You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
feat: module has been updated to use image digest SHA instead of an image tag as per best practises. That means the log_analysis_agent_version and cloud_monitoring_agent_version input variables have been removed. It means its not longer supported to pass the version to the module. Instead every module release will be locked into a specific version, and there will be regular module releases with updated versions in them. (#275)
Copy file name to clipboardExpand all lines: README.md
-2Lines changed: 0 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -136,7 +136,6 @@ No modules.
136
136
| <aname="input_cloud_monitoring_agent_namespace"></a> [cloud\_monitoring\_agent\_namespace](#input\_cloud\_monitoring\_agent\_namespace)| Namespace where to deploy the Cloud Monitoring agent. Default value is 'ibm-observe' |`string`|`"ibm-observe"`| no |
137
137
| <aname="input_cloud_monitoring_agent_tags"></a> [cloud\_monitoring\_agent\_tags](#input\_cloud\_monitoring\_agent\_tags)| List of tags to associate to all matrics that the agent collects. NOTE: Use the 'cloud\_monitoring\_add\_cluster\_name' variable to add the cluster name as a tag. |`list(string)`|`[]`| no |
138
138
| <aname="input_cloud_monitoring_agent_tolerations"></a> [cloud\_monitoring\_agent\_tolerations](#input\_cloud\_monitoring\_agent\_tolerations)| List of tolerations to apply to Cloud Monitoring agent. | <pre>list(object({<br> key = optional(string)<br> operator = optional(string)<br> value = optional(string)<br> effect = optional(string)<br> tolerationSeconds = optional(number)<br> }))</pre> | <pre>[<br> {<br> "operator": "Exists"<br> },<br> {<br> "effect": "NoSchedule",<br> "key": "node-role.kubernetes.io/master",<br> "operator": "Exists"<br> }<br>]</pre> | no |
139
-
| <aname="input_cloud_monitoring_agent_version"></a> [cloud\_monitoring\_agent\_version](#input\_cloud\_monitoring\_agent\_version)| IBM Cloud Monitoring Agent Version. To lookup version run: `ibmcloud cr images --restrict ext/sysdig/agent`. If null, the default value is used. |`string`|`"12.19.0"`| no |
140
139
| <aname="input_cloud_monitoring_enabled"></a> [cloud\_monitoring\_enabled](#input\_cloud\_monitoring\_enabled)| Deploy IBM Cloud Monitoring agent |`bool`|`true`| no |
141
140
| <aname="input_cloud_monitoring_endpoint_type"></a> [cloud\_monitoring\_endpoint\_type](#input\_cloud\_monitoring\_endpoint\_type)| Specify the IBM Cloud Monitoring instance endpoint type (public or private) to use. Used to construct the ingestion endpoint. |`string`|`"private"`| no |
142
141
| <aname="input_cloud_monitoring_instance_region"></a> [cloud\_monitoring\_instance\_region](#input\_cloud\_monitoring\_instance\_region)| The IBM Cloud Monitoring instance region. Used to construct the ingestion endpoint. |`string`|`null`| no |
@@ -152,7 +151,6 @@ No modules.
152
151
| <aname="input_log_analysis_agent_namespace"></a> [log\_analysis\_agent\_namespace](#input\_log\_analysis\_agent\_namespace)| Namespace where to deploy the Log Analysis agent. Default value is 'ibm-observe' |`string`|`"ibm-observe"`| no |
153
152
| <aname="input_log_analysis_agent_tags"></a> [log\_analysis\_agent\_tags](#input\_log\_analysis\_agent\_tags)| List of tags to associate to all log records that the agent collects so that you can identify the agent's data quicker in the logging UI. NOTE: Use the 'log\_analysis\_add\_cluster\_name' variable to add the cluster name as a tag. |`list(string)`|`[]`| no |
154
153
| <aname="input_log_analysis_agent_tolerations"></a> [log\_analysis\_agent\_tolerations](#input\_log\_analysis\_agent\_tolerations)| List of tolerations to apply to Log Analysis agent. | <pre>list(object({<br> key = optional(string)<br> operator = optional(string)<br> value = optional(string)<br> effect = optional(string)<br> tolerationSeconds = optional(number)<br> }))</pre> | <pre>[<br> {<br> "operator": "Exists"<br> }<br>]</pre> | no |
155
-
| <aname="input_log_analysis_agent_version"></a> [log\_analysis\_agent\_version](#input\_log\_analysis\_agent\_version)| Version of the agent to deploy. To lookup version run: `ibmcloud cr images --restrict ext/logdna-agent`. If null, the default value is used. |`string`|`"3.9.1-20231225.fb0af936e8df898f"`| no |
156
154
| <aname="input_log_analysis_enabled"></a> [log\_analysis\_enabled](#input\_log\_analysis\_enabled)| Deploy IBM Cloud Logging agent |`bool`|`true`| no |
157
155
| <aname="input_log_analysis_endpoint_type"></a> [log\_analysis\_endpoint\_type](#input\_log\_analysis\_endpoint\_type)| Specify the IBM Log Analysis instance endpoint type (public or private) to use. Used to construct the ingestion endpoint. |`string`|`"private"`| no |
158
156
| <aname="input_log_analysis_ingestion_key"></a> [log\_analysis\_ingestion\_key](#input\_log\_analysis\_ingestion\_key)| Ingestion key for the IBM Cloud Logging agent to communicate with the instance |`string`|`null`| no |
- checkov.io/skip1: CKV_K8S_21 # "The default namespace should not be used" - false positive - the helm namespace is always used, but not picked up by linter
19
17
- checkov.io/skip2: CKV_K8S_11 # "CPU limits should be set" - ignoring as chart not owned by us
20
-
- checkov.io/skip3: CKV_K8S_43 # Valid issue, tracked at https://github.ibm.com/GoldenEye/issues/issues/6704
21
18
- checkov.io/skip4: CKV_K8S_38 # "Ensure that Service Account Tokens are only mounted where necessary" - ignoring as chart not owned by us
22
19
- checkov.io/skip5: CKV_K8S_29 # "Apply security context to your pods and containers" - ignoring as chart not owned by us
23
20
- checkov.io/skip6: CKV_K8S_25 # "Minimize the admission of containers with added capability" - ignoring as chart not owned by us
0 commit comments