From b3a1f665d6fa8c60efac2ec50a01f459ecf95c66 Mon Sep 17 00:00:00 2001 From: Ben Banfield-Zanin Date: Wed, 4 Jun 2025 10:59:42 +0100 Subject: [PATCH] Update `example-default-enabled-components(-checkov)?-values.yaml` to include MatrixRTC as it is enabled by default. --- ...-default-enabled-components-checkov-values.yaml | 14 ++++++++++++-- .../example-default-enabled-components-values.yaml | 5 +++-- newsfragments/516.changed.md | 1 + 3 files changed, 16 insertions(+), 4 deletions(-) create mode 100644 newsfragments/516.changed.md diff --git a/charts/matrix-stack/ci/example-default-enabled-components-checkov-values.yaml b/charts/matrix-stack/ci/example-default-enabled-components-checkov-values.yaml index d46dce40c..01eedb857 100644 --- a/charts/matrix-stack/ci/example-default-enabled-components-checkov-values.yaml +++ b/charts/matrix-stack/ci/example-default-enabled-components-checkov-values.yaml @@ -2,7 +2,7 @@ # # SPDX-License-Identifier: AGPL-3.0-only # -# source_fragments: deployment-markers-checkov.yaml deployment-markers-minimal.yaml element-web-checkov.yaml element-web-minimal.yaml haproxy-checkov.yaml init-secrets-checkov.yaml init-secrets-minimal.yaml matrix-authentication-service-checkov.yaml matrix-authentication-service-minimal.yaml postgres-checkov.yaml postgres-minimal.yaml synapse-checkov.yaml synapse-minimal.yaml well-known-minimal.yaml +# source_fragments: deployment-markers-checkov.yaml deployment-markers-minimal.yaml element-web-checkov.yaml element-web-minimal.yaml haproxy-checkov.yaml init-secrets-checkov.yaml init-secrets-minimal.yaml matrix-authentication-service-checkov.yaml matrix-authentication-service-minimal.yaml matrix-rtc-checkov.yaml matrix-rtc-minimal.yaml postgres-checkov.yaml postgres-minimal.yaml synapse-checkov.yaml synapse-minimal.yaml well-known-minimal.yaml # DO NOT EDIT DIRECTLY. Edit the fragment files to add / modify / remove values # wellKnownDelegation don't have any required properties to be set and defaults to enabled @@ -38,7 +38,17 @@ matrixAuthenticationService: ingress: host: mas.ess.localhost matrixRTC: - enabled: false + annotations: + checkov.io/skip1: CKV_K8S_11=We deliberately don't set CPU limits. Pod is BestEffort not Guaranteed + checkov.io/skip2: CKV_K8S_43=No digests + checkov.io/skip3: CKV2_K8S_6=No network policy yet + ingress: + host: mrtc.ess.localhost + sfu: + annotations: + checkov.io/skip1: CKV_K8S_11=We deliberately don't set CPU limits. Pod is BestEffort not Guaranteed + checkov.io/skip2: CKV_K8S_43=No digests + checkov.io/skip3: CKV2_K8S_6=No network policy yet postgres: annotations: checkov.io/skip1: CKV_K8S_11=We deliberately don't set CPU limits. Pod is BestEffort not Guaranteed diff --git a/charts/matrix-stack/ci/example-default-enabled-components-values.yaml b/charts/matrix-stack/ci/example-default-enabled-components-values.yaml index 0fa5aaf8e..b3beac97e 100644 --- a/charts/matrix-stack/ci/example-default-enabled-components-values.yaml +++ b/charts/matrix-stack/ci/example-default-enabled-components-values.yaml @@ -2,7 +2,7 @@ # # SPDX-License-Identifier: AGPL-3.0-only # -# source_fragments: deployment-markers-minimal.yaml element-web-minimal.yaml init-secrets-minimal.yaml matrix-authentication-service-minimal.yaml postgres-minimal.yaml synapse-minimal.yaml well-known-minimal.yaml +# source_fragments: deployment-markers-minimal.yaml element-web-minimal.yaml init-secrets-minimal.yaml matrix-authentication-service-minimal.yaml matrix-rtc-minimal.yaml postgres-minimal.yaml synapse-minimal.yaml well-known-minimal.yaml # DO NOT EDIT DIRECTLY. Edit the fragment files to add / modify / remove values # deploymentMarkers, initSecrets, postgres, wellKnownDelegation don't have any required properties to be set and defaults to enabled @@ -13,7 +13,8 @@ matrixAuthenticationService: ingress: host: mas.ess.localhost matrixRTC: - enabled: false + ingress: + host: mrtc.ess.localhost serverName: ess.localhost synapse: ingress: diff --git a/newsfragments/516.changed.md b/newsfragments/516.changed.md new file mode 100644 index 000000000..deac281ec --- /dev/null +++ b/newsfragments/516.changed.md @@ -0,0 +1 @@ +Update `example-default-enabled-components-values.yaml` to include MatrixRTC as it is enabled by default.