diff --git a/.github/dependabot.yml b/.github/dependabot.yml index ce740cc..888fc67 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -6,3 +6,5 @@ updates: directory: "/" schedule: interval: "weekly" + cooldown: + default-days: 7 diff --git a/.github/workflows/helm-lint.yml b/.github/workflows/helm-lint.yml index cfe39a1..3c59043 100644 --- a/.github/workflows/helm-lint.yml +++ b/.github/workflows/helm-lint.yml @@ -17,10 +17,12 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@v6 + uses: actions/checkout@de0fac2e4500dabe0009e67214ff5f5447ce83dd # v6 + with: + persist-credentials: false - name: Setup helm - uses: azure/setup-helm@v4 + uses: azure/setup-helm@1a275c3b69536ee54be43f2070a358922e12c8d4 # v4 with: version: 'v3.14.0' diff --git a/.github/workflows/helm-unittest.yml b/.github/workflows/helm-unittest.yml index 1a975ae..97f5417 100644 --- a/.github/workflows/helm-unittest.yml +++ b/.github/workflows/helm-unittest.yml @@ -18,7 +18,9 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@v6 + uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 + with: + persist-credentials: false - name: Run make helmlint run: | diff --git a/.github/workflows/superlinter.yml b/.github/workflows/superlinter.yml index 734e071..783a218 100644 --- a/.github/workflows/superlinter.yml +++ b/.github/workflows/superlinter.yml @@ -13,16 +13,17 @@ jobs: steps: - name: Checkout Code - uses: actions/checkout@v6 + uses: actions/checkout@34e114876b0b11c390a56381ad16ebd13914f8d5 # v4 with: # Full git history is needed to get a proper list of changed files within `super-linter` fetch-depth: 0 + persist-credentials: false ################################ # Run Linter against code base # ################################ - name: Lint Code Base - uses: super-linter/super-linter/slim@v7 + uses: super-linter/super-linter/slim@61abc07d755095a68f4987d1c2c3d1d64408f1f9 # v8 env: VALIDATE_ALL_CODEBASE: true DEFAULT_BRANCH: main @@ -31,5 +32,6 @@ jobs: VALIDATE_KUBERNETES_KUBECONFORM: false VALIDATE_MARKDOWN: false VALIDATE_MARKDOWN_PRETTIER: false + VALIDATE_CHECKOV: false VALIDATE_YAML: false VALIDATE_YAML_PRETTIER: false diff --git a/.github/workflows/update-helm-repo.yml b/.github/workflows/update-helm-repo.yml index e684b77..7965864 100644 --- a/.github/workflows/update-helm-repo.yml +++ b/.github/workflows/update-helm-repo.yml @@ -12,6 +12,9 @@ # name: vp-patterns/update-helm-repo + +permissions: read-all + on: push: tags: @@ -19,12 +22,13 @@ on: jobs: helmlint: - uses: validatedpatterns/helm-charts/.github/workflows/helmlint.yml@workflow-stable + uses: validatedpatterns/helm-charts/.github/workflows/helmlint.yml@workflow-stable # zizmor: ignore[unpinned-uses] permissions: contents: read update-helm-repo: needs: [helmlint] - uses: validatedpatterns/helm-charts/.github/workflows/update-helm-repo.yml@workflow-stable - permissions: read-all - secrets: inherit + uses: validatedpatterns/helm-charts/.github/workflows/update-helm-repo.yml@workflow-stable # zizmor: ignore[unpinned-uses] + permissions: + contents: read + secrets: inherit # zizmor: ignore[secrets-inherit] diff --git a/README.md b/README.md index bf0277d..69c4b8a 100644 --- a/README.md +++ b/README.md @@ -12,30 +12,31 @@ This chart is used by the Validated Patterns installation script that can be fou | Name | Email | Url | | ---- | ------ | --- | -| Validated Patterns Team | | | +| Validated Patterns Team | | | ## Values | Key | Type | Default | Description | |-----|------|---------|-------------| | global.extraValueFiles | list | `[]` | List of additional value files to be passed to the pattern | -| main | object | depends on the individual settings | main is used primarly for initial bootstrap pattern configuration | +| main | object | depends on the individual settings | main is used primarily for initial bootstrap pattern configuration | | main.analytics | object | `{"enabled":true}` | Settings related to the segment.io analytics collection by the patterns operator | | main.analytics.enabled | bool | `true` | Whether analytics are enabled or not | +| main | object | depends on the individual settings | main is used primarily for initial bootstrap pattern configuration | | main.clusterGroupName | string | `"default"` | Name of the clusterGroup to be used. Drives the clusterGroup chart | | main.experimentalCapabilities | string | `""` | String to enable certain experimental capabilities in the operator and the framework. Not needed unless you know exactly what you're doing. | | main.git | object | depends on the individual settings | Settings related to the Git repository used to deploy the pattern | | main.git.repoURL | string | `"https://github.com/pattern-clone/mypattern"` | Repository URL pointing to the pattern | | main.git.repoUpstreamURL | string | `nil` | Setting this field will make it so that an in-cluster gitea instance will be spawned. `repoURL` will be ignored and the pattern will be deployed using the in-gitea URL | | main.git.revision | string | `"main"` | The branch or Git reference to use to deploy the pattern | -| main.gitea | object | `{"chartName":"gitea","chartVersion":"0.0.*","helmRepoUrl":"https://charts.validatedpatterns.io/"}` | Settings releated to the in-cluster gitea installation | +| main.gitea | object | `{"chartName":"gitea","chartVersion":"0.0.*","helmRepoUrl":"https://charts.validatedpatterns.io/"}` | Settings related to the in-cluster gitea installation | | main.gitea.chartName | string | `"gitea"` | Chart name for the in-cluster gitea installation | | main.gitea.chartVersion | string | `"0.0.*"` | Chart version to install | | main.gitea.helmRepoUrl | string | `"https://charts.validatedpatterns.io/"` | Helm Repository URL for the gitea chart | | main.gitops | object | depends on the individual settings | Settings related to the gitops operator | | main.gitops.channel | string | `"gitops-1.18"` | Default channel to install the gitops operator from | | main.gitops.operatorSource | string | `"redhat-operators"` | Source to be used to install the gitops operator from | -| main.multiSourceConfig.clusterGroupChartVersion | string | `nil` | The clustergroup chart version to be used when deploying a pattern (defaults to 0.8.*) | +| main.multiSourceConfig.clusterGroupChartVersion | string | `nil` | The clustergroup chart version to be used when deploying a pattern (defaults to 0.8.\*) | | main.multiSourceConfig.enabled | bool | `false` | Enables a multisource configuration for the clustergroup chart | | main.multiSourceConfig.helmRepoUrl | string | `nil` | The URL of the VP helm charts repository (defaults to https://charts.validatedpatterns.io) | | main.patternsOperator | object | depends on the individual settings | Settings related to the patterns operator installation | @@ -47,7 +48,8 @@ This chart is used by the Validated Patterns installation script that can be fou | main.tokenSecret | string | `nil` | Name of the secret containing access credentials to clone the Git repository to deploy the pattern See https://validatedpatterns.io/blog/2023-12-20-private-repos/ for more information | | main.tokenSecretNamespace | string | `nil` | Namespace where the above secret will be | ----------------------------------------------- +______________________________________________________________________ + Autogenerated from chart metadata using [helm-docs v1.14.2](https://github.com/norwoodj/helm-docs/releases/v1.14.2) ## Update CRD diff --git a/tests/README.md b/tests/README.md index 19c2de1..cfb8c53 100644 --- a/tests/README.md +++ b/tests/README.md @@ -22,7 +22,7 @@ helm plugin install https://github.com/helm-unittest/helm-unittest.git helm unittest . ``` -## Run unittests with docker +## Run unittests with Docker ```bash docker run -ti --rm -v $(pwd):/apps:z helmunittest/helm-unittest . ``` diff --git a/values.yaml b/values.yaml index 012a9bc..589e002 100644 --- a/values.yaml +++ b/values.yaml @@ -2,7 +2,7 @@ global: # -- List of additional value files to be passed to the pattern extraValueFiles: [] -# -- main is used primarly for initial bootstrap pattern configuration +# -- main is used primarily for initial bootstrap pattern configuration # @default -- depends on the individual settings main: # -- Settings related to the Git repository used to deploy the pattern @@ -25,7 +25,7 @@ main: # -- Source to be used to install the gitops operator from operatorSource: redhat-operators - # -- Settings releated to the in-cluster gitea installation + # -- Settings related to the in-cluster gitea installation gitea: # -- Chart name for the in-cluster gitea installation chartName: gitea