gwg313/homelab-gitops
1
0
Fork 0
mirror of https://github.com/gwg313/homelab-gitops.git synced 2026-06-05 21:01:02 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions

Compare commits

base: gwg313:5ad6f392eb4b2332d61e230f1f358bbc612d6505
Branches Tags
gwg313:main
..
compare: gwg313:4be877e419af65879f8ed84d4586d9b2cab93994
Branches Tags
gwg313:main

2 commits
5ad6f392eb ... 4be877e419

Author SHA1 Message Date
gwg313
4be877e419
update argo files 
Signed-off-by: gwg313 <gwg313@pm.me>
 2026-05-23 22:12:10 -04:00
gwg313
d3da92bbb8
add cicd exclude to resource limits 
Signed-off-by: gwg313 <gwg313@pm.me>
 2026-05-23 22:09:35 -04:00
8 changed files with 5 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

1
apps/tekton/kustomization.yaml
View file

@ -4,3 +4,4 @@ kind: Kustomization
resources:
- https://storage.googleapis.com/tekton-releases/pipeline/latest/release.yaml
- https://storage.googleapis.com/tekton-releases/dashboard/latest/release.yaml
- https://raw.githubusercontent.com/openshift-pipelines/pipelines-as-code/stable/release.k8s.yaml

2
management/platform-apps/bytestash.yaml
View file

@ -20,5 +20,3 @@ spec:
selfHeal: true
syncOptions:
- CreateNamespace=true
- ServerSideApply=true
- SkipDryRunOnMissingResource=true

1
management/platform-apps/forgejo.yaml
View file

@ -20,4 +20,3 @@ spec:
selfHeal: true
syncOptions:
- CreateNamespace=true
- ServerSideApply=true

5
management/platform-apps/kyverno-policies.yaml
View file

@ -18,8 +18,3 @@ spec:
automated:
prune: true
selfHeal: true
syncOptions:
- CreateNamespace=false
- ServerSideApply=true
- Replace=true # <-- Policies have immutable fields so this helps deal with updates
- Force=true

1
management/platform-apps/stirling-pdf.yaml
View file

@ -20,5 +20,4 @@ spec:
selfHeal: true
syncOptions:
- CreateNamespace=true
- ServerSideApply=true
- SkipDryRunOnMissingResource=true

1
management/platform-apps/yopass.yaml
View file

@ -20,4 +20,3 @@ spec:
selfHeal: true
syncOptions:
- CreateNamespace=true
- ServerSideApply=true

3
platform/kyverno/policies/generate-ns-network-baseline.yaml
View file

@ -5,6 +5,8 @@ metadata:
annotations:
policies.kyverno.io/title: Inject Namespace Baseline CNP
policies.kyverno.io/description: Automatically provisions a local default-deny + DNS egress CNP inside new application namespaces.
argocd.argoproj.io/sync-options: Force=true,Replace=true
spec:
background: true
rules:
@ -32,6 +34,7 @@ spec:
- monitoring
- tekton-pipelines-resolvers
- tekton-pipelines
- pipelines-as-code
generate:
apiVersion: cilium.io/v2
kind: CiliumNetworkPolicy

1
platform/kyverno/policies/require-requests-limits.yaml
View file

@ -36,6 +36,7 @@ spec:
- monitoring
- tekton-pipelines-resolvers
- tekton-pipelines
- pipelines-as-code
- cicd
validate:
message: "Resource discipline violation: Containers must declare cpu/memory requests and limits."