diff --git a/stable/enterprise/Chart.yaml b/stable/enterprise/Chart.yaml index bbcc85a5..607c0acb 100644 --- a/stable/enterprise/Chart.yaml +++ b/stable/enterprise/Chart.yaml @@ -1,6 +1,6 @@ apiVersion: v2 name: enterprise -version: "3.3.1" +version: "3.3.2" appVersion: "5.13.1" kubeVersion: 1.23.x - 1.31.x || 1.23.x-x - 1.31.x-x description: | diff --git a/stable/enterprise/README.md b/stable/enterprise/README.md index fce8fdd3..32e1f91a 100644 --- a/stable/enterprise/README.md +++ b/stable/enterprise/README.md @@ -674,6 +674,7 @@ To restore your deployment to using your previous driver configurations: | `nodeSelector` | Common nodeSelector set on all Kubernetes pods | `{}` | | `tolerations` | Common tolerations set on all Kubernetes pods | `[]` | | `affinity` | Common affinity set on all Kubernetes pods | `{}` | +| `topologySpreadConstraints` | Common topologySpreadConstraints set on all Kubernetes pods. | `[]` | | `scratchVolume.mountPath` | The mount path of an external volume for scratch space. Used for the following pods: analyzer, policy-engine, catalog, and reports | `/analysis_scratch` | | `scratchVolume.fixGroupPermissions` | Enable an initContainer that will fix the fsGroup permissions on all scratch volumes | `false` | | `scratchVolume.fixerInitContainerImage` | The image to use for the mode-fixer initContainer | `alpine` | @@ -830,244 +831,255 @@ To restore your deployment to using your previous driver configurations: ### Anchore Analyzer k8s Deployment Parameters -| Name | Description | Value | -| -------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------ | -| `analyzer.replicaCount` | Number of replicas for the Anchore Analyzer deployment | `1` | -| `analyzer.service.port` | The port used for gatherings metrics when .Values.metricsEnabled=true | `8084` | -| `analyzer.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `analyzer.extraEnv` | Set extra environment variables for Anchore Analyzer pods | `[]` | -| `analyzer.resources` | Resource requests and limits for Anchore Analyzer pods | `{}` | -| `analyzer.labels` | Labels for Anchore Analyzer pods | `{}` | -| `analyzer.annotations` | Annotation for Anchore Analyzer pods | `{}` | -| `analyzer.nodeSelector` | Node labels for Anchore Analyzer pod assignment | `{}` | -| `analyzer.tolerations` | Tolerations for Anchore Analyzer pod assignment | `[]` | -| `analyzer.affinity` | Affinity for Anchore Analyzer pod assignment | `{}` | -| `analyzer.serviceAccountName` | Service account name for Anchore API pods | `""` | -| `analyzer.scratchVolume.details` | Details for the k8s volume to be created for Anchore Analyzer scratch space | `{}` | +| Name | Description | Value | +| ------------------------------------ | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ------ | +| `analyzer.replicaCount` | Number of replicas for the Anchore Analyzer deployment | `1` | +| `analyzer.service.port` | The port used for gatherings metrics when .Values.metricsEnabled=true | `8084` | +| `analyzer.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `analyzer.extraEnv` | Set extra environment variables for Anchore Analyzer pods | `[]` | +| `analyzer.resources` | Resource requests and limits for Anchore Analyzer pods | `{}` | +| `analyzer.labels` | Labels for Anchore Analyzer pods | `{}` | +| `analyzer.annotations` | Annotation for Anchore Analyzer pods | `{}` | +| `analyzer.nodeSelector` | Node labels for Anchore Analyzer pod assignment | `{}` | +| `analyzer.tolerations` | Tolerations for Anchore Analyzer pod assignment | `[]` | +| `analyzer.affinity` | Affinity for Anchore Analyzer pod assignment | `{}` | +| `analyzer.topologySpreadConstraints` | Topology spread constraints for Anchore Analyzer pod assignment | `[]` | +| `analyzer.serviceAccountName` | Service account name for Anchore API pods | `""` | +| `analyzer.scratchVolume.details` | Details for the k8s volume to be created for Anchore Analyzer scratch space | `{}` | ### Anchore API k8s Deployment Parameters -| Name | Description | Value | -| -------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | -| `api.replicaCount` | Number of replicas for Anchore API deployment | `1` | -| `api.service.type` | Service type for Anchore API | `ClusterIP` | -| `api.service.port` | Service port for Anchore API | `8228` | -| `api.service.annotations` | Annotations for Anchore API service | `{}` | -| `api.service.labels` | Labels for Anchore API service | `{}` | -| `api.service.nodePort` | nodePort for Anchore API service | `""` | -| `api.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `api.extraEnv` | Set extra environment variables for Anchore API pods | `[]` | -| `api.extraVolumes` | Define additional volumes for Anchore API pods | `[]` | -| `api.extraVolumeMounts` | Define additional volume mounts for Anchore API pods | `[]` | -| `api.resources` | Resource requests and limits for Anchore API pods | `{}` | -| `api.labels` | Labels for Anchore API pods | `{}` | -| `api.annotations` | Annotation for Anchore API pods | `{}` | -| `api.nodeSelector` | Node labels for Anchore API pod assignment | `{}` | -| `api.tolerations` | Tolerations for Anchore API pod assignment | `[]` | -| `api.affinity` | Affinity for Anchore API pod assignment | `{}` | -| `api.serviceAccountName` | Service account name for Anchore API pods | `""` | +| Name | Description | Value | +| ------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | +| `api.replicaCount` | Number of replicas for Anchore API deployment | `1` | +| `api.service.type` | Service type for Anchore API | `ClusterIP` | +| `api.service.port` | Service port for Anchore API | `8228` | +| `api.service.annotations` | Annotations for Anchore API service | `{}` | +| `api.service.labels` | Labels for Anchore API service | `{}` | +| `api.service.nodePort` | nodePort for Anchore API service | `""` | +| `api.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `api.extraEnv` | Set extra environment variables for Anchore API pods | `[]` | +| `api.extraVolumes` | Define additional volumes for Anchore API pods | `[]` | +| `api.extraVolumeMounts` | Define additional volume mounts for Anchore API pods | `[]` | +| `api.resources` | Resource requests and limits for Anchore API pods | `{}` | +| `api.labels` | Labels for Anchore API pods | `{}` | +| `api.annotations` | Annotation for Anchore API pods | `{}` | +| `api.nodeSelector` | Node labels for Anchore API pod assignment | `{}` | +| `api.tolerations` | Tolerations for Anchore API pod assignment | `[]` | +| `api.affinity` | Affinity for Anchore API pod assignment | `{}` | +| `api.topologySpreadConstraints` | Topology spread constraints for Anchore API pod assignment | `[]` | +| `api.serviceAccountName` | Service account name for Anchore API pods | `""` | ### Anchore Catalog k8s Deployment Parameters -| Name | Description | Value | -| ------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | -| `catalog.replicaCount` | Number of replicas for the Anchore Catalog deployment | `1` | -| `catalog.service.type` | Service type for Anchore Catalog | `ClusterIP` | -| `catalog.service.port` | Service port for Anchore Catalog | `8082` | -| `catalog.service.annotations` | Annotations for Anchore Catalog service | `{}` | -| `catalog.service.labels` | Labels for Anchore Catalog service | `{}` | -| `catalog.service.nodePort` | nodePort for Anchore Catalog service | `""` | -| `catalog.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `catalog.extraEnv` | Set extra environment variables for Anchore Catalog pods | `[]` | -| `catalog.extraVolumes` | Define additional volumes for Anchore Catalog pods | `[]` | -| `catalog.extraVolumeMounts` | Define additional volume mounts for Anchore Catalog pods | `[]` | -| `catalog.resources` | Resource requests and limits for Anchore Catalog pods | `{}` | -| `catalog.labels` | Labels for Anchore Catalog pods | `{}` | -| `catalog.annotations` | Annotation for Anchore Catalog pods | `{}` | -| `catalog.nodeSelector` | Node labels for Anchore Catalog pod assignment | `{}` | -| `catalog.tolerations` | Tolerations for Anchore Catalog pod assignment | `[]` | -| `catalog.affinity` | Affinity for Anchore Catalog pod assignment | `{}` | -| `catalog.serviceAccountName` | Service account name for Anchore Catalog pods | `""` | -| `catalog.scratchVolume.details` | Details for the k8s volume to be created for Anchore Catalog scratch space | `{}` | +| Name | Description | Value | +| ----------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | +| `catalog.replicaCount` | Number of replicas for the Anchore Catalog deployment | `1` | +| `catalog.service.type` | Service type for Anchore Catalog | `ClusterIP` | +| `catalog.service.port` | Service port for Anchore Catalog | `8082` | +| `catalog.service.annotations` | Annotations for Anchore Catalog service | `{}` | +| `catalog.service.labels` | Labels for Anchore Catalog service | `{}` | +| `catalog.service.nodePort` | nodePort for Anchore Catalog service | `""` | +| `catalog.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `catalog.extraEnv` | Set extra environment variables for Anchore Catalog pods | `[]` | +| `catalog.extraVolumes` | Define additional volumes for Anchore Catalog pods | `[]` | +| `catalog.extraVolumeMounts` | Define additional volume mounts for Anchore Catalog pods | `[]` | +| `catalog.resources` | Resource requests and limits for Anchore Catalog pods | `{}` | +| `catalog.labels` | Labels for Anchore Catalog pods | `{}` | +| `catalog.annotations` | Annotation for Anchore Catalog pods | `{}` | +| `catalog.nodeSelector` | Node labels for Anchore Catalog pod assignment | `{}` | +| `catalog.tolerations` | Tolerations for Anchore Catalog pod assignment | `[]` | +| `catalog.affinity` | Affinity for Anchore Catalog pod assignment | `{}` | +| `catalog.topologySpreadConstraints` | Topology spread constraints for Anchore Catalog pod assignment | `[]` | +| `catalog.serviceAccountName` | Service account name for Anchore Catalog pods | `""` | +| `catalog.scratchVolume.details` | Details for the k8s volume to be created for Anchore Catalog scratch space | `{}` | ### Anchore DataSyncer k8s Deployment Parameters -| Name | Description | Value | -| ---------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | -| `dataSyncer.replicaCount` | Number of replicas for the Anchore DataSyncer deployment | `1` | -| `dataSyncer.service.type` | Service type for Anchore DataSyncer | `ClusterIP` | -| `dataSyncer.service.port` | Service port for Anchore DataSyncer | `8778` | -| `dataSyncer.service.annotations` | Annotations for Anchore DataSyncer service | `{}` | -| `dataSyncer.service.labels` | Labels for Anchore DataSyncer service | `{}` | -| `dataSyncer.service.nodePort` | nodePort for Anchore DataSyncer service | `""` | -| `dataSyncer.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `dataSyncer.extraEnv` | Set extra environment variables for Anchore DataSyncer pods | `[]` | -| `dataSyncer.extraVolumes` | Define additional volumes for Anchore DataSyncer pods | `[]` | -| `dataSyncer.extraVolumeMounts` | Define additional volume mounts for Anchore DataSyncer pods | `[]` | -| `dataSyncer.resources` | Resource requests and limits for Anchore DataSyncer pods | `{}` | -| `dataSyncer.labels` | Labels for Anchore DataSyncer pods | `{}` | -| `dataSyncer.annotations` | Annotation for Anchore DataSyncer pods | `{}` | -| `dataSyncer.nodeSelector` | Node labels for Anchore DataSyncer pod assignment | `{}` | -| `dataSyncer.tolerations` | Tolerations for Anchore DataSyncer pod assignment | `[]` | -| `dataSyncer.affinity` | Affinity for Anchore DataSyncer pod assignment | `{}` | -| `dataSyncer.serviceAccountName` | Service account name for Anchore DataSyncer pods | `""` | -| `dataSyncer.scratchVolume.details` | Details for the k8s volume to be created for Anchore DataSyncer scratch space | `{}` | +| Name | Description | Value | +| -------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | +| `dataSyncer.replicaCount` | Number of replicas for the Anchore DataSyncer deployment | `1` | +| `dataSyncer.service.type` | Service type for Anchore DataSyncer | `ClusterIP` | +| `dataSyncer.service.port` | Service port for Anchore DataSyncer | `8778` | +| `dataSyncer.service.annotations` | Annotations for Anchore DataSyncer service | `{}` | +| `dataSyncer.service.labels` | Labels for Anchore DataSyncer service | `{}` | +| `dataSyncer.service.nodePort` | nodePort for Anchore DataSyncer service | `""` | +| `dataSyncer.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `dataSyncer.extraEnv` | Set extra environment variables for Anchore DataSyncer pods | `[]` | +| `dataSyncer.extraVolumes` | Define additional volumes for Anchore DataSyncer pods | `[]` | +| `dataSyncer.extraVolumeMounts` | Define additional volume mounts for Anchore DataSyncer pods | `[]` | +| `dataSyncer.resources` | Resource requests and limits for Anchore DataSyncer pods | `{}` | +| `dataSyncer.labels` | Labels for Anchore DataSyncer pods | `{}` | +| `dataSyncer.annotations` | Annotation for Anchore DataSyncer pods | `{}` | +| `dataSyncer.nodeSelector` | Node labels for Anchore DataSyncer pod assignment | `{}` | +| `dataSyncer.tolerations` | Tolerations for Anchore DataSyncer pod assignment | `[]` | +| `dataSyncer.affinity` | Affinity for Anchore DataSyncer pod assignment | `{}` | +| `dataSyncer.topologySpreadConstraints` | Topology spread constraints for Anchore DataSyncer pod assignment | `[]` | +| `dataSyncer.serviceAccountName` | Service account name for Anchore DataSyncer pods | `""` | +| `dataSyncer.scratchVolume.details` | Details for the k8s volume to be created for Anchore DataSyncer scratch space | `{}` | ### Anchore Notifications Parameters -| Name | Description | Value | -| ------------------------------------ | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | -| `notifications.replicaCount` | Number of replicas for the Anchore Notifications deployment | `1` | -| `notifications.service.type` | Service type for Anchore Notifications | `ClusterIP` | -| `notifications.service.port` | Service port for Anchore Notifications | `8668` | -| `notifications.service.annotations` | Annotations for Anchore Notifications service | `{}` | -| `notifications.service.labels` | Labels for Anchore Notifications service | `{}` | -| `notifications.service.nodePort` | nodePort for Anchore Notifications service | `""` | -| `notifications.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `notifications.extraEnv` | Set extra environment variables for Anchore Notifications pods | `[]` | -| `notifications.extraVolumes` | Define additional volumes for Anchore Notifications pods | `[]` | -| `notifications.extraVolumeMounts` | Define additional volume mounts for Anchore Notifications pods | `[]` | -| `notifications.resources` | Resource requests and limits for Anchore Notifications pods | `{}` | -| `notifications.labels` | Labels for Anchore Notifications pods | `{}` | -| `notifications.annotations` | Annotation for Anchore Notifications pods | `{}` | -| `notifications.nodeSelector` | Node labels for Anchore Notifications pod assignment | `{}` | -| `notifications.tolerations` | Tolerations for Anchore Notifications pod assignment | `[]` | -| `notifications.affinity` | Affinity for Anchore Notifications pod assignment | `{}` | -| `notifications.serviceAccountName` | Service account name for Anchore Notifications pods | `""` | +| Name | Description | Value | +| ----------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | +| `notifications.replicaCount` | Number of replicas for the Anchore Notifications deployment | `1` | +| `notifications.service.type` | Service type for Anchore Notifications | `ClusterIP` | +| `notifications.service.port` | Service port for Anchore Notifications | `8668` | +| `notifications.service.annotations` | Annotations for Anchore Notifications service | `{}` | +| `notifications.service.labels` | Labels for Anchore Notifications service | `{}` | +| `notifications.service.nodePort` | nodePort for Anchore Notifications service | `""` | +| `notifications.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `notifications.extraEnv` | Set extra environment variables for Anchore Notifications pods | `[]` | +| `notifications.extraVolumes` | Define additional volumes for Anchore Notifications pods | `[]` | +| `notifications.extraVolumeMounts` | Define additional volume mounts for Anchore Notifications pods | `[]` | +| `notifications.resources` | Resource requests and limits for Anchore Notifications pods | `{}` | +| `notifications.labels` | Labels for Anchore Notifications pods | `{}` | +| `notifications.annotations` | Annotation for Anchore Notifications pods | `{}` | +| `notifications.nodeSelector` | Node labels for Anchore Notifications pod assignment | `{}` | +| `notifications.tolerations` | Tolerations for Anchore Notifications pod assignment | `[]` | +| `notifications.affinity` | Affinity for Anchore Notifications pod assignment | `{}` | +| `notifications.topologySpreadConstraints` | Topology spread constraints for Anchore Notifications pod assignment | `[]` | +| `notifications.serviceAccountName` | Service account name for Anchore Notifications pods | `""` | ### Anchore Policy Engine k8s Deployment Parameters -| Name | Description | Value | -| ------------------------------------ | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | -| `policyEngine.replicaCount` | Number of replicas for the Anchore Policy Engine deployment | `1` | -| `policyEngine.service.type` | Service type for Anchore Policy Engine | `ClusterIP` | -| `policyEngine.service.port` | Service port for Anchore Policy Engine | `8087` | -| `policyEngine.service.annotations` | Annotations for Anchore Policy Engine service | `{}` | -| `policyEngine.service.labels` | Labels for Anchore Policy Engine service | `{}` | -| `policyEngine.service.nodePort` | nodePort for Anchore Policy Engine service | `""` | -| `policyEngine.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `policyEngine.extraEnv` | Set extra environment variables for Anchore Policy Engine pods | `[]` | -| `policyEngine.extraVolumes` | Define additional volumes for Anchore Policy Engine pods | `[]` | -| `policyEngine.extraVolumeMounts` | Define additional volume mounts for Anchore Policy Engine pods | `[]` | -| `policyEngine.resources` | Resource requests and limits for Anchore Policy Engine pods | `{}` | -| `policyEngine.labels` | Labels for Anchore Policy Engine pods | `{}` | -| `policyEngine.annotations` | Annotation for Anchore Policy Engine pods | `{}` | -| `policyEngine.nodeSelector` | Node labels for Anchore Policy Engine pod assignment | `{}` | -| `policyEngine.tolerations` | Tolerations for Anchore Policy Engine pod assignment | `[]` | -| `policyEngine.affinity` | Affinity for Anchore Policy Engine pod assignment | `{}` | -| `policyEngine.serviceAccountName` | Service account name for Anchore Policy Engine pods | `""` | -| `policyEngine.scratchVolume.details` | Details for the k8s volume to be created for Anchore Policy Engine scratch space | `{}` | +| Name | Description | Value | +| ---------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | +| `policyEngine.replicaCount` | Number of replicas for the Anchore Policy Engine deployment | `1` | +| `policyEngine.service.type` | Service type for Anchore Policy Engine | `ClusterIP` | +| `policyEngine.service.port` | Service port for Anchore Policy Engine | `8087` | +| `policyEngine.service.annotations` | Annotations for Anchore Policy Engine service | `{}` | +| `policyEngine.service.labels` | Labels for Anchore Policy Engine service | `{}` | +| `policyEngine.service.nodePort` | nodePort for Anchore Policy Engine service | `""` | +| `policyEngine.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `policyEngine.extraEnv` | Set extra environment variables for Anchore Policy Engine pods | `[]` | +| `policyEngine.extraVolumes` | Define additional volumes for Anchore Policy Engine pods | `[]` | +| `policyEngine.extraVolumeMounts` | Define additional volume mounts for Anchore Policy Engine pods | `[]` | +| `policyEngine.resources` | Resource requests and limits for Anchore Policy Engine pods | `{}` | +| `policyEngine.labels` | Labels for Anchore Policy Engine pods | `{}` | +| `policyEngine.annotations` | Annotation for Anchore Policy Engine pods | `{}` | +| `policyEngine.nodeSelector` | Node labels for Anchore Policy Engine pod assignment | `{}` | +| `policyEngine.tolerations` | Tolerations for Anchore Policy Engine pod assignment | `[]` | +| `policyEngine.affinity` | Affinity for Anchore Policy Engine pod assignment | `{}` | +| `policyEngine.topologySpreadConstraints` | Topology spread constraints for Anchore Policy Engine pod assignment | `[]` | +| `policyEngine.serviceAccountName` | Service account name for Anchore Policy Engine pods | `""` | +| `policyEngine.scratchVolume.details` | Details for the k8s volume to be created for Anchore Policy Engine scratch space | `{}` | ### Anchore Reports Parameters -| Name | Description | Value | -| ------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | -| `reports.replicaCount` | Number of replicas for the Anchore Reports deployment | `1` | -| `reports.service.type` | Service type for Anchore Reports | `ClusterIP` | -| `reports.service.port` | Service port for Anchore Reports | `8558` | -| `reports.service.annotations` | Annotations for Anchore Reports service | `{}` | -| `reports.service.labels` | Labels for Anchore Reports service | `{}` | -| `reports.service.nodePort` | nodePort for Anchore Reports service | `""` | -| `reports.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `reports.extraEnv` | Set extra environment variables for Anchore Reports pods | `[]` | -| `reports.extraVolumes` | Define additional volumes for Anchore Reports pods | `[]` | -| `reports.extraVolumeMounts` | Define additional volume mounts for Anchore Reports pods | `[]` | -| `reports.resources` | Resource requests and limits for Anchore Reports pods | `{}` | -| `reports.labels` | Labels for Anchore Reports pods | `{}` | -| `reports.annotations` | Annotation for Anchore Reports pods | `{}` | -| `reports.nodeSelector` | Node labels for Anchore Reports pod assignment | `{}` | -| `reports.tolerations` | Tolerations for Anchore Reports pod assignment | `[]` | -| `reports.affinity` | Affinity for Anchore Reports pod assignment | `{}` | -| `reports.serviceAccountName` | Service account name for Anchore Reports pods | `""` | -| `reports.scratchVolume.details` | Details for the k8s volume to be created for Anchore Reports scratch space | `{}` | +| Name | Description | Value | +| ----------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | +| `reports.replicaCount` | Number of replicas for the Anchore Reports deployment | `1` | +| `reports.service.type` | Service type for Anchore Reports | `ClusterIP` | +| `reports.service.port` | Service port for Anchore Reports | `8558` | +| `reports.service.annotations` | Annotations for Anchore Reports service | `{}` | +| `reports.service.labels` | Labels for Anchore Reports service | `{}` | +| `reports.service.nodePort` | nodePort for Anchore Reports service | `""` | +| `reports.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `reports.extraEnv` | Set extra environment variables for Anchore Reports pods | `[]` | +| `reports.extraVolumes` | Define additional volumes for Anchore Reports pods | `[]` | +| `reports.extraVolumeMounts` | Define additional volume mounts for Anchore Reports pods | `[]` | +| `reports.resources` | Resource requests and limits for Anchore Reports pods | `{}` | +| `reports.labels` | Labels for Anchore Reports pods | `{}` | +| `reports.annotations` | Annotation for Anchore Reports pods | `{}` | +| `reports.nodeSelector` | Node labels for Anchore Reports pod assignment | `{}` | +| `reports.tolerations` | Tolerations for Anchore Reports pod assignment | `[]` | +| `reports.affinity` | Affinity for Anchore Reports pod assignment | `{}` | +| `reports.topologySpreadConstraints` | Topology spread constraints for Anchore Reports pod assignment | `[]` | +| `reports.serviceAccountName` | Service account name for Anchore Reports pods | `""` | +| `reports.scratchVolume.details` | Details for the k8s volume to be created for Anchore Reports scratch space | `{}` | ### Anchore Reports Worker Parameters -| Name | Description | Value | -| ------------------------------------ | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | -| `reportsWorker.replicaCount` | Number of replicas for the Anchore Reports deployment | `1` | -| `reportsWorker.service.type` | Service type for Anchore Reports Worker | `ClusterIP` | -| `reportsWorker.service.port` | Service port for Anchore Reports Worker | `8559` | -| `reportsWorker.service.annotations` | Annotations for Anchore Reports Worker service | `{}` | -| `reportsWorker.service.labels` | Labels for Anchore Reports Worker service | `{}` | -| `reportsWorker.service.nodePort` | nodePort for Anchore Reports Worker service | `""` | -| `reportsWorker.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `reportsWorker.extraEnv` | Set extra environment variables for Anchore Reports Worker pods | `[]` | -| `reportsWorker.extraVolumes` | Define additional volumes for Anchore Reports Worker pods | `[]` | -| `reportsWorker.extraVolumeMounts` | Define additional volume mounts for Anchore Reports Worker pods | `[]` | -| `reportsWorker.resources` | Resource requests and limits for Anchore Reports Worker pods | `{}` | -| `reportsWorker.labels` | Labels for Anchore Reports Worker pods | `{}` | -| `reportsWorker.annotations` | Annotation for Anchore Reports Worker pods | `{}` | -| `reportsWorker.nodeSelector` | Node labels for Anchore Reports Worker pod assignment | `{}` | -| `reportsWorker.tolerations` | Tolerations for Anchore Reports Worker pod assignment | `[]` | -| `reportsWorker.affinity` | Affinity for Anchore Reports Worker pod assignment | `{}` | -| `reportsWorker.serviceAccountName` | Service account name for Anchore Reports Worker pods | `""` | +| Name | Description | Value | +| ----------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | +| `reportsWorker.replicaCount` | Number of replicas for the Anchore Reports deployment | `1` | +| `reportsWorker.service.type` | Service type for Anchore Reports Worker | `ClusterIP` | +| `reportsWorker.service.port` | Service port for Anchore Reports Worker | `8559` | +| `reportsWorker.service.annotations` | Annotations for Anchore Reports Worker service | `{}` | +| `reportsWorker.service.labels` | Labels for Anchore Reports Worker service | `{}` | +| `reportsWorker.service.nodePort` | nodePort for Anchore Reports Worker service | `""` | +| `reportsWorker.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `reportsWorker.extraEnv` | Set extra environment variables for Anchore Reports Worker pods | `[]` | +| `reportsWorker.extraVolumes` | Define additional volumes for Anchore Reports Worker pods | `[]` | +| `reportsWorker.extraVolumeMounts` | Define additional volume mounts for Anchore Reports Worker pods | `[]` | +| `reportsWorker.resources` | Resource requests and limits for Anchore Reports Worker pods | `{}` | +| `reportsWorker.labels` | Labels for Anchore Reports Worker pods | `{}` | +| `reportsWorker.annotations` | Annotation for Anchore Reports Worker pods | `{}` | +| `reportsWorker.nodeSelector` | Node labels for Anchore Reports Worker pod assignment | `{}` | +| `reportsWorker.tolerations` | Tolerations for Anchore Reports Worker pod assignment | `[]` | +| `reportsWorker.affinity` | Affinity for Anchore Reports Worker pod assignment | `{}` | +| `reportsWorker.topologySpreadConstraints` | Topology spread constraints for Anchore Reports Worker pod assignment | `[]` | +| `reportsWorker.serviceAccountName` | Service account name for Anchore Reports Worker pods | `""` | ### Anchore Simple Queue Parameters -| Name | Description | Value | -| ---------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | -| `simpleQueue.replicaCount` | Number of replicas for the Anchore Simple Queue deployment | `1` | -| `simpleQueue.service.type` | Service type for Anchore Simple Queue | `ClusterIP` | -| `simpleQueue.service.port` | Service port for Anchore Simple Queue | `8083` | -| `simpleQueue.service.annotations` | Annotations for Anchore Simple Queue service | `{}` | -| `simpleQueue.service.labels` | Labels for Anchore Simple Queue service | `{}` | -| `simpleQueue.service.nodePort` | nodePort for Anchore Simple Queue service | `""` | -| `simpleQueue.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `simpleQueue.extraEnv` | Set extra environment variables for Anchore Simple Queue pods | `[]` | -| `simpleQueue.extraVolumes` | Define additional volumes for Anchore Simple Queue pods | `[]` | -| `simpleQueue.extraVolumeMounts` | Define additional volume mounts for Anchore Simple Queue pods | `[]` | -| `simpleQueue.resources` | Resource requests and limits for Anchore Simple Queue pods | `{}` | -| `simpleQueue.labels` | Labels for Anchore Simple Queue pods | `{}` | -| `simpleQueue.annotations` | Annotation for Anchore Simple Queue pods | `{}` | -| `simpleQueue.nodeSelector` | Node labels for Anchore Simple Queue pod assignment | `{}` | -| `simpleQueue.tolerations` | Tolerations for Anchore Simple Queue pod assignment | `[]` | -| `simpleQueue.affinity` | Affinity for Anchore Simple Queue pod assignment | `{}` | -| `simpleQueue.serviceAccountName` | Service account name for Anchore Simple Queue pods | `""` | +| Name | Description | Value | +| --------------------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------- | +| `simpleQueue.replicaCount` | Number of replicas for the Anchore Simple Queue deployment | `1` | +| `simpleQueue.service.type` | Service type for Anchore Simple Queue | `ClusterIP` | +| `simpleQueue.service.port` | Service port for Anchore Simple Queue | `8083` | +| `simpleQueue.service.annotations` | Annotations for Anchore Simple Queue service | `{}` | +| `simpleQueue.service.labels` | Labels for Anchore Simple Queue service | `{}` | +| `simpleQueue.service.nodePort` | nodePort for Anchore Simple Queue service | `""` | +| `simpleQueue.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `simpleQueue.extraEnv` | Set extra environment variables for Anchore Simple Queue pods | `[]` | +| `simpleQueue.extraVolumes` | Define additional volumes for Anchore Simple Queue pods | `[]` | +| `simpleQueue.extraVolumeMounts` | Define additional volume mounts for Anchore Simple Queue pods | `[]` | +| `simpleQueue.resources` | Resource requests and limits for Anchore Simple Queue pods | `{}` | +| `simpleQueue.labels` | Labels for Anchore Simple Queue pods | `{}` | +| `simpleQueue.annotations` | Annotation for Anchore Simple Queue pods | `{}` | +| `simpleQueue.nodeSelector` | Node labels for Anchore Simple Queue pod assignment | `{}` | +| `simpleQueue.tolerations` | Tolerations for Anchore Simple Queue pod assignment | `[]` | +| `simpleQueue.affinity` | Affinity for Anchore Simple Queue pod assignment | `{}` | +| `simpleQueue.topologySpreadConstraints` | Topology spread constraints for Anchore Simple Queue pod assignment | `[]` | +| `simpleQueue.serviceAccountName` | Service account name for Anchore Simple Queue pods | `""` | ### Anchore UI Parameters -| Name | Description | Value | -| ---------------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------- | -| `ui.image` | Image used for the Anchore UI container | `docker.io/anchore/enterprise-ui:v5.13.0` | -| `ui.imagePullPolicy` | Image pull policy for Anchore UI image | `IfNotPresent` | -| `ui.existingSecretName` | Name of an existing secret to be used for Anchore UI DB and Redis endpoints | `anchore-enterprise-ui-env` | -| `ui.ldapsRootCaCertName` | Name of the custom CA certificate file store in `.Values.certStoreSecretName` | `""` | -| `ui.service.type` | Service type for Anchore UI | `ClusterIP` | -| `ui.service.port` | Service port for Anchore UI | `80` | -| `ui.service.annotations` | Annotations for Anchore UI service | `{}` | -| `ui.service.labels` | Labels for Anchore UI service | `{}` | -| `ui.service.sessionAffinity` | Session Affinity for Ui service | `ClientIP` | -| `ui.service.nodePort` | nodePort for Anchore UI service | `""` | -| `ui.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | -| `ui.extraEnv` | Set extra environment variables for Anchore UI pods | `[]` | -| `ui.extraVolumes` | Define additional volumes for Anchore UI pods | `[]` | -| `ui.extraVolumeMounts` | Define additional volume mounts for Anchore UI pods | `[]` | -| `ui.resources` | Resource requests and limits for Anchore UI pods | `{}` | -| `ui.labels` | Labels for Anchore UI pods | `{}` | -| `ui.annotations` | Annotation for Anchore UI pods | `{}` | -| `ui.nodeSelector` | Node labels for Anchore UI pod assignment | `{}` | -| `ui.tolerations` | Tolerations for Anchore UI pod assignment | `[]` | -| `ui.affinity` | Affinity for Anchore ui pod assignment | `{}` | -| `ui.serviceAccountName` | Service account name for Anchore UI pods | `""` | +| Name | Description | Value | +| ------------------------------ | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | ----------------------------------------- | +| `ui.image` | Image used for the Anchore UI container | `docker.io/anchore/enterprise-ui:v5.13.0` | +| `ui.imagePullPolicy` | Image pull policy for Anchore UI image | `IfNotPresent` | +| `ui.existingSecretName` | Name of an existing secret to be used for Anchore UI DB and Redis endpoints | `anchore-enterprise-ui-env` | +| `ui.ldapsRootCaCertName` | Name of the custom CA certificate file store in `.Values.certStoreSecretName` | `""` | +| `ui.service.type` | Service type for Anchore UI | `ClusterIP` | +| `ui.service.port` | Service port for Anchore UI | `80` | +| `ui.service.annotations` | Annotations for Anchore UI service | `{}` | +| `ui.service.labels` | Labels for Anchore UI service | `{}` | +| `ui.service.sessionAffinity` | Session Affinity for Ui service | `ClientIP` | +| `ui.service.nodePort` | nodePort for Anchore UI service | `""` | +| `ui.service.domainSuffix` | domain suffix for appending to the ANCHORE_ENDPOINT_HOSTNAME. If blank, domainSuffix will be "namespace.svc.cluster.local". Takes precedence over the top level domainSuffix | `""` | +| `ui.extraEnv` | Set extra environment variables for Anchore UI pods | `[]` | +| `ui.extraVolumes` | Define additional volumes for Anchore UI pods | `[]` | +| `ui.extraVolumeMounts` | Define additional volume mounts for Anchore UI pods | `[]` | +| `ui.resources` | Resource requests and limits for Anchore UI pods | `{}` | +| `ui.labels` | Labels for Anchore UI pods | `{}` | +| `ui.annotations` | Annotation for Anchore UI pods | `{}` | +| `ui.nodeSelector` | Node labels for Anchore UI pod assignment | `{}` | +| `ui.tolerations` | Tolerations for Anchore UI pod assignment | `[]` | +| `ui.affinity` | Affinity for Anchore ui pod assignment | `{}` | +| `ui.topologySpreadConstraints` | Topology spread constraints for Anchore UI pod assignment | `[]` | +| `ui.serviceAccountName` | Service account name for Anchore UI pods | `""` | ### Anchore Upgrade Job Parameters -| Name | Description | Value | -| ------------------------------------ | ----------------------------------------------------------------------------------------------------------------------------------------------- | ---------------------- | -| `upgradeJob.enabled` | Enable the Anchore Enterprise database upgrade job | `true` | -| `upgradeJob.force` | Force the Anchore Feeds database upgrade job to run as a regular job instead of as a Helm hook | `false` | -| `upgradeJob.rbacCreate` | Create RBAC resources for the Anchore upgrade job | `true` | -| `upgradeJob.serviceAccountName` | Use an existing service account for the Anchore upgrade job | `""` | -| `upgradeJob.usePostUpgradeHook` | Use a Helm post-upgrade hook to run the upgrade job instead of the default pre-upgrade hook. This job does not require creating RBAC resources. | `false` | -| `upgradeJob.kubectlImage` | The image to use for the upgrade job's init container that uses kubectl to scale down deployments before an upgrade | `bitnami/kubectl:1.30` | -| `upgradeJob.nodeSelector` | Node labels for the Anchore upgrade job pod assignment | `{}` | -| `upgradeJob.tolerations` | Tolerations for the Anchore upgrade job pod assignment | `[]` | -| `upgradeJob.affinity` | Affinity for the Anchore upgrade job pod assignment | `{}` | -| `upgradeJob.annotations` | Annotations for the Anchore upgrade job | `{}` | -| `upgradeJob.resources` | Resource requests and limits for the Anchore upgrade job | `{}` | -| `upgradeJob.labels` | Labels for the Anchore upgrade job | `{}` | -| `upgradeJob.ttlSecondsAfterFinished` | The time period in seconds the upgrade job, and it's related pods should be retained for | `-1` | +| Name | Description | Value | +| -------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------- | ---------------------- | +| `upgradeJob.enabled` | Enable the Anchore Enterprise database upgrade job | `true` | +| `upgradeJob.force` | Force the Anchore Feeds database upgrade job to run as a regular job instead of as a Helm hook | `false` | +| `upgradeJob.rbacCreate` | Create RBAC resources for the Anchore upgrade job | `true` | +| `upgradeJob.serviceAccountName` | Use an existing service account for the Anchore upgrade job | `""` | +| `upgradeJob.usePostUpgradeHook` | Use a Helm post-upgrade hook to run the upgrade job instead of the default pre-upgrade hook. This job does not require creating RBAC resources. | `false` | +| `upgradeJob.kubectlImage` | The image to use for the upgrade job's init container that uses kubectl to scale down deployments before an upgrade | `bitnami/kubectl:1.30` | +| `upgradeJob.nodeSelector` | Node labels for the Anchore upgrade job pod assignment | `{}` | +| `upgradeJob.tolerations` | Tolerations for the Anchore upgrade job pod assignment | `[]` | +| `upgradeJob.affinity` | Affinity for the Anchore upgrade job pod assignment | `{}` | +| `upgradeJob.topologySpreadConstraints` | Topology spread constraints for the Anchore upgrade job pod assignment | `[]` | +| `upgradeJob.annotations` | Annotations for the Anchore upgrade job | `{}` | +| `upgradeJob.resources` | Resource requests and limits for the Anchore upgrade job | `{}` | +| `upgradeJob.labels` | Labels for the Anchore upgrade job | `{}` | +| `upgradeJob.ttlSecondsAfterFinished` | The time period in seconds the upgrade job, and it's related pods should be retained for | `-1` | ### Ingress Parameters @@ -1142,6 +1154,7 @@ To restore your deployment to using your previous driver configurations: | `osaaMigrationJob.nodeSelector` | Node labels for Anchore Object Store and Analysis Archive migration job pod assignment | `{}` | | `osaaMigrationJob.tolerations` | Tolerations for Anchore Object Store and Analysis Archive migration job pod assignment | `[]` | | `osaaMigrationJob.affinity` | Affinity for Anchore Object Store and Analysis Archive migration job pod assignment | `{}` | +| `osaaMigrationJob.topologySpreadConstraints` | Topology spread constraints for Anchore Object Store and Analysis Archive migration job pod assignment | `[]` | | `osaaMigrationJob.serviceAccountName` | Service account name for Anchore Object Store and Analysis Archive migration job pods | `""` | | `osaaMigrationJob.analysisArchiveMigration.bucket` | The name of the bucket to migrate | `analysis_archive` | | `osaaMigrationJob.analysisArchiveMigration.run` | Run the analysis_archive migration | `false` | diff --git a/stable/enterprise/templates/_common.tpl b/stable/enterprise/templates/_common.tpl index 55b1f90a..077e30fb 100644 --- a/stable/enterprise/templates/_common.tpl +++ b/stable/enterprise/templates/_common.tpl @@ -273,6 +273,9 @@ nodeSelector: {{- toYaml . | nindent 2 }} {{- with (default .Values.affinity (index .Values (print $component)).affinity) }} affinity: {{- toYaml . | nindent 2 }} {{- end }} +{{- with (default .Values.topologySpreadConstraints (index .Values (print $component)).topologySpreadConstraints) }} +topologySpreadConstraints: {{- toYaml . | nindent 2 }} +{{- end }} {{- with (default .Values.tolerations (index .Values (print $component)).tolerations) }} tolerations: {{- toYaml . | nindent 2 }} {{- end }} diff --git a/stable/enterprise/values.yaml b/stable/enterprise/values.yaml index 23cb769f..e1792323 100644 --- a/stable/enterprise/values.yaml +++ b/stable/enterprise/values.yaml @@ -136,6 +136,12 @@ tolerations: [] ## affinity: {} +## @param topologySpreadConstraints Common topologySpreadConstraints set on all Kubernetes pods. +## ref: https://kubernetes.io/docs/concepts/scheduling-eviction/topology-aware-scheduling/ +## Service level topologySpreadConstraints will override these ones +## +topologySpreadConstraints: [] + ## @param scratchVolume.mountPath The mount path of an external volume for scratch space. Used for the following pods: analyzer, policy-engine, catalog, and reports ## @param scratchVolume.fixGroupPermissions Enable an initContainer that will fix the fsGroup permissions on all scratch volumes ## @param scratchVolume.fixerInitContainerImage The image to use for the mode-fixer initContainer @@ -828,6 +834,10 @@ analyzer: ## affinity: {} + ## @param analyzer.topologySpreadConstraints Topology spread constraints for Anchore Analyzer pod assignment + ## + topologySpreadConstraints: [] + ## @param analyzer.serviceAccountName Service account name for Anchore API pods ## serviceAccountName: "" @@ -903,6 +913,9 @@ api: ## affinity: {} + ## @param api.topologySpreadConstraints Topology spread constraints for Anchore API pod assignment + topologySpreadConstraints: [] + ## @param api.serviceAccountName Service account name for Anchore API pods ## serviceAccountName: "" @@ -973,6 +986,10 @@ catalog: ## affinity: {} + ## @param catalog.topologySpreadConstraints Topology spread constraints for Anchore Catalog pod assignment + ## + topologySpreadConstraints: [] + ## @param catalog.serviceAccountName Service account name for Anchore Catalog pods ## serviceAccountName: "" @@ -1048,6 +1065,10 @@ dataSyncer: ## affinity: {} + ## @param dataSyncer.topologySpreadConstraints Topology spread constraints for Anchore DataSyncer pod assignment + ## + topologySpreadConstraints: [] + ## @param dataSyncer.serviceAccountName Service account name for Anchore DataSyncer pods ## serviceAccountName: "" @@ -1123,6 +1144,10 @@ notifications: ## affinity: {} + ## @param notifications.topologySpreadConstraints Topology spread constraints for Anchore Notifications pod assignment + ## + topologySpreadConstraints: [] + ## @param notifications.serviceAccountName Service account name for Anchore Notifications pods ## serviceAccountName: "" @@ -1193,6 +1218,10 @@ policyEngine: ## affinity: {} + ## @param policyEngine.topologySpreadConstraints Topology spread constraints for Anchore Policy Engine pod assignment + ## + topologySpreadConstraints: [] + ## @param policyEngine.serviceAccountName Service account name for Anchore Policy Engine pods ## serviceAccountName: "" @@ -1270,6 +1299,10 @@ reports: ## affinity: {} + ## @param reports.topologySpreadConstraints Topology spread constraints for Anchore Reports pod assignment + ## + topologySpreadConstraints: [] + ## @param reports.serviceAccountName Service account name for Anchore Reports pods ## serviceAccountName: "" @@ -1355,6 +1388,10 @@ reportsWorker: ## affinity: {} + ## @param reportsWorker.topologySpreadConstraints Topology spread constraints for Anchore Reports Worker pod assignment + ## + topologySpreadConstraints: [] + ## @param reportsWorker.serviceAccountName Service account name for Anchore Reports Worker pods ## serviceAccountName: "" @@ -1425,6 +1462,10 @@ simpleQueue: ## affinity: {} + ## @param simpleQueue.topologySpreadConstraints Topology spread constraints for Anchore Simple Queue pod assignment + ## + topologySpreadConstraints: [] + ## @param simpleQueue.serviceAccountName Service account name for Anchore Simple Queue pods ## serviceAccountName: "" @@ -1515,6 +1556,10 @@ ui: ## affinity: {} + ## @param ui.topologySpreadConstraints Topology spread constraints for Anchore UI pod assignment + ## + topologySpreadConstraints: [] + ## @param ui.serviceAccountName Service account name for Anchore UI pods ## serviceAccountName: "" @@ -1564,6 +1609,10 @@ upgradeJob: ## affinity: {} + ## @param upgradeJob.topologySpreadConstraints Topology spread constraints for the Anchore upgrade job pod assignment + ## + topologySpreadConstraints: [] + ## @param upgradeJob.annotations Annotations for the Anchore upgrade job ## annotations: {} @@ -1831,6 +1880,10 @@ osaaMigrationJob: ## affinity: {} + ## @param osaaMigrationJob.topologySpreadConstraints Topology spread constraints for Anchore Object Store and Analysis Archive migration job pod assignment + ## + topologySpreadConstraints: [] + ## @param osaaMigrationJob.serviceAccountName Service account name for Anchore Object Store and Analysis Archive migration job pods ## serviceAccountName: ""