From 07d4d87f3e217284be97bbfb0f626accdb764d24 Mon Sep 17 00:00:00 2001
From: Massimiliano Giovagnoli <me@maxgio.it>
Date: Tue, 6 Sep 2022 13:51:07 +0200
Subject: [PATCH] feat: configure in_repo_config for evolution repository

Signed-off-by: Massimiliano Giovagnoli <me@maxgio.it>
---
 config/config.yaml | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/config/config.yaml b/config/config.yaml
index ac43342b749..94b374454d2 100644
--- a/config/config.yaml
+++ b/config/config.yaml
@@ -49,6 +49,19 @@ sinker:
   max_pod_age: 24h
   terminated_pod_ttl: 2h
 
+in_repo_config:
+  enabled:
+    # The key can be one of "*" for "globally", "org" or "org/repo".
+    # The narrowest match is used. Here the key is "kubernetes/kubernetes".
+    falcosecurity/evolution: true
+
+  # Clusters must be allowed before they can be used. Here we allow the "default"
+  # cluster globally. This setting also allows using "*" for "globally", "org" or "org/repo" as key.
+  # All clusters that are allowed for the specific repo, its org or
+  # globally can be used.
+  allowed_clusters:
+    falcosecurity/evolution: ["default"]
+
 branch-protection:
   enforce_admins: true # rules apply to admins too!
   restrictions: # restrict who can push