k8s-gitops
trivy-scan-dir
Our great sponsors
k8s-gitops | trivy-scan-dir | |
---|---|---|
3 | 1 | |
41 | 0 | |
- | - | |
6.6 | 3.2 | |
6 months ago | over 3 years ago | |
Shell | Shell | |
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
k8s-gitops
-
Connect to Kubernetes Pods with Tailscale
You can see how it's all put together in my k8s-gitops repo. The gist is that you add a sidecar container that starts tailscale and in my case adds an iptables rule which forwards all traffic to the app port. You can see my poor Doppler secret naming in there too where everything is using miniflux-secret.
-
Scan Images in my GitOps Repo
My full workflow can be found in kasuboski/k8s-gitops. It triggers on workflow_dispatch, cron, and push to yaml files.
trivy-scan-dir
-
Scan Images in my GitOps Repo
This image has its own repo kasuboski/trivy-scan-dir. If you just want to scan a repo you can run docker run -it --rm -v /path/to/yaml:/gitops -e EXCLUDED='no/scan also/noscan' kasuboski/trivy-scan-dir.
What are some alternatives?
k3s-gitops - My home Kubernetes (k3s) cluster managed by GitOps (Flux2) [Moved to: https://github.com/onedr0p/home-cluster]
flux2-kustomize-helm-example - A GitOps workflow example for multi-env deployments with Flux, Kustomize and Helm.
Flux - Successor: https://github.com/fluxcd/flux2
tailscale-proxy - Expose a Kubernetes Pod on your Tailnet
supergraph-demo - 🍿 Compose subgraphs into a Federation v1 supergraph at build-time with static composition to power a federated graph router at runtime.
k8s-gitops - GitOps principles to define kubernetes cluster state via code
k3s-cluster
hyrule-infra - Automation for my home kubernetes cluster!
Miniflux - Minimalist and opinionated feed reader
tailscale - The easiest, most secure way to use WireGuard and 2FA.