chore: Update deployment descriptors and docs (#358)

Signed-off-by: Daniel Pacak <pacak.daniel@gmail.com> Co-authored-by: Liz Rice <liz@lizrice.com>
aquasecurity · Jan 26, 2021 · 110c372 · 110c372
1 parent 89a8ceb
commit 110c372
Show file tree

Hide file tree

Showing 23 changed files with 2,040 additions and 965 deletions.
diff --git a/CONTRIBUTING.md b/CONTRIBUTING.md
@@ -179,10 +179,11 @@ started with a basic development workflow. For other install modes see [Operator
 
 ### Prerequisites
 
-1. Send the definition of the VulnerabilityReport custom resource to the Kubernetes API:
+1. Send custom resource definitions to the Kubernetes API:
 
    ```
    $ kubectl apply -f deploy/crd/vulnerabilityreports.crd.yaml
+   $ kubectl apply -f deploy/crd/configauditreports.crd.yaml
    ```
 2. Send the following Kubernetes objects definitions to the Kubernetes API:
 

diff --git a/deploy/crd/configauditreports.crd.yaml b/deploy/crd/configauditreports.crd.yaml
@@ -20,3 +20,27 @@ spec:
       - all
     shortNames:
       - configaudit
+  additionalPrinterColumns:
+    - JSONPath: .report.scanner.name
+      type: string
+      name: Scanner
+      description: The name of the config audit scanner
+    - JSONPath: .metadata.creationTimestamp
+      type: date
+      name: Age
+      description: The age of the report
+    - JSONPath: .report.summary.passCount
+      type: integer
+      name: Pass
+      priority: 1
+      description: The number of checks that passed
+    - JSONPath: .report.summary.dangerCount
+      type: integer
+      name: Danger
+      priority: 1
+      description: The number of checks that failed with Danger status
+    - JSONPath: .report.summary.warningCount
+      type: integer
+      name: Warning
+      priority: 1
+      description: The number of checks that failed with Warning status
diff --git a/deploy/crd/vulnerabilityreports.crd.yaml b/deploy/crd/vulnerabilityreports.crd.yaml
@@ -151,7 +151,7 @@ spec:
     - JSONPath: .metadata.creationTimestamp
       type: date
       name: Age
-      description: The age of Vulnerability
+      description: The age of the report
     - JSONPath: .report.summary.criticalCount
       type: integer
       name: Critical

diff --git a/deploy/helm/templates/rbac.yaml b/deploy/helm/templates/rbac.yaml
@@ -72,6 +72,7 @@ rules:
       - aquasecurity.github.io
     resources:
       - vulnerabilityreports
+      - configauditreports
     verbs:
       - get
       - list

diff --git a/deploy/helm/values.yaml b/deploy/helm/values.yaml
@@ -50,12 +50,6 @@ envSecret:
   #       properly.
   stringData:
     OPERATOR_LOG_DEV_MODE: "false"
-    OPERATOR_SCANNER_TRIVY_ENABLED: "true"
-    OPERATOR_SCANNER_AQUA_CSP_ENABLED: "false"
-    OPERATOR_SCANNER_AQUA_CSP_VERSION: ""
-    OPERATOR_SCANNER_AQUA_CSP_HOST: ""
-    OPERATOR_SCANNER_AQUA_CSP_USER: ""
-    OPERATOR_SCANNER_AQUA_CSP_PASSWORD: ""
 
 rbac:
   create: true

diff --git a/deploy/init/01-starboard.ns.yaml b/deploy/init/01-starboard.ns.yaml
diff --git a/deploy/init/02-starboard.sa.yaml b/deploy/init/02-starboard.sa.yaml
diff --git a/deploy/init/03-starboard.cm.yaml b/deploy/init/03-starboard.cm.yaml
diff --git a/deploy/init/04-starboard.clusterrole.yaml b/deploy/init/04-starboard.clusterrole.yaml
diff --git a/deploy/init/05-starboard.clusterrolebinding.yaml b/deploy/init/05-starboard.clusterrolebinding.yaml
diff --git a/deploy/static/03-starboard-operator.clusterrole.yaml b/deploy/static/03-starboard-operator.clusterrole.yaml
@@ -50,6 +50,7 @@ rules:
       - aquasecurity.github.io
     resources:
       - vulnerabilityreports
+      - configauditreports
     verbs:
       - get
       - list