Conversation
…ervice}(-checkov)-values.yaml`.
dyff of changes in rendered templates of CI manifestsFull contents of manifests and dyffs are available in https://github.com/element-hq/ess-helm/actions/runs/16314148579/artifacts/3543190565 example-default-enabled-components-checkov-values.yaml (added)ConfigMap/ess-ci/release-name-element-web-nginx added
ConfigMap/ess-ci/release-name-element-web added
ConfigMap/ess-ci/release-name-haproxy added
ConfigMap/ess-ci/release-name-matrix-authentication-service added
ConfigMap/ess-ci/release-name-postgres added
ConfigMap/ess-ci/release-name-synapse-haproxy added
ConfigMap/ess-ci/release-name-synapse-hook added
ConfigMap/ess-ci/release-name-synapse added
ConfigMap/ess-ci/release-name-well-known-haproxy added
Deployment/ess-ci/release-name-element-web added
Deployment/ess-ci/release-name-haproxy added
Deployment/ess-ci/release-name-matrix-authentication-service added
Ingress/ess-ci/release-name-element-web added
Ingress/ess-ci/release-name-matrix-authentication-service added
Ingress/ess-ci/release-name-synapse added
Ingress/ess-ci/release-name-well-known added
Job/ess-ci/release-name-deployment-markers-post added
Job/ess-ci/release-name-deployment-markers-pre added
Job/ess-ci/release-name-init-secrets added
Job/ess-ci/release-name-synapse-check-config added
PersistentVolumeClaim/ess-ci/release-name-postgres-data added
PersistentVolumeClaim/ess-ci/release-name-synapse-media added
Role/ess-ci/release-name-deployment-markers-post added
Role/ess-ci/release-name-deployment-markers-pre added
Role/ess-ci/release-name-init-secrets added
RoleBinding/ess-ci/release-name-deployment-markers-post added
RoleBinding/ess-ci/release-name-deployment-markers-pre added
RoleBinding/ess-ci/release-name-init-secrets added
Secret/ess-ci/release-name-matrix-authentication-service added
Secret/ess-ci/release-name-synapse-hook added
Secret/ess-ci/release-name-synapse added
Service/ess-ci/release-name-element-web added
Service/ess-ci/release-name-haproxy added
Service/ess-ci/release-name-matrix-authentication-service added
Service/ess-ci/release-name-postgres added
Service/ess-ci/release-name-synapse-main added
Service/ess-ci/release-name-synapse added
Service/ess-ci/release-name-well-known added
ServiceAccount/ess-ci/release-name-deployment-markers-post added
ServiceAccount/ess-ci/release-name-deployment-markers-pre added
ServiceAccount/ess-ci/release-name-element-web added
ServiceAccount/ess-ci/release-name-haproxy added
ServiceAccount/ess-ci/release-name-init-secrets added
ServiceAccount/ess-ci/release-name-matrix-authentication-service added
ServiceAccount/ess-ci/release-name-postgres added
ServiceAccount/ess-ci/release-name-synapse-check-config added
ServiceAccount/ess-ci/release-name-synapse added
ServiceMonitor/ess-ci/release-name-haproxy added
ServiceMonitor/ess-ci/release-name-matrix-authentication-service added
ServiceMonitor/ess-ci/release-name-postgres added
ServiceMonitor/ess-ci/release-name-synapse added
StatefulSet/ess-ci/release-name-postgres added
StatefulSet/ess-ci/release-name-synapse-main addedpytest-matrix-rtc-synapse-wellknown-values.yaml@@ Job/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/job.yaml
- apiVersion: batch/v1
- kind: Job
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- has-no-service-monitor: "true"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- spec:
- backoffLimit: 6
- completionMode: NonIndexed
- completions: 1
- manualSelector: false
- parallelism: 1
- podReplacementPolicy: TerminatingOrFailed
- template:
- metadata:
- annotations:
- has-no-service-monitor: "true"
- labels:
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- spec:
- restartPolicy: OnFailure
- automountServiceAccountToken: true
- serviceAccountName: release-name-deployment-markers-post
- securityContext:
- fsGroup: 10010
- runAsGroup: 0
- runAsNonRoot: true
- runAsUser: 10010
- seccompProfile:
- type: RuntimeDefault
- supplementalGroups: []
- containers:
- - name: deployment-markers
- image: "ghcr.io/element-hq/ess-helm/matrix-tools:0.5.4"
- imagePullPolicy: Always
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- resources:
- limits:
- memory: 200Mi
- requests:
- cpu: 50m
- memory: 50Mi
- env:
- - name: NAMESPACE
- value: ess-ci
- command:
- - "/matrix-tools"
- - "deployment-markers"
- - "-step"
- - "post"
- - "-markers"
- - "release-name-markers:MATRIX_STACK_MSC3861:legacy_auth:legacy_auth"
- - "-labels"
- - "app.kubernetes.io/managed-by=Helm,app.kubernetes.io/part-of=matrix-stack,app.kubernetes.io/component=matrix-tools,app.kubernetes.io/name=deployment-markers,app.kubernetes.io/instance=release-name-deployment-markers,app.kubernetes.io/version=0.5.4"
@@ Job/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/job.yaml
- apiVersion: batch/v1
- kind: Job
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- has-no-service-monitor: "true"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- spec:
- backoffLimit: 6
- completionMode: NonIndexed
- completions: 1
- manualSelector: false
- parallelism: 1
- podReplacementPolicy: TerminatingOrFailed
- template:
- metadata:
- annotations:
- has-no-service-monitor: "true"
- labels:
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- spec:
- restartPolicy: OnFailure
- automountServiceAccountToken: true
- serviceAccountName: release-name-deployment-markers-pre
- securityContext:
- fsGroup: 10010
- runAsGroup: 0
- runAsNonRoot: true
- runAsUser: 10010
- seccompProfile:
- type: RuntimeDefault
- supplementalGroups: []
- containers:
- - name: deployment-markers
- image: "ghcr.io/element-hq/ess-helm/matrix-tools:0.5.4"
- imagePullPolicy: Always
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- resources:
- limits:
- memory: 200Mi
- requests:
- cpu: 50m
- memory: 50Mi
- env:
- - name: NAMESPACE
- value: ess-ci
- command:
- - "/matrix-tools"
- - "deployment-markers"
- - "-step"
- - "pre"
- - "-markers"
- - "release-name-markers:MATRIX_STACK_MSC3861:legacy_auth:legacy_auth"
- - "-labels"
- - "app.kubernetes.io/managed-by=Helm,app.kubernetes.io/part-of=matrix-stack,app.kubernetes.io/component=matrix-tools,app.kubernetes.io/name=deployment-markers,app.kubernetes.io/instance=release-name-deployment-markers,app.kubernetes.io/version=0.5.4"
@@ Role/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/role.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- rules:
- - apiGroups: [""]
- resources: ["configmaps"]
- verbs: ["create"]
- - apiGroups: [""]
- resources: ["configmaps"]
- resourceNames: ["release-name-markers"]
- verbs: ["get", "update"]
@@ Role/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/role.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- rules:
- - apiGroups: [""]
- resources: ["configmaps"]
- verbs: ["create"]
- - apiGroups: [""]
- resources: ["configmaps"]
- resourceNames: ["release-name-markers"]
- verbs: ["get", "update"]
@@ RoleBinding/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/rolebinding.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: release-name-deployment-markers-post
- subjects:
- - kind: ServiceAccount
- name: release-name-deployment-markers-post
- namespace: ess-ci
@@ RoleBinding/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/rolebinding.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: release-name-deployment-markers-pre
- subjects:
- - kind: ServiceAccount
- name: release-name-deployment-markers-pre
- namespace: ess-ci
@@ ServiceAccount/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/serviceaccount.yaml
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- annotations:
- helm.sh/hook: post-install,post-upgrade
- helm.sh/hook-weight: "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- name: release-name-deployment-markers-post
- namespace: ess-ci
- automountServiceAccountToken: false
@@ ServiceAccount/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/serviceaccount.yaml
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- annotations:
- helm.sh/hook: pre-install,pre-upgrade
- helm.sh/hook-weight: "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- automountServiceAccountToken: false
pytest-synapse-values.yaml@@ Job/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/job.yaml
- apiVersion: batch/v1
- kind: Job
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- has-no-service-monitor: "true"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- spec:
- backoffLimit: 6
- completionMode: NonIndexed
- completions: 1
- manualSelector: false
- parallelism: 1
- podReplacementPolicy: TerminatingOrFailed
- template:
- metadata:
- annotations:
- has-no-service-monitor: "true"
- labels:
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- spec:
- restartPolicy: OnFailure
- automountServiceAccountToken: true
- serviceAccountName: release-name-deployment-markers-post
- securityContext:
- fsGroup: 10010
- runAsGroup: 0
- runAsNonRoot: true
- runAsUser: 10010
- seccompProfile:
- type: RuntimeDefault
- supplementalGroups: []
- containers:
- - name: deployment-markers
- image: "ghcr.io/element-hq/ess-helm/matrix-tools:0.5.4"
- imagePullPolicy: Always
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- resources:
- limits:
- memory: 200Mi
- requests:
- cpu: 50m
- memory: 50Mi
- env:
- - name: NAMESPACE
- value: ess-ci
- command:
- - "/matrix-tools"
- - "deployment-markers"
- - "-step"
- - "post"
- - "-markers"
- - "release-name-markers:MATRIX_STACK_MSC3861:legacy_auth:legacy_auth"
- - "-labels"
- - "app.kubernetes.io/managed-by=Helm,app.kubernetes.io/part-of=matrix-stack,app.kubernetes.io/component=matrix-tools,app.kubernetes.io/name=deployment-markers,app.kubernetes.io/instance=release-name-deployment-markers,app.kubernetes.io/version=0.5.4"
@@ Job/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/job.yaml
- apiVersion: batch/v1
- kind: Job
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- has-no-service-monitor: "true"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- spec:
- backoffLimit: 6
- completionMode: NonIndexed
- completions: 1
- manualSelector: false
- parallelism: 1
- podReplacementPolicy: TerminatingOrFailed
- template:
- metadata:
- annotations:
- has-no-service-monitor: "true"
- labels:
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- spec:
- restartPolicy: OnFailure
- automountServiceAccountToken: true
- serviceAccountName: release-name-deployment-markers-pre
- securityContext:
- fsGroup: 10010
- runAsGroup: 0
- runAsNonRoot: true
- runAsUser: 10010
- seccompProfile:
- type: RuntimeDefault
- supplementalGroups: []
- containers:
- - name: deployment-markers
- image: "ghcr.io/element-hq/ess-helm/matrix-tools:0.5.4"
- imagePullPolicy: Always
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- resources:
- limits:
- memory: 200Mi
- requests:
- cpu: 50m
- memory: 50Mi
- env:
- - name: NAMESPACE
- value: ess-ci
- command:
- - "/matrix-tools"
- - "deployment-markers"
- - "-step"
- - "pre"
- - "-markers"
- - "release-name-markers:MATRIX_STACK_MSC3861:legacy_auth:legacy_auth"
- - "-labels"
- - "app.kubernetes.io/managed-by=Helm,app.kubernetes.io/part-of=matrix-stack,app.kubernetes.io/component=matrix-tools,app.kubernetes.io/name=deployment-markers,app.kubernetes.io/instance=release-name-deployment-markers,app.kubernetes.io/version=0.5.4"
@@ Role/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/role.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- rules:
- - apiGroups: [""]
- resources: ["configmaps"]
- verbs: ["create"]
- - apiGroups: [""]
- resources: ["configmaps"]
- resourceNames: ["release-name-markers"]
- verbs: ["get", "update"]
@@ Role/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/role.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- rules:
- - apiGroups: [""]
- resources: ["configmaps"]
- verbs: ["create"]
- - apiGroups: [""]
- resources: ["configmaps"]
- resourceNames: ["release-name-markers"]
- verbs: ["get", "update"]
@@ RoleBinding/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/rolebinding.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: release-name-deployment-markers-post
- subjects:
- - kind: ServiceAccount
- name: release-name-deployment-markers-post
- namespace: ess-ci
@@ RoleBinding/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/rolebinding.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: release-name-deployment-markers-pre
- subjects:
- - kind: ServiceAccount
- name: release-name-deployment-markers-pre
- namespace: ess-ci
@@ ServiceAccount/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/serviceaccount.yaml
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- annotations:
- helm.sh/hook: post-install,post-upgrade
- helm.sh/hook-weight: "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- name: release-name-deployment-markers-post
- namespace: ess-ci
- automountServiceAccountToken: false
@@ ServiceAccount/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/serviceaccount.yaml
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- annotations:
- helm.sh/hook: pre-install,pre-upgrade
- helm.sh/hook-weight: "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- automountServiceAccountToken: false
synapse-checkov-with-workers-values.yaml@@ Job/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/job.yaml
- apiVersion: batch/v1
- kind: Job
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- checkov.io/skip1: CKV_K8S_11=We deliberately don't set CPU limits. Pod is BestEffort not Guaranteed
- checkov.io/skip2: CKV_K8S_43=No digests
- checkov.io/skip3: CKV2_K8S_6=No network policy yet
- checkov.io/skip4: CKV_K8S_38=The job needs a service account
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- spec:
- backoffLimit: 6
- completionMode: NonIndexed
- completions: 1
- manualSelector: false
- parallelism: 1
- podReplacementPolicy: TerminatingOrFailed
- template:
- metadata:
- annotations:
- checkov.io/skip1: CKV_K8S_11=We deliberately don't set CPU limits. Pod is BestEffort not Guaranteed
- checkov.io/skip2: CKV_K8S_43=No digests
- checkov.io/skip3: CKV2_K8S_6=No network policy yet
- checkov.io/skip4: CKV_K8S_38=The job needs a service account
- labels:
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- spec:
- restartPolicy: OnFailure
- automountServiceAccountToken: true
- serviceAccountName: release-name-deployment-markers-post
- securityContext:
- fsGroup: 10010
- runAsGroup: 10010
- runAsNonRoot: true
- runAsUser: 10010
- seccompProfile:
- type: RuntimeDefault
- supplementalGroups: []
- containers:
- - name: deployment-markers
- image: "ghcr.io/element-hq/ess-helm/matrix-tools:0.5.4"
- imagePullPolicy: Always
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- resources:
- limits:
- memory: 200Mi
- requests:
- cpu: 50m
- memory: 50Mi
- env:
- - name: NAMESPACE
- value: ess-ci
- command:
- - "/matrix-tools"
- - "deployment-markers"
- - "-step"
- - "post"
- - "-markers"
- - "release-name-markers:MATRIX_STACK_MSC3861:legacy_auth:legacy_auth"
- - "-labels"
- - "app.kubernetes.io/managed-by=Helm,app.kubernetes.io/part-of=matrix-stack,app.kubernetes.io/component=matrix-tools,app.kubernetes.io/name=deployment-markers,app.kubernetes.io/instance=release-name-deployment-markers,app.kubernetes.io/version=0.5.4"
@@ Job/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/job.yaml
- apiVersion: batch/v1
- kind: Job
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- checkov.io/skip1: CKV_K8S_11=We deliberately don't set CPU limits. Pod is BestEffort not Guaranteed
- checkov.io/skip2: CKV_K8S_43=No digests
- checkov.io/skip3: CKV2_K8S_6=No network policy yet
- checkov.io/skip4: CKV_K8S_38=The job needs a service account
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- spec:
- backoffLimit: 6
- completionMode: NonIndexed
- completions: 1
- manualSelector: false
- parallelism: 1
- podReplacementPolicy: TerminatingOrFailed
- template:
- metadata:
- annotations:
- checkov.io/skip1: CKV_K8S_11=We deliberately don't set CPU limits. Pod is BestEffort not Guaranteed
- checkov.io/skip2: CKV_K8S_43=No digests
- checkov.io/skip3: CKV2_K8S_6=No network policy yet
- checkov.io/skip4: CKV_K8S_38=The job needs a service account
- labels:
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- spec:
- restartPolicy: OnFailure
- automountServiceAccountToken: true
- serviceAccountName: release-name-deployment-markers-pre
- securityContext:
- fsGroup: 10010
- runAsGroup: 10010
- runAsNonRoot: true
- runAsUser: 10010
- seccompProfile:
- type: RuntimeDefault
- supplementalGroups: []
- containers:
- - name: deployment-markers
- image: "ghcr.io/element-hq/ess-helm/matrix-tools:0.5.4"
- imagePullPolicy: Always
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- resources:
- limits:
- memory: 200Mi
- requests:
- cpu: 50m
- memory: 50Mi
- env:
- - name: NAMESPACE
- value: ess-ci
- command:
- - "/matrix-tools"
- - "deployment-markers"
- - "-step"
- - "pre"
- - "-markers"
- - "release-name-markers:MATRIX_STACK_MSC3861:legacy_auth:legacy_auth"
- - "-labels"
- - "app.kubernetes.io/managed-by=Helm,app.kubernetes.io/part-of=matrix-stack,app.kubernetes.io/component=matrix-tools,app.kubernetes.io/name=deployment-markers,app.kubernetes.io/instance=release-name-deployment-markers,app.kubernetes.io/version=0.5.4"
@@ Role/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/role.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- rules:
- - apiGroups: [""]
- resources: ["configmaps"]
- verbs: ["create"]
- - apiGroups: [""]
- resources: ["configmaps"]
- resourceNames: ["release-name-markers"]
- verbs: ["get", "update"]
@@ Role/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/role.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- rules:
- - apiGroups: [""]
- resources: ["configmaps"]
- verbs: ["create"]
- - apiGroups: [""]
- resources: ["configmaps"]
- resourceNames: ["release-name-markers"]
- verbs: ["get", "update"]
@@ RoleBinding/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/rolebinding.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: release-name-deployment-markers-post
- subjects:
- - kind: ServiceAccount
- name: release-name-deployment-markers-post
- namespace: ess-ci
@@ RoleBinding/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/rolebinding.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: release-name-deployment-markers-pre
- subjects:
- - kind: ServiceAccount
- name: release-name-deployment-markers-pre
- namespace: ess-ci
@@ ServiceAccount/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/serviceaccount.yaml
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- annotations:
- helm.sh/hook: post-install,post-upgrade
- helm.sh/hook-weight: "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- name: release-name-deployment-markers-post
- namespace: ess-ci
- automountServiceAccountToken: false
@@ ServiceAccount/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/serviceaccount.yaml
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- annotations:
- helm.sh/hook: pre-install,pre-upgrade
- helm.sh/hook-weight: "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- automountServiceAccountToken: false
synapse-minimal-values.yaml@@ Job/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/job.yaml
- apiVersion: batch/v1
- kind: Job
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- spec:
- backoffLimit: 6
- completionMode: NonIndexed
- completions: 1
- manualSelector: false
- parallelism: 1
- podReplacementPolicy: TerminatingOrFailed
- template:
- metadata:
- annotations:
- labels:
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- spec:
- restartPolicy: OnFailure
- automountServiceAccountToken: true
- serviceAccountName: release-name-deployment-markers-post
- securityContext:
- fsGroup: 10010
- runAsGroup: 10010
- runAsNonRoot: true
- runAsUser: 10010
- seccompProfile:
- type: RuntimeDefault
- supplementalGroups: []
- containers:
- - name: deployment-markers
- image: "ghcr.io/element-hq/ess-helm/matrix-tools:0.5.4"
- imagePullPolicy: Always
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- resources:
- limits:
- memory: 200Mi
- requests:
- cpu: 50m
- memory: 50Mi
- env:
- - name: NAMESPACE
- value: ess-ci
- command:
- - "/matrix-tools"
- - "deployment-markers"
- - "-step"
- - "post"
- - "-markers"
- - "release-name-markers:MATRIX_STACK_MSC3861:legacy_auth:legacy_auth"
- - "-labels"
- - "app.kubernetes.io/managed-by=Helm,app.kubernetes.io/part-of=matrix-stack,app.kubernetes.io/component=matrix-tools,app.kubernetes.io/name=deployment-markers,app.kubernetes.io/instance=release-name-deployment-markers,app.kubernetes.io/version=0.5.4"
@@ Job/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/job.yaml
- apiVersion: batch/v1
- kind: Job
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- spec:
- backoffLimit: 6
- completionMode: NonIndexed
- completions: 1
- manualSelector: false
- parallelism: 1
- podReplacementPolicy: TerminatingOrFailed
- template:
- metadata:
- annotations:
- labels:
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- spec:
- restartPolicy: OnFailure
- automountServiceAccountToken: true
- serviceAccountName: release-name-deployment-markers-pre
- securityContext:
- fsGroup: 10010
- runAsGroup: 10010
- runAsNonRoot: true
- runAsUser: 10010
- seccompProfile:
- type: RuntimeDefault
- supplementalGroups: []
- containers:
- - name: deployment-markers
- image: "ghcr.io/element-hq/ess-helm/matrix-tools:0.5.4"
- imagePullPolicy: Always
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
- resources:
- limits:
- memory: 200Mi
- requests:
- cpu: 50m
- memory: 50Mi
- env:
- - name: NAMESPACE
- value: ess-ci
- command:
- - "/matrix-tools"
- - "deployment-markers"
- - "-step"
- - "pre"
- - "-markers"
- - "release-name-markers:MATRIX_STACK_MSC3861:legacy_auth:legacy_auth"
- - "-labels"
- - "app.kubernetes.io/managed-by=Helm,app.kubernetes.io/part-of=matrix-stack,app.kubernetes.io/component=matrix-tools,app.kubernetes.io/name=deployment-markers,app.kubernetes.io/instance=release-name-deployment-markers,app.kubernetes.io/version=0.5.4"
@@ Role/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/role.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- rules:
- - apiGroups: [""]
- resources: ["configmaps"]
- verbs: ["create"]
- - apiGroups: [""]
- resources: ["configmaps"]
- resourceNames: ["release-name-markers"]
- verbs: ["get", "update"]
@@ Role/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/role.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: Role
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- rules:
- - apiGroups: [""]
- resources: ["configmaps"]
- verbs: ["create"]
- - apiGroups: [""]
- resources: ["configmaps"]
- resourceNames: ["release-name-markers"]
- verbs: ["get", "update"]
@@ RoleBinding/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/rolebinding.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: release-name-deployment-markers-post
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": post-install,post-upgrade
- "helm.sh/hook-weight": "-20"
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: release-name-deployment-markers-post
- subjects:
- - kind: ServiceAccount
- name: release-name-deployment-markers-post
- namespace: ess-ci
@@ RoleBinding/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/rolebinding.yaml
- apiVersion: rbac.authorization.k8s.io/v1
- kind: RoleBinding
- metadata:
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- annotations:
- "helm.sh/hook": pre-install,pre-upgrade
- "helm.sh/hook-weight": "-20"
- roleRef:
- apiGroup: rbac.authorization.k8s.io
- kind: Role
- name: release-name-deployment-markers-pre
- subjects:
- - kind: ServiceAccount
- name: release-name-deployment-markers-pre
- namespace: ess-ci
@@ ServiceAccount/ess-ci/release-name-deployment-markers-post @@
- ---
- # Source: matrix-stack/templates/deployment-markers/serviceaccount.yaml
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- annotations:
- helm.sh/hook: post-install,post-upgrade
- helm.sh/hook-weight: "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-post
- app.kubernetes.io/instance: release-name-deployment-markers-post
- app.kubernetes.io/version: "0.5.4"
- name: release-name-deployment-markers-post
- namespace: ess-ci
- automountServiceAccountToken: false
@@ ServiceAccount/ess-ci/release-name-deployment-markers-pre @@
- ---
- # Source: matrix-stack/templates/deployment-markers/serviceaccount.yaml
- apiVersion: v1
- kind: ServiceAccount
- metadata:
- annotations:
- helm.sh/hook: pre-install,pre-upgrade
- helm.sh/hook-weight: "-20"
- labels:
- helm.sh/chart: "matrix-stack-25.7.1-dev"
- app.kubernetes.io/managed-by: Helm
- app.kubernetes.io/part-of: matrix-stack
- app.kubernetes.io/component: matrix-tools
- app.kubernetes.io/name: deployment-markers-pre
- app.kubernetes.io/instance: release-name-deployment-markers-pre
- app.kubernetes.io/version: "0.5.4"
- name: release-name-deployment-markers-pre
- namespace: ess-ci
- automountServiceAccountToken: false
|
benbz
force-pushed
the
bbz/tweak-ci-values-files
branch
from
6c53a45 to
803ad34
Compare
Member
Author
|
No |
…PyTests without them.
benbz
force-pushed
the
bbz/tweak-ci-values-files
branch
from
803ad34 to
90810f5
Compare
gaelgatelement
approved these changes
Jul 16, 2025
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
charts/matrix-stack/ci/example-default-enabled-components-checkov-values.yamlso that we've something that coversdeploymentMarkersexplicitlydeploymentMarkersfrom{synapse,matrix-authentication-service}-minimal-values.yamlas removing them doesn't require additional values to be setcheckovvalues filedeploymentMarkersfrom the Synapse based PyTestssyn2mastest covers starting with legacy authdeploymentMarkersavailable