/
build-plugins.yaml
39 lines (39 loc) · 1.3 KB
/
build-plugins.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
postsubmits:
falcosecurity/plugins:
- name: build-plugins-on-registry-changed-postsubmit
decorate: true
skip_report: false
agent: kubernetes
branches:
- ^master$
run_if_changed: "^registry.yaml"
spec:
containers:
# See images/build-plugins
- image: 292999226676.dkr.ecr.eu-west-1.amazonaws.com/test-infra/build-plugins:latest
imagePullPolicy: Always
command:
- /on-registry-changed.sh
args:
- /etc/github-token/oauth
env:
- name: GH_PROXY
value: https://api.github.com # fixme > Can't reach http://ghproxy at the moment
volumeMounts:
- name: github
mountPath: /etc/github-token
readOnly: true
- name: gpg-signing-key
mountPath: /root/gpg-signing-key/
readOnly: true
volumes:
- name: github
secret:
# Secret containing a GitHub user access token with `repo` scope for creating PRs.
secretName: oauth-token
- name: gpg-signing-key
secret:
secretName: poiana-gpg-signing-key
defaultMode: 0400
nodeSelector:
Archtype: "x86"