github.com/aquasecurity/trivy-iac@v0.8.1-0.20240127024015-3d8e412cf0ab/pkg/scanners/helm/test/testdata/with-tarred-dep/templates/deployment.yaml (about) 1 apiVersion: apps/v1 2 kind: Deployment 3 metadata: 4 name: {{ template "common.names.fullname" . }} 5 labels: {{- include "common.labels.standard" . | nindent 4 }} 6 spec: 7 replicas: {{ .Values.replicaCount }} 8 selector: 9 matchLabels: {{- include "common.labels.matchLabels" . | nindent 6 }} 10 template: 11 metadata: 12 labels: {{- include "common.labels.standard" . | nindent 8 }} 13 spec: 14 containers: 15 - name: metadata-service 16 env: 17 - name: METADATASERVICE_UPSTREAM_API_URL 18 value: '{{ .Values.upstreamAPI }}' 19 - name: METADATASERVICE_OIDC_AUDIENCE 20 value: "{{ .Values.oidc.audience }}" 21 - name: METADATASERVICE_OIDC_ISSUER 22 value: "{{ .Values.oidc.issuer }}" 23 - name: METADATASERVICE_OIDC_JWKSURI 24 value: "{{ .Values.oidc.jwksuri }}" 25 - name: METADATASERVICE_OIDC_CLAIMS_ROLES 26 value: "{{ .Values.oidc.rolesClaim }}" 27 - name: METADATASERVICE_OIDC_CLAIMS_USERNAME 28 value: "{{ .Values.oidc.userClaim }}" 29 - name: METADATASERVICE_DB_URI 30 valueFrom: 31 secretKeyRef: 32 name: {{ template "common.names.fullname" . }}-dbconn 33 key: uri 34 image: "{{ .Values.metadataservice.image.repository }}:{{ .Values.metadataservice.image.tag }}" 35 imagePullPolicy: Always 36 volumeMounts: 37 - name: dbcerts 38 mountPath: "/dbcerts" 39 readOnly: true 40 ports: 41 - name: http 42 containerPort: 8000 43 protocol: TCP 44 livenessProbe: 45 httpGet: 46 path: /healthz/liveness 47 port: http 48 initialDelaySeconds: 5 49 timeoutSeconds: 2 50 readinessProbe: 51 httpGet: 52 path: /healthz/readiness 53 port: http 54 initialDelaySeconds: 5 55 timeoutSeconds: 2 56 resources: 57 {{ toYaml .Values.resources | indent 12 }} 58 volumes: 59 - name: dbcerts 60 secret: 61 secretName: {{ template "common.names.fullname" . }}-crdb-ca 62 defaultMode: 0400