How to set taints for scan-vulnerabilityreport Pods? #1781

Brzozova · 2024-01-17T10:16:00Z

Brzozova
Jan 17, 2024

Hi! This is how I configured taints using Helm Charts in values.yaml

trivy-operator:
  tolerations:
    - key: "kubernetes.azure.com/scalesetpriority"
      operator: "Equal"
      value: "spot"
      effect: "NoSchedule"

I thought after deploying this change I will see taints in each Pod deployed in trivy-system which are trivy-operator and all scan-vulnerabilityreport.

However looks like it only had an impact on trivy-operator Pod:

Tolerations:                 kubernetes.azure.com/scalesetpriority=spot:NoSchedule
                             node.kubernetes.io/not-ready:NoExecute op=Exists for 300s
                             node.kubernetes.io/unreachable:NoExecute op=Exists for 300s

scan-vulnerabilityreport Pods looks like this:

Tolerations:     node.kubernetes.io/memory-pressure:NoSchedule op=Exists
                 node.kubernetes.io/not-ready:NoExecute op=Exists for 300s
                 node.kubernetes.io/unreachable:NoExecute op=Exists for 300s

As scan-vulnerabilityreport are quite busy, I would like to add taints to them as well.
Is there a way to do it?

chen-keinan · 2024-01-17T10:18:12Z

chen-keinan
Jan 17, 2024

@Brzozova check out this helm flag

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

How to set taints for scan-vulnerabilityreport Pods? #1781

Uh oh!

{{title}}

Uh oh!

Uh oh!

{{editor}}'s edit

{{editor}}'s edit

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

How to set taints for scan-vulnerabilityreport Pods? #1781

Uh oh!

Uh oh!

Brzozova Jan 17, 2024

Replies: 1 comment

Uh oh!

chen-keinan Jan 17, 2024

Brzozova
Jan 17, 2024

chen-keinan
Jan 17, 2024