Skip to content

Commit

Permalink
chore(kubenuc,sysdig): Migrate kubenuc to host-shield
Browse files Browse the repository at this point in the history 
Signed-off-by: Daniele De Lorenzi <[email protected]>
  • Loading branch information
@dark-vex
dark-vex committed Sep 10, 2024
1 parent cfff775 commit d5106dc
Showing 1 changed file with 32 additions and 10 deletions.
42 changes: 32 additions & 10 deletions clusters/kubenuc/apps/sysdig-agent/manifests/release.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,10 +26,10 @@ spec:
sysdig:
region: "eu1"
kspm:
deploy: true
deploy: false

kspmCollector:
enabled: false
#kspmCollector:
# enabled: false

admissionController:
enabled: false
Expand All @@ -44,6 +44,13 @@ spec:
memory: 2Gi
sysdig:
settings:
sysdig_api_endpoint: eu1.app.sysdig.com
host_scanner:
enabled: true
kspm_analyzer:
enabled: true
rapid_response:
enabled: true
#feature:
# mode: secure_light
#secure_audit_streams:
Expand All @@ -59,17 +66,31 @@ spec:
file_priority: warning
console_priority: warning
event_priority: warning
file_priority_by_component:
- "cm_socket_endpoint: debug"
- "endpoint: debug: debug"
- "conn_mgr: debug: debug"
- "connection_manager: debug"
- "cm_collector_endpoint: debug"
#file_priority_by_component:
# - "cm_socket_endpoint: debug"
# - "endpoint: debug: debug"
# - "conn_mgr: debug: debug"
# - "connection_manager: debug"
# - "cm_collector_endpoint: debug"
prometheus:
enabled: true
prom_service_discovery: true
jmx:
enabled: false
extraVolumes:
volumes:
- name: root-vol
hostPath:
path: /
- name: tmp-vol
hostPath:
path: /tmp
mounts:
- mountPath: /host
name: root-vol
readOnly: true
- mountPath: /host/tmp
name: tmp-vol

prometheus:
file: true
Expand Down Expand Up @@ -107,6 +128,7 @@ spec:
enabled: true

nodeAnalyzer:
enabled: false
nodeAnalyzer:
imageAnalyzer:
deploy: false
Expand Down Expand Up @@ -136,4 +158,4 @@ spec:
newEngineOnly: true

rapidResponse:
enabled: true
enabled: false

0 comments on commit d5106dc

Please sign in to comment.