: [] - description: Backstage container additional volumes - items: {} - type: array - image: - properties: - digest: - default: "" - description: Backstage image digest (digest takes precedence over - image tag) - type: string - pullPolicy: - default: Always - description: 'Specify a imagePullPolicy. Defaults to ''Always'' - if image tag is ''latest'', else set to ''IfNotPresent''
- Ref: https://kubernetes.io/docs/concepts/containers/images/#image-pull-policy' - type: string - pullSecrets: - default: [] - description: 'Optionally specify an array of imagePullSecrets. Secrets - must be manually created in the namespace.
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/ -
E.g: `pullSecrets: [myRegistryKeySecretName]`' - items: {} - type: array - registry: - default: ghcr.io - description: Backstage image registry - type: string - repository: - default: backstage/backstage - description: Backstage image repository - type: string - tag: - default: latest - description: Backstage image tag (immutable tags are recommended) - type: string - type: object - initContainers: - default: [] - description: Backstage container init containers - items: {} - type: array - installDir: - default: /app - description: Directory containing the backstage installation - type: string - livenessProbe: - default: {} - description: 'Liveness Probe Backstage doesn''t provide any health endpoints - by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks -
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes - ' - type: object - revisionHistoryLimit: - default: 10 - description: Define the [count of deployment revisions](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/#clean-up-policy) - to be kept. May be set to 0 in case of GitOps deployment approach. - type: integer - startupProbe: - default: {} - description: 'Startup Probe Backstage doesn''t provide any health endpoints - by default. A simple one can be added like this: https://backstage.io/docs/plugins/observability/#health-checks -
Ref: https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes -