Select a resource from the tree to view its diff.
changedDeployment external-secrets/external-secrets
HelmRelease external-secrets/external-secrets
| 1 | apiVersion: apps/v1 | 1 | apiVersion: apps/v1 |
| 2 | kind: Deployment | 2 | kind: Deployment |
| 3 | metadata: | 3 | metadata: |
| 4 | labels: | 4 | labels: |
| 5 | app.kubernetes.io/instance: external-secrets | 5 | app.kubernetes.io/instance: external-secrets |
| 6 | app.kubernetes.io/managed-by: Helm | 6 | app.kubernetes.io/managed-by: Helm |
| 7 | app.kubernetes.io/name: external-secrets | 7 | app.kubernetes.io/name: external-secrets |
| 8 | helm.toolkit.fluxcd.io/name: external-secrets | 8 | helm.toolkit.fluxcd.io/name: external-secrets |
| 9 | helm.toolkit.fluxcd.io/namespace: external-secrets | 9 | helm.toolkit.fluxcd.io/namespace: external-secrets |
| 10 | name: external-secrets | 10 | name: external-secrets |
| 11 | namespace: external-secrets | 11 | namespace: external-secrets |
| 12 | spec: | 12 | spec: |
| 13 | replicas: 1 | 13 | replicas: 1 |
| 14 | revisionHistoryLimit: 10 | 14 | revisionHistoryLimit: 10 |
| 15 | selector: | 15 | selector: |
| 16 | matchLabels: | 16 | matchLabels: |
| 17 | app.kubernetes.io/instance: external-secrets | 17 | app.kubernetes.io/instance: external-secrets |
| 18 | app.kubernetes.io/name: external-secrets | 18 | app.kubernetes.io/name: external-secrets |
| 19 | template: | 19 | template: |
| 20 | metadata: | 20 | metadata: |
| 21 | labels: | 21 | labels: |
| 22 | app.kubernetes.io/instance: external-secrets | 22 | app.kubernetes.io/instance: external-secrets |
| 23 | app.kubernetes.io/managed-by: Helm | 23 | app.kubernetes.io/managed-by: Helm |
| 24 | app.kubernetes.io/name: external-secrets | 24 | app.kubernetes.io/name: external-secrets |
| 25 | spec: | 25 | spec: |
| 26 | automountServiceAccountToken: true | 26 | automountServiceAccountToken: true |
| 27 | containers: | 27 | containers: |
| 28 | - args: | 28 | - args: |
| 29 | - --enable-leader-election=true | 29 | - --enable-leader-election=true |
| 30 | - --concurrent=1 | 30 | - --concurrent=1 |
| 31 | - --metrics-addr=:8080 | 31 | - --metrics-addr=:8080 |
| 32 | - --loglevel=info | 32 | - --loglevel=info |
| 33 | - --zap-time-encoding=epoch | 33 | - --zap-time-encoding=epoch |
| 34 | image: ghcr.io/external-secrets/external-secrets:v2.5.0 | 34 | image: ghcr.io/external-secrets/external-secrets:v2.6.0 |
| 35 | imagePullPolicy: IfNotPresent | 35 | imagePullPolicy: IfNotPresent |
| 36 | name: external-secrets | 36 | name: external-secrets |
| 37 | ports: | 37 | ports: |
| 38 | - containerPort: 8080 | 38 | - containerPort: 8080 |
| 39 | name: metrics | 39 | name: metrics |
| 40 | protocol: TCP | 40 | protocol: TCP |
| 41 | securityContext: | 41 | securityContext: |
| 42 | allowPrivilegeEscalation: false | 42 | allowPrivilegeEscalation: false |
| 43 | capabilities: | 43 | capabilities: |
| 44 | drop: | 44 | drop: |
| 45 | - ALL | 45 | - ALL |
| 46 | readOnlyRootFilesystem: true | 46 | readOnlyRootFilesystem: true |
| 47 | runAsNonRoot: true | 47 | runAsNonRoot: true |
| 48 | runAsUser: 1000 | 48 | runAsUser: 1000 |
| 49 | seccompProfile: | 49 | seccompProfile: |
| 50 | type: RuntimeDefault | 50 | type: RuntimeDefault |
| 51 | dnsPolicy: ClusterFirst | 51 | dnsPolicy: ClusterFirst |
| 52 | hostNetwork: false | 52 | hostNetwork: false |
| 53 | serviceAccountName: external-secrets | 53 | serviceAccountName: external-secrets |
| 54 | 54 | ||
| 1 | 1 | apiVersion: apps/v1 |
| 2 | 2 | kind: Deployment |
| 3 | 3 | metadata: |
| 4 | 4 | labels: |
| 5 | 5 | app.kubernetes.io/instance: external-secrets |
| 6 | 6 | app.kubernetes.io/managed-by: Helm |
| 7 | 7 | app.kubernetes.io/name: external-secrets |
| 8 | 8 | helm.toolkit.fluxcd.io/name: external-secrets |
| 9 | 9 | helm.toolkit.fluxcd.io/namespace: external-secrets |
| 10 | 10 | name: external-secrets |
| 11 | 11 | namespace: external-secrets |
| 12 | 12 | spec: |
| 13 | 13 | replicas: 1 |
| 14 | 14 | revisionHistoryLimit: 10 |
| 15 | 15 | selector: |
| 16 | 16 | matchLabels: |
| 17 | 17 | app.kubernetes.io/instance: external-secrets |
| 18 | 18 | app.kubernetes.io/name: external-secrets |
| 19 | 19 | template: |
| 20 | 20 | metadata: |
| 21 | 21 | labels: |
| 22 | 22 | app.kubernetes.io/instance: external-secrets |
| 23 | 23 | app.kubernetes.io/managed-by: Helm |
| 24 | 24 | app.kubernetes.io/name: external-secrets |
| 25 | 25 | spec: |
| 26 | 26 | automountServiceAccountToken: true |
| 27 | 27 | containers: |
| 28 | 28 | - args: |
| 29 | 29 | - --enable-leader-election=true |
| 30 | 30 | - --concurrent=1 |
| 31 | 31 | - --metrics-addr=:8080 |
| 32 | 32 | - --loglevel=info |
| 33 | 33 | - --zap-time-encoding=epoch |
| 34 | image: ghcr.io/external-secrets/external-secrets:v2.5.0 | |
| 34 | image: ghcr.io/external-secrets/external-secrets:v2.6.0 | |
| 35 | 35 | imagePullPolicy: IfNotPresent |
| 36 | 36 | name: external-secrets |
| 37 | 37 | ports: |
| 38 | 38 | - containerPort: 8080 |
| 39 | 39 | name: metrics |
| 40 | 40 | protocol: TCP |
| 41 | 41 | securityContext: |
| 42 | 42 | allowPrivilegeEscalation: false |
| 43 | 43 | capabilities: |
| 44 | 44 | drop: |
| 45 | 45 | - ALL |
| 46 | 46 | readOnlyRootFilesystem: true |
| 47 | 47 | runAsNonRoot: true |
| 48 | 48 | runAsUser: 1000 |
| 49 | 49 | seccompProfile: |
| 50 | 50 | type: RuntimeDefault |
| 51 | 51 | dnsPolicy: ClusterFirst |
| 52 | 52 | hostNetwork: false |
| 53 | 53 | serviceAccountName: external-secrets |
| 54 | 54 | |
changedDeployment external-secrets/external-secrets-cert-controller
HelmRelease external-secrets/external-secrets
| 1 | apiVersion: apps/v1 | 1 | apiVersion: apps/v1 |
| 2 | kind: Deployment | 2 | kind: Deployment |
| 3 | metadata: | 3 | metadata: |
| 4 | labels: | 4 | labels: |
| 5 | app.kubernetes.io/instance: external-secrets | 5 | app.kubernetes.io/instance: external-secrets |
| 6 | app.kubernetes.io/managed-by: Helm | 6 | app.kubernetes.io/managed-by: Helm |
| 7 | app.kubernetes.io/name: external-secrets-cert-controller | 7 | app.kubernetes.io/name: external-secrets-cert-controller |
| 8 | helm.toolkit.fluxcd.io/name: external-secrets | 8 | helm.toolkit.fluxcd.io/name: external-secrets |
| 9 | helm.toolkit.fluxcd.io/namespace: external-secrets | 9 | helm.toolkit.fluxcd.io/namespace: external-secrets |
| 10 | name: external-secrets-cert-controller | 10 | name: external-secrets-cert-controller |
| 11 | namespace: external-secrets | 11 | namespace: external-secrets |
| 12 | spec: | 12 | spec: |
| 13 | replicas: 1 | 13 | replicas: 1 |
| 14 | revisionHistoryLimit: 10 | 14 | revisionHistoryLimit: 10 |
| 15 | selector: | 15 | selector: |
| 16 | matchLabels: | 16 | matchLabels: |
| 17 | app.kubernetes.io/instance: external-secrets | 17 | app.kubernetes.io/instance: external-secrets |
| 18 | app.kubernetes.io/name: external-secrets-cert-controller | 18 | app.kubernetes.io/name: external-secrets-cert-controller |
| 19 | template: | 19 | template: |
| 20 | metadata: | 20 | metadata: |
| 21 | labels: | 21 | labels: |
| 22 | app.kubernetes.io/instance: external-secrets | 22 | app.kubernetes.io/instance: external-secrets |
| 23 | app.kubernetes.io/managed-by: Helm | 23 | app.kubernetes.io/managed-by: Helm |
| 24 | app.kubernetes.io/name: external-secrets-cert-controller | 24 | app.kubernetes.io/name: external-secrets-cert-controller |
| 25 | spec: | 25 | spec: |
| 26 | automountServiceAccountToken: true | 26 | automountServiceAccountToken: true |
| 27 | containers: | 27 | containers: |
| 28 | - args: | 28 | - args: |
| 29 | - certcontroller | 29 | - certcontroller |
| 30 | - --crd-requeue-interval=5m | 30 | - --crd-requeue-interval=5m |
| 31 | - --service-name=external-secrets-webhook | 31 | - --service-name=external-secrets-webhook |
| 32 | - --service-namespace=external-secrets | 32 | - --service-namespace=external-secrets |
| 33 | - --secret-name=external-secrets-webhook | 33 | - --secret-name=external-secrets-webhook |
| 34 | - --secret-namespace=external-secrets | 34 | - --secret-namespace=external-secrets |
| 35 | - --metrics-addr=:8080 | 35 | - --metrics-addr=:8080 |
| 36 | - --healthz-addr=:8081 | 36 | - --healthz-addr=:8081 |
| 37 | - --loglevel=info | 37 | - --loglevel=info |
| 38 | - --zap-time-encoding=epoch | 38 | - --zap-time-encoding=epoch |
| 39 | - --enable-partial-cache=true | 39 | - --enable-partial-cache=true |
| 40 | - --enable-leader-election=true | 40 | - --enable-leader-election=true |
| 41 | image: ghcr.io/external-secrets/external-secrets:v2.5.0 | 41 | image: ghcr.io/external-secrets/external-secrets:v2.6.0 |
| 42 | imagePullPolicy: IfNotPresent | 42 | imagePullPolicy: IfNotPresent |
| 43 | name: cert-controller | 43 | name: cert-controller |
| 44 | ports: | 44 | ports: |
| 45 | - containerPort: 8080 | 45 | - containerPort: 8080 |
| 46 | name: metrics | 46 | name: metrics |
| 47 | protocol: TCP | 47 | protocol: TCP |
| 48 | - containerPort: 8081 | 48 | - containerPort: 8081 |
| 49 | name: ready | 49 | name: ready |
| 50 | protocol: TCP | 50 | protocol: TCP |
| 51 | readinessProbe: | 51 | readinessProbe: |
| 52 | failureThreshold: 3 | 52 | failureThreshold: 3 |
| 53 | httpGet: | 53 | httpGet: |
| 54 | path: /readyz | 54 | path: /readyz |
| 55 | port: ready | 55 | port: ready |
| 56 | initialDelaySeconds: 20 | 56 | initialDelaySeconds: 20 |
| 57 | periodSeconds: 5 | 57 | periodSeconds: 5 |
| 58 | successThreshold: 1 | 58 | successThreshold: 1 |
| 59 | timeoutSeconds: 5 | 59 | timeoutSeconds: 5 |
| 60 | securityContext: | 60 | securityContext: |
| 61 | allowPrivilegeEscalation: false | 61 | allowPrivilegeEscalation: false |
| 62 | capabilities: | 62 | capabilities: |
| 63 | drop: | 63 | drop: |
| 64 | - ALL | 64 | - ALL |
| 65 | readOnlyRootFilesystem: true | 65 | readOnlyRootFilesystem: true |
| 66 | runAsNonRoot: true | 66 | runAsNonRoot: true |
| 67 | runAsUser: 1000 | 67 | runAsUser: 1000 |
| 68 | seccompProfile: | 68 | seccompProfile: |
| 69 | type: RuntimeDefault | 69 | type: RuntimeDefault |
| 70 | hostNetwork: false | 70 | hostNetwork: false |
| 71 | serviceAccountName: external-secrets-cert-controller | 71 | serviceAccountName: external-secrets-cert-controller |
| 72 | 72 | ||
| 1 | 1 | apiVersion: apps/v1 |
| 2 | 2 | kind: Deployment |
| 3 | 3 | metadata: |
| 4 | 4 | labels: |
| 5 | 5 | app.kubernetes.io/instance: external-secrets |
| 6 | 6 | app.kubernetes.io/managed-by: Helm |
| 7 | 7 | app.kubernetes.io/name: external-secrets-cert-controller |
| 8 | 8 | helm.toolkit.fluxcd.io/name: external-secrets |
| 9 | 9 | helm.toolkit.fluxcd.io/namespace: external-secrets |
| 10 | 10 | name: external-secrets-cert-controller |
| 11 | 11 | namespace: external-secrets |
| 12 | 12 | spec: |
| 13 | 13 | replicas: 1 |
| 14 | 14 | revisionHistoryLimit: 10 |
| 15 | 15 | selector: |
| 16 | 16 | matchLabels: |
| 17 | 17 | app.kubernetes.io/instance: external-secrets |
| 18 | 18 | app.kubernetes.io/name: external-secrets-cert-controller |
| 19 | 19 | template: |
| 20 | 20 | metadata: |
| 21 | 21 | labels: |
| 22 | 22 | app.kubernetes.io/instance: external-secrets |
| 23 | 23 | app.kubernetes.io/managed-by: Helm |
| 24 | 24 | app.kubernetes.io/name: external-secrets-cert-controller |
| 25 | 25 | spec: |
| 26 | 26 | automountServiceAccountToken: true |
| 27 | 27 | containers: |
| 28 | 28 | - args: |
| 29 | 29 | - certcontroller |
| 30 | 30 | - --crd-requeue-interval=5m |
| 31 | 31 | - --service-name=external-secrets-webhook |
| 32 | 32 | - --service-namespace=external-secrets |
| 33 | 33 | - --secret-name=external-secrets-webhook |
| 34 | 34 | - --secret-namespace=external-secrets |
| 35 | 35 | - --metrics-addr=:8080 |
| 36 | 36 | - --healthz-addr=:8081 |
| 37 | 37 | - --loglevel=info |
| 38 | 38 | - --zap-time-encoding=epoch |
| 39 | 39 | - --enable-partial-cache=true |
| 40 | 40 | - --enable-leader-election=true |
| 41 | image: ghcr.io/external-secrets/external-secrets:v2.5.0 | |
| 41 | image: ghcr.io/external-secrets/external-secrets:v2.6.0 | |
| 42 | 42 | imagePullPolicy: IfNotPresent |
| 43 | 43 | name: cert-controller |
| 44 | 44 | ports: |
| 45 | 45 | - containerPort: 8080 |
| 46 | 46 | name: metrics |
| 47 | 47 | protocol: TCP |
| 48 | 48 | - containerPort: 8081 |
| 49 | 49 | name: ready |
| 50 | 50 | protocol: TCP |
| 51 | 51 | readinessProbe: |
| 52 | 52 | failureThreshold: 3 |
| 53 | 53 | httpGet: |
| 54 | 54 | path: /readyz |
| 55 | 55 | port: ready |
| 56 | 56 | initialDelaySeconds: 20 |
| 57 | 57 | periodSeconds: 5 |
| 58 | 58 | successThreshold: 1 |
| 59 | 59 | timeoutSeconds: 5 |
| 60 | 60 | securityContext: |
| 61 | 61 | allowPrivilegeEscalation: false |
| 62 | 62 | capabilities: |
| 63 | 63 | drop: |
| 64 | 64 | - ALL |
| 65 | 65 | readOnlyRootFilesystem: true |
| 66 | 66 | runAsNonRoot: true |
| 67 | 67 | runAsUser: 1000 |
| 68 | 68 | seccompProfile: |
| 69 | 69 | type: RuntimeDefault |
| 70 | 70 | hostNetwork: false |
| 71 | 71 | serviceAccountName: external-secrets-cert-controller |
| 72 | 72 | |
changedDeployment external-secrets/external-secrets-webhook
HelmRelease external-secrets/external-secrets
| 1 | apiVersion: apps/v1 | 1 | apiVersion: apps/v1 |
| 2 | kind: Deployment | 2 | kind: Deployment |
| 3 | metadata: | 3 | metadata: |
| 4 | labels: | 4 | labels: |
| 5 | app.kubernetes.io/instance: external-secrets | 5 | app.kubernetes.io/instance: external-secrets |
| 6 | app.kubernetes.io/managed-by: Helm | 6 | app.kubernetes.io/managed-by: Helm |
| 7 | app.kubernetes.io/name: external-secrets-webhook | 7 | app.kubernetes.io/name: external-secrets-webhook |
| 8 | helm.toolkit.fluxcd.io/name: external-secrets | 8 | helm.toolkit.fluxcd.io/name: external-secrets |
| 9 | helm.toolkit.fluxcd.io/namespace: external-secrets | 9 | helm.toolkit.fluxcd.io/namespace: external-secrets |
| 10 | name: external-secrets-webhook | 10 | name: external-secrets-webhook |
| 11 | namespace: external-secrets | 11 | namespace: external-secrets |
| 12 | spec: | 12 | spec: |
| 13 | replicas: 2 | 13 | replicas: 2 |
| 14 | revisionHistoryLimit: 10 | 14 | revisionHistoryLimit: 10 |
| 15 | selector: | 15 | selector: |
| 16 | matchLabels: | 16 | matchLabels: |
| 17 | app.kubernetes.io/instance: external-secrets | 17 | app.kubernetes.io/instance: external-secrets |
| 18 | app.kubernetes.io/name: external-secrets-webhook | 18 | app.kubernetes.io/name: external-secrets-webhook |
| 19 | template: | 19 | template: |
| 20 | metadata: | 20 | metadata: |
| 21 | labels: | 21 | labels: |
| 22 | app.kubernetes.io/instance: external-secrets | 22 | app.kubernetes.io/instance: external-secrets |
| 23 | app.kubernetes.io/managed-by: Helm | 23 | app.kubernetes.io/managed-by: Helm |
| 24 | app.kubernetes.io/name: external-secrets-webhook | 24 | app.kubernetes.io/name: external-secrets-webhook |
| 25 | spec: | 25 | spec: |
| 26 | automountServiceAccountToken: true | 26 | automountServiceAccountToken: true |
| 27 | containers: | 27 | containers: |
| 28 | - args: | 28 | - args: |
| 29 | - webhook | 29 | - webhook |
| 30 | - --port=10250 | 30 | - --port=10250 |
| 31 | - --dns-name=external-secrets-webhook.external-secrets.svc | 31 | - --dns-name=external-secrets-webhook.external-secrets.svc |
| 32 | - --cert-dir=/tmp/certs | 32 | - --cert-dir=/tmp/certs |
| 33 | - --check-interval=5m | 33 | - --check-interval=5m |
| 34 | - --metrics-addr=:8080 | 34 | - --metrics-addr=:8080 |
| 35 | - --healthz-addr=:8081 | 35 | - --healthz-addr=:8081 |
| 36 | - --loglevel=info | 36 | - --loglevel=info |
| 37 | - --zap-time-encoding=epoch | 37 | - --zap-time-encoding=epoch |
| 38 | image: ghcr.io/external-secrets/external-secrets:v2.5.0 | 38 | image: ghcr.io/external-secrets/external-secrets:v2.6.0 |
| 39 | imagePullPolicy: IfNotPresent | 39 | imagePullPolicy: IfNotPresent |
| 40 | name: webhook | 40 | name: webhook |
| 41 | ports: | 41 | ports: |
| 42 | - containerPort: 8080 | 42 | - containerPort: 8080 |
| 43 | name: metrics | 43 | name: metrics |
| 44 | protocol: TCP | 44 | protocol: TCP |
| 45 | - containerPort: 10250 | 45 | - containerPort: 10250 |
| 46 | name: webhook | 46 | name: webhook |
| 47 | protocol: TCP | 47 | protocol: TCP |
| 48 | - containerPort: 8081 | 48 | - containerPort: 8081 |
| 49 | name: ready | 49 | name: ready |
| 50 | protocol: TCP | 50 | protocol: TCP |
| 51 | readinessProbe: | 51 | readinessProbe: |
| 52 | failureThreshold: 3 | 52 | failureThreshold: 3 |
| 53 | httpGet: | 53 | httpGet: |
| 54 | path: /readyz | 54 | path: /readyz |
| 55 | port: ready | 55 | port: ready |
| 56 | initialDelaySeconds: 20 | 56 | initialDelaySeconds: 20 |
| 57 | periodSeconds: 5 | 57 | periodSeconds: 5 |
| 58 | successThreshold: 1 | 58 | successThreshold: 1 |
| 59 | timeoutSeconds: 5 | 59 | timeoutSeconds: 5 |
| 60 | securityContext: | 60 | securityContext: |
| 61 | allowPrivilegeEscalation: false | 61 | allowPrivilegeEscalation: false |
| 62 | capabilities: | 62 | capabilities: |
| 63 | drop: | 63 | drop: |
| 64 | - ALL | 64 | - ALL |
| 65 | readOnlyRootFilesystem: true | 65 | readOnlyRootFilesystem: true |
| 66 | runAsNonRoot: true | 66 | runAsNonRoot: true |
| 67 | runAsUser: 1000 | 67 | runAsUser: 1000 |
| 68 | seccompProfile: | 68 | seccompProfile: |
| 69 | type: RuntimeDefault | 69 | type: RuntimeDefault |
| 70 | volumeMounts: | 70 | volumeMounts: |
| 71 | - mountPath: /tmp/certs | 71 | - mountPath: /tmp/certs |
| 72 | name: certs | 72 | name: certs |
| 73 | readOnly: true | 73 | readOnly: true |
| 74 | hostNetwork: false | 74 | hostNetwork: false |
| 75 | serviceAccountName: external-secrets-webhook | 75 | serviceAccountName: external-secrets-webhook |
| 76 | volumes: | 76 | volumes: |
| 77 | - name: certs | 77 | - name: certs |
| 78 | secret: | 78 | secret: |
| 79 | secretName: external-secrets-webhook | 79 | secretName: external-secrets-webhook |
| 80 | 80 | ||
| 1 | 1 | apiVersion: apps/v1 |
| 2 | 2 | kind: Deployment |
| 3 | 3 | metadata: |
| 4 | 4 | labels: |
| 5 | 5 | app.kubernetes.io/instance: external-secrets |
| 6 | 6 | app.kubernetes.io/managed-by: Helm |
| 7 | 7 | app.kubernetes.io/name: external-secrets-webhook |
| 8 | 8 | helm.toolkit.fluxcd.io/name: external-secrets |
| 9 | 9 | helm.toolkit.fluxcd.io/namespace: external-secrets |
| 10 | 10 | name: external-secrets-webhook |
| 11 | 11 | namespace: external-secrets |
| 12 | 12 | spec: |
| 13 | 13 | replicas: 2 |
| 14 | 14 | revisionHistoryLimit: 10 |
| 15 | 15 | selector: |
| 16 | 16 | matchLabels: |
| 17 | 17 | app.kubernetes.io/instance: external-secrets |
| 18 | 18 | app.kubernetes.io/name: external-secrets-webhook |
| 19 | 19 | template: |
| 20 | 20 | metadata: |
| 21 | 21 | labels: |
| 22 | 22 | app.kubernetes.io/instance: external-secrets |
| 23 | 23 | app.kubernetes.io/managed-by: Helm |
| 24 | 24 | app.kubernetes.io/name: external-secrets-webhook |
| 25 | 25 | spec: |
| 26 | 26 | automountServiceAccountToken: true |
| 27 | 27 | containers: |
| 28 | 28 | - args: |
| 29 | 29 | - webhook |
| 30 | 30 | - --port=10250 |
| 31 | 31 | - --dns-name=external-secrets-webhook.external-secrets.svc |
| 32 | 32 | - --cert-dir=/tmp/certs |
| 33 | 33 | - --check-interval=5m |
| 34 | 34 | - --metrics-addr=:8080 |
| 35 | 35 | - --healthz-addr=:8081 |
| 36 | 36 | - --loglevel=info |
| 37 | 37 | - --zap-time-encoding=epoch |
| 38 | image: ghcr.io/external-secrets/external-secrets:v2.5.0 | |
| 38 | image: ghcr.io/external-secrets/external-secrets:v2.6.0 | |
| 39 | 39 | imagePullPolicy: IfNotPresent |
| 40 | 40 | name: webhook |
| 41 | 41 | ports: |
| 42 | 42 | - containerPort: 8080 |
| 43 | 43 | name: metrics |
| 44 | 44 | protocol: TCP |
| 45 | 45 | - containerPort: 10250 |
| 46 | 46 | name: webhook |
| 47 | 47 | protocol: TCP |
| 48 | 48 | - containerPort: 8081 |
| 49 | 49 | name: ready |
| 50 | 50 | protocol: TCP |
| 51 | 51 | readinessProbe: |
| 52 | 52 | failureThreshold: 3 |
| 53 | 53 | httpGet: |
| 54 | 54 | path: /readyz |
| 55 | 55 | port: ready |
| 56 | 56 | initialDelaySeconds: 20 |
| 57 | 57 | periodSeconds: 5 |
| 58 | 58 | successThreshold: 1 |
| 59 | 59 | timeoutSeconds: 5 |
| 60 | 60 | securityContext: |
| 61 | 61 | allowPrivilegeEscalation: false |
| 62 | 62 | capabilities: |
| 63 | 63 | drop: |
| 64 | 64 | - ALL |
| 65 | 65 | readOnlyRootFilesystem: true |
| 66 | 66 | runAsNonRoot: true |
| 67 | 67 | runAsUser: 1000 |
| 68 | 68 | seccompProfile: |
| 69 | 69 | type: RuntimeDefault |
| 70 | 70 | volumeMounts: |
| 71 | 71 | - mountPath: /tmp/certs |
| 72 | 72 | name: certs |
| 73 | 73 | readOnly: true |
| 74 | 74 | hostNetwork: false |
| 75 | 75 | serviceAccountName: external-secrets-webhook |
| 76 | 76 | volumes: |
| 77 | 77 | - name: certs |
| 78 | 78 | secret: |
| 79 | 79 | secretName: external-secrets-webhook |
| 80 | 80 | |
changedOCIRepository external-secrets/external-secrets
Kustomization external-secrets/external-secrets (kubernetes/apps/external-secrets/external-secrets/app)
| 1 | apiVersion: source.toolkit.fluxcd.io/v1 | 1 | apiVersion: source.toolkit.fluxcd.io/v1 |
| 2 | kind: OCIRepository | 2 | kind: OCIRepository |
| 3 | metadata: | 3 | metadata: |
| 4 | labels: | 4 | labels: |
| 5 | kustomize.toolkit.fluxcd.io/name: external-secrets | 5 | kustomize.toolkit.fluxcd.io/name: external-secrets |
| 6 | kustomize.toolkit.fluxcd.io/namespace: external-secrets | 6 | kustomize.toolkit.fluxcd.io/namespace: external-secrets |
| 7 | name: external-secrets | 7 | name: external-secrets |
| 8 | namespace: external-secrets | 8 | namespace: external-secrets |
| 9 | spec: | 9 | spec: |
| 10 | interval: 15m | 10 | interval: 15m |
| 11 | layerSelector: | 11 | layerSelector: |
| 12 | mediaType: application/vnd.cncf.helm.chart.content.v1.tar+gzip | 12 | mediaType: application/vnd.cncf.helm.chart.content.v1.tar+gzip |
| 13 | operation: copy | 13 | operation: copy |
| 14 | ref: | 14 | ref: |
| 15 | tag: 2.5.0 | 15 | tag: 2.6.0 |
| 16 | url: oci://ghcr.io/external-secrets/charts/external-secrets | 16 | url: oci://ghcr.io/external-secrets/charts/external-secrets |
| 17 | 17 | ||
| 1 | 1 | apiVersion: source.toolkit.fluxcd.io/v1 |
| 2 | 2 | kind: OCIRepository |
| 3 | 3 | metadata: |
| 4 | 4 | labels: |
| 5 | 5 | kustomize.toolkit.fluxcd.io/name: external-secrets |
| 6 | 6 | kustomize.toolkit.fluxcd.io/namespace: external-secrets |
| 7 | 7 | name: external-secrets |
| 8 | 8 | namespace: external-secrets |
| 9 | 9 | spec: |
| 10 | 10 | interval: 15m |
| 11 | 11 | layerSelector: |
| 12 | 12 | mediaType: application/vnd.cncf.helm.chart.content.v1.tar+gzip |
| 13 | 13 | operation: copy |
| 14 | 14 | ref: |
| 15 | tag: 2.5.0 | |
| 15 | tag: 2.6.0 | |
| 16 | 16 | url: oci://ghcr.io/external-secrets/charts/external-secrets |
| 17 | 17 | |