Compare commits
No commits in common. "9403df5ced498b0e60e1c822d7b4e806a475d293" and "809c150029e277669489954c10a8a4508b40784a" have entirely different histories.
9403df5ced
...
809c150029
|
|
@ -4,7 +4,7 @@ metadata:
|
||||||
name: falco
|
name: falco
|
||||||
namespace: default
|
namespace: default
|
||||||
labels:
|
labels:
|
||||||
helm.sh/chart: falco-6.2.1
|
helm.sh/chart: falco-6.0.2
|
||||||
app.kubernetes.io/name: falco
|
app.kubernetes.io/name: falco
|
||||||
app.kubernetes.io/instance: falco
|
app.kubernetes.io/instance: falco
|
||||||
app.kubernetes.io/version: "0.41.3"
|
app.kubernetes.io/version: "0.41.3"
|
||||||
|
|
@ -118,28 +118,25 @@ data:
|
||||||
- init_config:
|
- init_config:
|
||||||
engines:
|
engines:
|
||||||
bpm:
|
bpm:
|
||||||
enabled: true
|
enabled: false
|
||||||
containerd:
|
containerd:
|
||||||
enabled: true
|
enabled: true
|
||||||
sockets:
|
sockets:
|
||||||
- /run/host-containerd/containerd.sock
|
- /run/containerd/containerd.sock
|
||||||
cri:
|
cri:
|
||||||
enabled: true
|
enabled: true
|
||||||
sockets:
|
sockets:
|
||||||
- /run/containerd/containerd.sock
|
|
||||||
- /run/crio/crio.sock
|
- /run/crio/crio.sock
|
||||||
- /run/k3s/containerd/containerd.sock
|
|
||||||
- /run/host-containerd/containerd.sock
|
|
||||||
docker:
|
docker:
|
||||||
enabled: true
|
enabled: true
|
||||||
sockets:
|
sockets:
|
||||||
- /var/run/docker.sock
|
- /var/run/docker.sock
|
||||||
libvirt_lxc:
|
libvirt_lxc:
|
||||||
enabled: true
|
enabled: false
|
||||||
lxc:
|
lxc:
|
||||||
enabled: true
|
enabled: false
|
||||||
podman:
|
podman:
|
||||||
enabled: true
|
enabled: false
|
||||||
sockets:
|
sockets:
|
||||||
- /run/podman/podman.sock
|
- /run/podman/podman.sock
|
||||||
hooks:
|
hooks:
|
||||||
|
|
|
||||||
|
|
@ -4,7 +4,7 @@ metadata:
|
||||||
name: falco
|
name: falco
|
||||||
namespace: default
|
namespace: default
|
||||||
labels:
|
labels:
|
||||||
helm.sh/chart: falco-6.2.1
|
helm.sh/chart: falco-6.0.2
|
||||||
app.kubernetes.io/name: falco
|
app.kubernetes.io/name: falco
|
||||||
app.kubernetes.io/instance: falco
|
app.kubernetes.io/instance: falco
|
||||||
app.kubernetes.io/version: "0.41.3"
|
app.kubernetes.io/version: "0.41.3"
|
||||||
|
|
@ -21,7 +21,7 @@ spec:
|
||||||
app.kubernetes.io/name: falco
|
app.kubernetes.io/name: falco
|
||||||
app.kubernetes.io/instance: falco
|
app.kubernetes.io/instance: falco
|
||||||
annotations:
|
annotations:
|
||||||
checksum/config: 948adb2235f9c452256f8a116e5000835b63646b5f8a15ca4c138f50a15698f8
|
checksum/config: 10a490066e1a9cf457f1e00daf6ebefe8eef9186f51f1c865cb2741276dbf290
|
||||||
checksum/rules: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
checksum/rules: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
||||||
checksum/certs: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
checksum/certs: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
|
||||||
spec:
|
spec:
|
||||||
|
|
@ -78,17 +78,11 @@ spec:
|
||||||
port: 8765
|
port: 8765
|
||||||
volumeMounts:
|
volumeMounts:
|
||||||
- mountPath: /host/var/run/docker.sock
|
- mountPath: /host/var/run/docker.sock
|
||||||
name: container-engine-socket-0
|
name: docker-socket
|
||||||
- mountPath: /host/run/podman/podman.sock
|
|
||||||
name: container-engine-socket-1
|
|
||||||
- mountPath: /host/run/host-containerd/containerd.sock
|
|
||||||
name: container-engine-socket-2
|
|
||||||
- mountPath: /host/run/containerd/containerd.sock
|
|
||||||
name: container-engine-socket-3
|
|
||||||
- mountPath: /host/run/crio/crio.sock
|
- mountPath: /host/run/crio/crio.sock
|
||||||
name: container-engine-socket-4
|
name: crio-socket
|
||||||
- mountPath: /host/run/k3s/containerd/containerd.sock
|
- mountPath: /host/run/containerd/containerd.sock
|
||||||
name: container-engine-socket-5
|
name: containerd-socket
|
||||||
- mountPath: /etc/falco
|
- mountPath: /etc/falco
|
||||||
name: rulesfiles-install-dir
|
name: rulesfiles-install-dir
|
||||||
- mountPath: /usr/share/falco/plugins
|
- mountPath: /usr/share/falco/plugins
|
||||||
|
|
@ -180,22 +174,13 @@ spec:
|
||||||
volumes:
|
volumes:
|
||||||
- hostPath:
|
- hostPath:
|
||||||
path: /var/run/docker.sock
|
path: /var/run/docker.sock
|
||||||
name: container-engine-socket-0
|
name: docker-socket
|
||||||
- hostPath:
|
|
||||||
path: /run/podman/podman.sock
|
|
||||||
name: container-engine-socket-1
|
|
||||||
- hostPath:
|
|
||||||
path: /run/host-containerd/containerd.sock
|
|
||||||
name: container-engine-socket-2
|
|
||||||
- hostPath:
|
|
||||||
path: /run/containerd/containerd.sock
|
|
||||||
name: container-engine-socket-3
|
|
||||||
- hostPath:
|
- hostPath:
|
||||||
path: /run/crio/crio.sock
|
path: /run/crio/crio.sock
|
||||||
name: container-engine-socket-4
|
name: crio-socket
|
||||||
- hostPath:
|
- hostPath:
|
||||||
path: /run/k3s/containerd/containerd.sock
|
path: /run/containerd/containerd.sock
|
||||||
name: container-engine-socket-5
|
name: containerd-socket
|
||||||
- name: specialized-falco-configs
|
- name: specialized-falco-configs
|
||||||
emptyDir: {}
|
emptyDir: {}
|
||||||
- name: plugins-install-dir
|
- name: plugins-install-dir
|
||||||
|
|
|
||||||
|
|
@ -4,7 +4,7 @@ metadata:
|
||||||
name: falco-falcoctl
|
name: falco-falcoctl
|
||||||
namespace: default
|
namespace: default
|
||||||
labels:
|
labels:
|
||||||
helm.sh/chart: falco-6.2.1
|
helm.sh/chart: falco-6.0.2
|
||||||
app.kubernetes.io/name: falco
|
app.kubernetes.io/name: falco
|
||||||
app.kubernetes.io/instance: falco
|
app.kubernetes.io/instance: falco
|
||||||
app.kubernetes.io/version: "0.41.3"
|
app.kubernetes.io/version: "0.41.3"
|
||||||
|
|
@ -26,7 +26,7 @@ data:
|
||||||
pluginsDir: /plugins
|
pluginsDir: /plugins
|
||||||
refs:
|
refs:
|
||||||
- falco-rules:4
|
- falco-rules:4
|
||||||
- ghcr.io/falcosecurity/plugins/plugin/container:0.3.3
|
- ghcr.io/falcosecurity/plugins/plugin/container:0.3.1
|
||||||
resolveDeps: true
|
resolveDeps: true
|
||||||
rulesfilesDir: /rulesfiles
|
rulesfilesDir: /rulesfiles
|
||||||
indexes:
|
indexes:
|
||||||
|
|
|
||||||
|
|
@ -3,7 +3,7 @@ apiVersion: rbac.authorization.k8s.io/v1
|
||||||
metadata:
|
metadata:
|
||||||
name: falco
|
name: falco
|
||||||
labels:
|
labels:
|
||||||
helm.sh/chart: falco-6.2.1
|
helm.sh/chart: falco-6.0.2
|
||||||
app.kubernetes.io/name: falco
|
app.kubernetes.io/name: falco
|
||||||
app.kubernetes.io/instance: falco
|
app.kubernetes.io/instance: falco
|
||||||
app.kubernetes.io/version: "0.41.3"
|
app.kubernetes.io/version: "0.41.3"
|
||||||
|
|
|
||||||
|
|
@ -3,7 +3,7 @@ apiVersion: rbac.authorization.k8s.io/v1
|
||||||
metadata:
|
metadata:
|
||||||
name: falco
|
name: falco
|
||||||
labels:
|
labels:
|
||||||
helm.sh/chart: falco-6.2.1
|
helm.sh/chart: falco-6.0.2
|
||||||
app.kubernetes.io/name: falco
|
app.kubernetes.io/name: falco
|
||||||
app.kubernetes.io/instance: falco
|
app.kubernetes.io/instance: falco
|
||||||
app.kubernetes.io/version: "0.41.3"
|
app.kubernetes.io/version: "0.41.3"
|
||||||
|
|
|
||||||
|
|
@ -4,7 +4,7 @@ metadata:
|
||||||
name: falco
|
name: falco
|
||||||
namespace: default
|
namespace: default
|
||||||
labels:
|
labels:
|
||||||
helm.sh/chart: falco-6.2.1
|
helm.sh/chart: falco-6.0.2
|
||||||
app.kubernetes.io/name: falco
|
app.kubernetes.io/name: falco
|
||||||
app.kubernetes.io/instance: falco
|
app.kubernetes.io/instance: falco
|
||||||
app.kubernetes.io/version: "0.41.3"
|
app.kubernetes.io/version: "0.41.3"
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue