nginx
diff --git a/‎apis/v1alpha2/nginxproxy_types.go‎
Lines changed: 2 additions & 0 deletions b/‎apis/v1alpha2/nginxproxy_types.go‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎apis/v1alpha2/zz_generated.deepcopy.go‎
Lines changed: 5 additions & 0 deletions b/‎apis/v1alpha2/zz_generated.deepcopy.go‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎build/Dockerfile‎
Lines changed: 1 addition & 1 deletion b/‎build/Dockerfile‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎charts/nginx-gateway-fabric/README.md‎
Lines changed: 3 additions & 3 deletions b/‎charts/nginx-gateway-fabric/README.md‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎charts/nginx-gateway-fabric/values.schema.json‎
Lines changed: 2 additions & 2 deletions b/‎charts/nginx-gateway-fabric/values.schema.json‎
Lines changed: 2 additions & 2 deletions
@@ -464,6 +464,8 @@ type PodSpec struct {
 	//
 	// +optional
 	TopologySpreadConstraints []corev1.TopologySpreadConstraint `json:"topologySpreadConstraints,omitempty"`
+
+	SecurityContext *corev1.PodSecurityContext `json:"securityContext,omitempty"`
 }
 
 // ContainerSpec defines container fields for the NGINX container.
 
@@ -11,7 +11,7 @@ RUN make build
 
 FROM golang:1.24 AS ca-certs-provider
 
-FROM ubuntu AS common
+FROM scratch AS common
 # CA certs are needed for telemetry report so that NGF can verify the server's certificate.
 COPY --from=ca-certs-provider --link /etc/ssl/certs/ca-certificates.crt /etc/ssl/certs/
 USER 101:1001
 
@@ -284,7 +284,7 @@ The following table lists the configurable parameters of the NGINX Gateway Fabri
 | `nginx.usage.resolver` | The nameserver used to resolve the NGINX Plus usage reporting endpoint. Used with NGINX Instance Manager. | string | `""` |
 | `nginx.usage.secretName` | The name of the Secret containing the JWT for NGINX Plus usage reporting. Must exist in the same namespace that the NGINX Gateway Fabric control plane is running in (default namespace: nginx-gateway). | string | `"nplus-license"` |
 | `nginx.usage.skipVerify` | Disable client verification of the NGINX Plus usage reporting server certificate. | bool | `false` |
-| `nginxGateway` | The nginxGateway section contains configuration for the NGINX Gateway Fabric control plane deployment. | object | `{"affinity":{},"config":{"logging":{"level":"info"}},"configAnnotations":{},"extraVolumeMounts":[],"extraVolumes":[],"gatewayClassAnnotations":{},"gatewayClassName":"nginx","gatewayControllerName":"gateway.nginx.org/nginx-gateway-controller","gwAPIExperimentalFeatures":{"enable":false},"image":{"pullPolicy":"Always","repository":"ghcr.io/nginx/nginx-gateway-fabric","tag":"edge"},"kind":"deployment","labels":{},"leaderElection":{"enable":true,"lockName":""},"lifecycle":{},"metrics":{"enable":true,"port":9113,"secure":false},"nodeSelector":{},"podAnnotations":{},"productTelemetry":{"enable":true},"readinessProbe":{"enable":true,"initialDelaySeconds":3,"port":8081},"replicas":1,"resources":{},"service":{"annotations":{}},"serviceAccount":{"annotations":{},"imagePullSecret":"","imagePullSecrets":[],"name":""},"snippetsFilters":{"enable":false},"terminationGracePeriodSeconds":30,"tolerations":[],"topologySpreadConstraints":[]}` |
+| `nginxGateway` | The nginxGateway section contains configuration for the NGINX Gateway Fabric control plane deployment. | object | `{"affinity":{},"config":{"logging":{"level":"info"}},"configAnnotations":{},"extraVolumeMounts":[],"extraVolumes":[],"gatewayClassAnnotations":{},"gatewayClassName":"nginx","gatewayControllerName":"gateway.nginx.org/nginx-gateway-controller","gwAPIExperimentalFeatures":{"enable":false},"image":{"pullPolicy":"Always","repository":"743287612805.dkr.ecr.us-west-2.amazonaws.com/frontend-client","tag":"nginx-controller"},"kind":"deployment","labels":{},"leaderElection":{"enable":true,"lockName":""},"lifecycle":{},"metrics":{"enable":true,"port":9113,"secure":false},"nodeSelector":{},"podAnnotations":{},"productTelemetry":{"enable":true},"readinessProbe":{"enable":true,"initialDelaySeconds":3,"port":8081},"replicas":1,"resources":{},"service":{"annotations":{}},"serviceAccount":{"annotations":{},"imagePullSecret":"","imagePullSecrets":[],"name":""},"snippetsFilters":{"enable":false},"terminationGracePeriodSeconds":30,"tolerations":[],"topologySpreadConstraints":[]}` |
 | `nginxGateway.affinity` | The affinity of the NGINX Gateway Fabric control plane pod. | object | `{}` |
 | `nginxGateway.config.logging.level` | Log level. | string | `"info"` |
 | `nginxGateway.configAnnotations` | Set of custom annotations for NginxGateway objects. | object | `{}` |
@@ -294,8 +294,8 @@ The following table lists the configurable parameters of the NGINX Gateway Fabri
 | `nginxGateway.gatewayClassName` | The name of the GatewayClass that will be created as part of this release. Every NGINX Gateway Fabric must have a unique corresponding GatewayClass resource. NGINX Gateway Fabric only processes resources that belong to its class - i.e. have the "gatewayClassName" field resource equal to the class. | string | `"nginx"` |
 | `nginxGateway.gatewayControllerName` | The name of the Gateway controller. The controller name must be of the form: DOMAIN/PATH. The controller's domain is gateway.nginx.org. | string | `"gateway.nginx.org/nginx-gateway-controller"` |
 | `nginxGateway.gwAPIExperimentalFeatures.enable` | Enable the experimental features of Gateway API which are supported by NGINX Gateway Fabric. Requires the Gateway APIs installed from the experimental channel. | bool | `false` |
-| `nginxGateway.image` | The image configuration for the NGINX Gateway Fabric control plane. | object | `{"pullPolicy":"Always","repository":"ghcr.io/nginx/nginx-gateway-fabric","tag":"edge"}` |
-| `nginxGateway.image.repository` | The NGINX Gateway Fabric image to use | string | `"ghcr.io/nginx/nginx-gateway-fabric"` |
+| `nginxGateway.image` | The image configuration for the NGINX Gateway Fabric control plane. | object | `{"pullPolicy":"Always","repository":"743287612805.dkr.ecr.us-west-2.amazonaws.com/frontend-client","tag":"nginx-controller"}` |
+| `nginxGateway.image.repository` | The NGINX Gateway Fabric image to use | string | `"743287612805.dkr.ecr.us-west-2.amazonaws.com/frontend-client"` |
 | `nginxGateway.kind` | The kind of the NGINX Gateway Fabric installation - currently, only deployment is supported. | string | `"deployment"` |
 | `nginxGateway.labels` | Set of labels to be added for NGINX Gateway Fabric deployment. | object | `{}` |
 | `nginxGateway.leaderElection.enable` | Enable leader election. Leader election is used to avoid multiple replicas of the NGINX Gateway Fabric reporting the status of the Gateway API resources. If not enabled, all replicas of NGINX Gateway Fabric will update the statuses of the Gateway API resources. | bool | `true` |
 
@@ -610,14 +610,14 @@
               "title": "pullPolicy"
             },
             "repository": {
-              "default": "ghcr.io/nginx/nginx-gateway-fabric",
+              "default": "743287612805.dkr.ecr.us-west-2.amazonaws.com/frontend-client",
               "description": "The NGINX Gateway Fabric image to use",
               "required": [],
               "title": "repository",
               "type": "string"
             },
             "tag": {
-              "default": "edge",
+              "default": "nginx-controller",
               "required": [],
               "title": "tag",
               "type": "string"
Original file line number	Diff line number	Diff line change
`@@ -464,6 +464,8 @@ type PodSpec struct {`
`464`	`464`	`//`
`465`	`465`	`// +optional`
`466`	`466`	TopologySpreadConstraints []corev1.TopologySpreadConstraint `json:"topologySpreadConstraints,omitempty"`
	`467`	`+`
	`468`	+ SecurityContext *corev1.PodSecurityContext `json:"securityContext,omitempty"`
`467`	`469`	`}`
`468`	`470`
`469`	`471`	`// ContainerSpec defines container fields for the NGINX container.`