Kubernetes/k8s-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
8d12c573bdcb4433eaf20b373a72ae1be41a1e68
k8s-configs/clusters/k8s-avroid-office.prod.local/namespaces/avroid-prod/security/trivy/argocd-apps-trivy-network-policy.yaml
Denis Patrakeev 35341ba931 [DO-1600] Fix trivy-operator 7 (!48) 
[DO-1600]

Reviewed-on: https://git.avroid.tech/K8s/k8s-configs/pulls/48
2025-02-25 15:43:01 +03:00

61 lines
1.3 KiB
YAML
Raw Blame History

---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: trivy-in
namespace: avroid-prod
labels:
app.kubernetes.io/managed-by: argocd
spec:
podSelector:
matchLabels:
app.kubernetes.io/name: trivy
policyTypes:
- Ingress
ingress:
- from:
- namespaceSelector:
matchLabels:
kubernetes.io/metadata.name: ingress-nginx
- ports:
- port: 4954
protocol: TCP
# https://aquasecurity.github.io/trivy-operator/v0.23.0/getting-started/installation/troubleshooting/#installing-the-operator-in-a-namespace-with-default-deny-all-egressingress-network-policies
---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: trivy-in-4954
namespace: avroid-prod
labels:
app.kubernetes.io/managed-by: argocd
spec:
podSelector:
matchLabels:
app.kubernetes.io/name: trivy
policyTypes:
- Ingress
ingress:
- ports:
- port: 4954
protocol: TCP
---
apiVersion: networking.k8s.io/v1
kind: NetworkPolicy
metadata:
name: trivy-out
namespace: avroid-prod
labels:
app.kubernetes.io/managed-by: argocd
spec:
podSelector: {}
policyTypes:
- Egress
ingress: []
egress:
- ports:
- port: 443
protocol: TCP
- port: 80
protocol: TCP
Reference in New Issue View Git Blame Copy Permalink