crowdsec helm

No introduction found. Create it?

Install

Install with:

helm repo add crowdsec https://crowdsecurity.github.io/helm-charts/
helm install crowdsec crowdsec/crowdsec -f values.yaml

Examples

See examples from other people.

Top Repositories (2 out of 5)

NameRepoStarsVersionTimestamp
crowdsecpascaliske/infrastructure640.19.28 days ago
crowdsecxunholy/k8s-gitops5520.19.2a month ago

Values

See the most popular values for this chart:

KeyTypes
agent.metrics.enabled (5)
true
boolean
agent.metrics.serviceMonitor.enabled (5)
true
boolean
agent.acquisition[].namespace (4)
network
string
agent.acquisition[].podName (4)
nginx-external-controller-*
string
agent.acquisition[].program (4)
nginx
string
agent.acquisition[].poll_without_inotify (1)
true
boolean
agent.env[].name (4)
DISABLE_crONLINE_API
COLLECTIONS
PARSERS
SCENARIOS
TZ
DISABLE_ONLINE_API
string
agent.env[].value (4)
false
crowdsecurity/linux crowdsecurity/nginx crowdsecurity/base-http-scenarios crowdsecurity/http-cve
crowdsecurity/cri-logs crowdsecurity/docker-logs
LePresidente/jellyfin-bf crowdsecurity/home-assistant-bf
Europe/Madrid
false
string
agent.persistentVolume.config.enabled (2)
true
boolean
agent.persistentVolume.config.accessModes[] (1)
- ReadWriteMany
string
agent.persistentVolume.config.existingClaim (1)
crowdsec-agent-config-pvc
string
agent.persistentVolume.config.size (1)
100Mi
string
agent.persistentVolume.config.storageClassName (1)
standard-rwx
string
agent.additionalAcquisition[].filenames[] (1)
- /nextcloud.log
string
agent.additionalAcquisition[].labels.type (1)
Nextcloud
string
agent.additionalAcquisition[].source (1)
file
string
agent.extraVolumeMounts[].mountPath (1)
/nextcloud.log
string
agent.extraVolumeMounts[].name (1)
nextcloud-log
string
agent.extraVolumeMounts[].readOnly (1)
true
boolean
agent.extraVolumes[].hostPath.path (1)
/mnt/sdc1/nextcloud/data/nextcloud.log
string
agent.extraVolumes[].name (1)
nextcloud-log
string
agent.resources.limits.memory (1)
100Mi
string
agent.resources.requests.cpu (1)
150m
string
agent.resources.requests.memory (1)
100Mi
string
agent.tolerations[].effect (1)
NoSchedule
NoSchedule
string
agent.tolerations[].key (1)
node-role.kubernetes.io/control-plane
k8s.pascaliske.dev/location
string
agent.tolerations[].operator (1)
Exists
Equal
string
agent.tolerations[].value (1)
public
string
container_runtime (5)
containerd
string
lapi.dashboard.enabled (5)
false
boolean
lapi.dashboard.ingress.enabled (3)
false
boolean
lapi.dashboard.ingress.host (3)
crowdsec.${SECRET_DOMAIN}
string
lapi.dashboard.ingress.ingressClassName (2)
internal
string
lapi.dashboard.ingress.tls[].hosts[] (2)
- crowdsec.${SECRET_DOMAIN}
string
lapi.dashboard.ingress.annotations."cert-manager.io/cluster-issuer" (1)
le-prod
string
lapi.dashboard.ingress.annotations."cert-manager.io/private-key-rotation-policy" (1)
Always
string
lapi.dashboard.ingress.annotations."meta.helm.sh/release-name" (1)
traefik
string
lapi.dashboard.ingress.annotations."meta.helm.sh/release-namespace" (1)
traefik
string
lapi.dashboard.ingress.annotations."traefik.ingress.kubernetes.io/router.entrypoints" (1)
websecure
string
lapi.dashboard.ingress.annotations."traefik.ingress.kubernetes.io/router.middlewares" (1)
traefik-chain-basic@kubernetescrd,traefik-bouncer@kubernetescrd,traefik-local@kubernetescrd
string
lapi.dashboard.ingress.annotations."traefik.ingress.kubernetes.io/router.tls" (1)
true
string
lapi.dashboard.ingress.labels.k8s-app (1)
crowdsec
string
lapi.dashboard.ingress.labels.type (1)
lapi-dashboard
string
lapi.dashboard.ingress.labels.version (1)
v1
string
lapi.dashboard.image.repository (1)
metabase/metabase
string
lapi.dashboard.image.tag (1)
v0.54.5
string
lapi.metrics.enabled (5)
true
boolean
lapi.metrics.serviceMonitor.enabled (5)
true
boolean
lapi.env[].name (4)
DISABLE_AGENT
ENROLL_KEY
ENROLL_INSTANCE_NAME
string
lapi.env[].value (4)
true
pepinillo@cluster-0
string
lapi.env[].valueFrom.secretKeyRef.key (1)
enroll_key
string
lapi.env[].valueFrom.secretKeyRef.name (1)
crowdsec-secret
string
lapi.persistentVolume.config.enabled (3)
true
boolean
lapi.persistentVolume.config.accessModes[] (2)
- ReadWriteOnce
string
lapi.persistentVolume.config.size (2)
100Mi
string
lapi.persistentVolume.config.existingClaim (1)
crowdsec-config-pvc
string
lapi.persistentVolume.config.storageClassName (1)
standard-rwx
string
lapi.persistentVolume.data.enabled (3)
true
boolean
lapi.persistentVolume.data.accessModes[] (2)
- ReadWriteOnce
string
lapi.persistentVolume.data.size (2)
1Gi
string
lapi.persistentVolume.data.existingClaim (1)
crowdsec-db-pvc
string
lapi.persistentVolume.data.storageClassName (1)
standard-rwx
string
lapi.extraVolumeMounts[].mountPath (2)
/etc/crowdsec_data/notifications/http.yaml
string
lapi.extraVolumeMounts[].name (2)
http-config
string
lapi.extraVolumeMounts[].readOnly (2)
true
boolean
lapi.extraVolumeMounts[].subPath (1)
http.yaml
string
lapi.extraVolumes[].name (2)
http-config
string
lapi.extraVolumes[].hostPath.path (1)
/home/elraro/home-ops/volumes/crowdsec/http.yaml
string
lapi.extraVolumes[].secret.items[].key (1)
http.yaml
string
lapi.extraVolumes[].secret.items[].path (1)
http.yaml
string
lapi.extraVolumes[].secret.secretName (1)
crowdsec-secret
string
lapi.affinity.nodeAffinity.requiredDuringSchedulingIgnoredDuringExecution.nodeSelectorTerms[].matchExpressions[].key (1)
beta.kubernetes.io/arch
string
lapi.affinity.nodeAffinity.requiredDuringSchedulingIgnoredDuringExecution.nodeSelectorTerms[].matchExpressions[].operator (1)
In
string
lapi.affinity.nodeAffinity.requiredDuringSchedulingIgnoredDuringExecution.nodeSelectorTerms[].matchExpressions[].values[] (1)
- amd64
string
lapi.ingress.enabled (1)
true
boolean
lapi.ingress.host (1)
crowdsec.${SECRET_DOMAIN}
string
lapi.ingress.ingressClassName (1)
internal
string
lapi.ingress.tls[].hosts[] (1)
- crowdsec.${SECRET_DOMAIN}
string
lapi.resources.limits.memory (1)
100M
string
lapi.resources.requests.cpu (1)
150m
string
lapi.resources.requests.memory (1)
100M
string
lapi.strategy.type (1)
Recreate
string
image.repository (3)
ghcr.io/crowdsecurity/crowdsec
string
image.tag (3)
v1.6.8
string
image.pullPolicy (2)
IfNotPresent
string
tls.enabled (3)
false
boolean
tls.bouncer.reflector.namespaces[] (1)
- traefik
string
config."profiles.yaml" (2)
notifications: - http_default
string
podAnnotations."reloader.stakater.com/auto" (1)
true
string