mirror of
https://github.com/lukaszraczylo/helm-charts.git
synced 2026-07-05 06:05:32 +00:00
Release gohoarder 0.0.3
This commit is contained in:
@@ -2,8 +2,8 @@ apiVersion: v2
|
|||||||
name: gohoarder
|
name: gohoarder
|
||||||
description: A universal package cache proxy supporting npm, PyPI, and Go modules with security scanning
|
description: A universal package cache proxy supporting npm, PyPI, and Go modules with security scanning
|
||||||
type: application
|
type: application
|
||||||
version: 0.0.2
|
version: 0.0.3
|
||||||
appVersion: "0.0.2"
|
appVersion: "0.0.3"
|
||||||
keywords:
|
keywords:
|
||||||
- package-manager
|
- package-manager
|
||||||
- cache
|
- cache
|
||||||
|
|||||||
@@ -26,7 +26,30 @@ spec:
|
|||||||
{{- end }}
|
{{- end }}
|
||||||
serviceAccountName: {{ include "gohoarder.serviceAccountName" . }}
|
serviceAccountName: {{ include "gohoarder.serviceAccountName" . }}
|
||||||
securityContext:
|
securityContext:
|
||||||
{{- toYaml .Values.podSecurityContext | nindent 8 }}
|
fsGroup: 101
|
||||||
|
runAsNonRoot: true
|
||||||
|
runAsUser: 101
|
||||||
|
initContainers:
|
||||||
|
- name: copy-static-files
|
||||||
|
image: "{{ .Values.image.frontend.repository }}:{{ .Values.image.frontend.tag | default .Chart.AppVersion }}"
|
||||||
|
command: ['sh', '-c']
|
||||||
|
args:
|
||||||
|
- |
|
||||||
|
# Copy built frontend files to writable volume
|
||||||
|
cp -rp /usr/share/nginx/html/* /html/
|
||||||
|
# Copy nginx config to writable volume
|
||||||
|
cp -rp /etc/nginx/conf.d/* /conf/
|
||||||
|
volumeMounts:
|
||||||
|
- name: nginx-html
|
||||||
|
mountPath: /html
|
||||||
|
- name: nginx-conf
|
||||||
|
mountPath: /conf
|
||||||
|
securityContext:
|
||||||
|
runAsUser: 101
|
||||||
|
allowPrivilegeEscalation: false
|
||||||
|
capabilities:
|
||||||
|
drop:
|
||||||
|
- ALL
|
||||||
containers:
|
containers:
|
||||||
- name: frontend
|
- name: frontend
|
||||||
securityContext:
|
securityContext:
|
||||||
@@ -35,6 +58,7 @@ spec:
|
|||||||
drop:
|
drop:
|
||||||
- ALL
|
- ALL
|
||||||
readOnlyRootFilesystem: false
|
readOnlyRootFilesystem: false
|
||||||
|
runAsUser: 101
|
||||||
image: "{{ .Values.image.frontend.repository }}:{{ .Values.image.frontend.tag | default .Chart.AppVersion }}"
|
image: "{{ .Values.image.frontend.repository }}:{{ .Values.image.frontend.tag | default .Chart.AppVersion }}"
|
||||||
imagePullPolicy: {{ .Values.image.frontend.pullPolicy }}
|
imagePullPolicy: {{ .Values.image.frontend.pullPolicy }}
|
||||||
ports:
|
ports:
|
||||||
@@ -64,6 +88,10 @@ spec:
|
|||||||
mountPath: /var/cache/nginx
|
mountPath: /var/cache/nginx
|
||||||
- name: nginx-run
|
- name: nginx-run
|
||||||
mountPath: /var/run
|
mountPath: /var/run
|
||||||
|
- name: nginx-html
|
||||||
|
mountPath: /usr/share/nginx/html
|
||||||
|
- name: nginx-conf
|
||||||
|
mountPath: /etc/nginx/conf.d
|
||||||
volumes:
|
volumes:
|
||||||
- name: tmp
|
- name: tmp
|
||||||
emptyDir: {}
|
emptyDir: {}
|
||||||
@@ -71,6 +99,10 @@ spec:
|
|||||||
emptyDir: {}
|
emptyDir: {}
|
||||||
- name: nginx-run
|
- name: nginx-run
|
||||||
emptyDir: {}
|
emptyDir: {}
|
||||||
|
- name: nginx-html
|
||||||
|
emptyDir: {}
|
||||||
|
- name: nginx-conf
|
||||||
|
emptyDir: {}
|
||||||
{{- with .Values.frontend.nodeSelector }}
|
{{- with .Values.frontend.nodeSelector }}
|
||||||
nodeSelector:
|
nodeSelector:
|
||||||
{{- toYaml . | nindent 8 }}
|
{{- toYaml . | nindent 8 }}
|
||||||
|
|||||||
@@ -42,9 +42,14 @@ spec:
|
|||||||
chown -R 1000:1000 /var/cache/gohoarder /var/lib/gohoarder /tmp/gohoarder
|
chown -R 1000:1000 /var/cache/gohoarder /var/lib/gohoarder /tmp/gohoarder
|
||||||
chmod 750 /var/cache/gohoarder /var/lib/gohoarder
|
chmod 750 /var/cache/gohoarder /var/lib/gohoarder
|
||||||
volumeMounts:
|
volumeMounts:
|
||||||
{{- include "gohoarder.storageVolume" . | nindent 8 }}
|
- name: storage
|
||||||
{{- include "gohoarder.metadataVolume" . | nindent 8 }}
|
mountPath: /var/cache/gohoarder
|
||||||
{{- include "gohoarder.trivyCacheVolume" . | nindent 8 }}
|
- name: metadata
|
||||||
|
mountPath: /var/lib/gohoarder/metadata
|
||||||
|
{{- if .Values.security.scanners.trivy.enabled }}
|
||||||
|
- name: trivy-cache
|
||||||
|
mountPath: {{ .Values.security.scanners.trivy.cacheDb }}
|
||||||
|
{{- end }}
|
||||||
- name: tmp
|
- name: tmp
|
||||||
mountPath: /tmp/gohoarder
|
mountPath: /tmp/gohoarder
|
||||||
securityContext:
|
securityContext:
|
||||||
|
|||||||
@@ -39,8 +39,10 @@ spec:
|
|||||||
chown -R 1000:1000 /var/cache/gohoarder /var/lib/gohoarder /tmp/gohoarder
|
chown -R 1000:1000 /var/cache/gohoarder /var/lib/gohoarder /tmp/gohoarder
|
||||||
chmod 750 /var/cache/gohoarder /var/lib/gohoarder
|
chmod 750 /var/cache/gohoarder /var/lib/gohoarder
|
||||||
volumeMounts:
|
volumeMounts:
|
||||||
{{- include "gohoarder.storageVolume" . | nindent 8 }}
|
- name: storage
|
||||||
{{- include "gohoarder.metadataVolume" . | nindent 8 }}
|
mountPath: /var/cache/gohoarder
|
||||||
|
- name: metadata
|
||||||
|
mountPath: /var/lib/gohoarder/metadata
|
||||||
- name: tmp
|
- name: tmp
|
||||||
mountPath: /tmp/gohoarder
|
mountPath: /tmp/gohoarder
|
||||||
securityContext:
|
securityContext:
|
||||||
|
|||||||
@@ -51,17 +51,17 @@ image:
|
|||||||
server:
|
server:
|
||||||
repository: ghcr.io/lukaszraczylo/gohoarder-server
|
repository: ghcr.io/lukaszraczylo/gohoarder-server
|
||||||
pullPolicy: IfNotPresent
|
pullPolicy: IfNotPresent
|
||||||
tag: "0.0.2"
|
tag: "0.0.3"
|
||||||
|
|
||||||
frontend:
|
frontend:
|
||||||
repository: ghcr.io/lukaszraczylo/gohoarder-frontend
|
repository: ghcr.io/lukaszraczylo/gohoarder-frontend
|
||||||
pullPolicy: IfNotPresent
|
pullPolicy: IfNotPresent
|
||||||
tag: "0.0.2"
|
tag: "0.0.3"
|
||||||
|
|
||||||
scanner:
|
scanner:
|
||||||
repository: ghcr.io/lukaszraczylo/gohoarder-scanner
|
repository: ghcr.io/lukaszraczylo/gohoarder-scanner
|
||||||
pullPolicy: IfNotPresent
|
pullPolicy: IfNotPresent
|
||||||
tag: "0.0.2"
|
tag: "0.0.3"
|
||||||
|
|
||||||
# Service Account
|
# Service Account
|
||||||
serviceAccount:
|
serviceAccount:
|
||||||
|
|||||||
Binary file not shown.
+28
-1
@@ -1,6 +1,33 @@
|
|||||||
apiVersion: v1
|
apiVersion: v1
|
||||||
entries:
|
entries:
|
||||||
gohoarder:
|
gohoarder:
|
||||||
|
- apiVersion: v2
|
||||||
|
appVersion: 0.0.3
|
||||||
|
created: "2026-01-03T01:03:31.232406402Z"
|
||||||
|
description: A universal package cache proxy supporting npm, PyPI, and Go modules
|
||||||
|
with security scanning
|
||||||
|
digest: dde1dfcbb9268689e54d12b12f337c870748392905d2b84f0b218a816d8d6255
|
||||||
|
home: https://github.com/lukaszraczylo/gohoarder
|
||||||
|
icon: https://raw.githubusercontent.com/lukaszraczylo/gohoarder/main/docs/logo.png
|
||||||
|
keywords:
|
||||||
|
- package-manager
|
||||||
|
- cache
|
||||||
|
- proxy
|
||||||
|
- npm
|
||||||
|
- pypi
|
||||||
|
- go-modules
|
||||||
|
- security
|
||||||
|
- vulnerability-scanning
|
||||||
|
maintainers:
|
||||||
|
- email: lukasz@raczylo.com
|
||||||
|
name: Lukasz Raczylo
|
||||||
|
name: gohoarder
|
||||||
|
sources:
|
||||||
|
- https://github.com/lukaszraczylo/gohoarder
|
||||||
|
type: application
|
||||||
|
urls:
|
||||||
|
- https://github.com/lukaszraczylo/helm-charts/releases/download/gohoarder-0.0.3/gohoarder-0.0.3.tgz
|
||||||
|
version: 0.0.3
|
||||||
- apiVersion: v2
|
- apiVersion: v2
|
||||||
appVersion: 0.0.2
|
appVersion: 0.0.2
|
||||||
created: "2026-01-03T00:29:54.106039869Z"
|
created: "2026-01-03T00:29:54.106039869Z"
|
||||||
@@ -1678,4 +1705,4 @@ entries:
|
|||||||
urls:
|
urls:
|
||||||
- https://github.com/lukaszraczylo/helm-charts/releases/download/kubemirror-0.2.8/kubemirror-0.2.8.tgz
|
- https://github.com/lukaszraczylo/helm-charts/releases/download/kubemirror-0.2.8/kubemirror-0.2.8.tgz
|
||||||
version: 0.2.8
|
version: 0.2.8
|
||||||
generated: "2026-01-03T00:29:54.104537639Z"
|
generated: "2026-01-03T01:03:31.230925033Z"
|
||||||
|
|||||||
Reference in New Issue
Block a user