image-guard

command module

v0.0.0-...-96f1adb Latest Latest Go to latest Published: Oct 21, 2021 License: Apache-2.0 Imports: 17 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/kyma-project/test-infra

README ¶

Image-guard

This directory contains source code for the image-guard admission controller.

Image-guard performs the following tasks:

Monitor and log used Docker images in the Pods.
Optionally, check and allow the usage of the listed registries only.

Prerequisites

To deploy the application, you need the following:

Helm 3
Kubernetes cluster (at least 1.16 version)

Installation

To install image-guard, use the following command using your Kubernetes cluster context:

$ helm install image-guard ./image-guard

If you want to enable enforcing image registries, use the --set enforcedRegistry.enabled=true Helm flag and define the registries.

Flags

These are the flags you can use for this application:

--host -h [host]                The hostname for the service
--port -p [port]                The HTTPS port to listen on
--http-only                     The flag that enables listening on unencrypted HTTP only (for example: for proxied environments)
--key-path [path-to-file]       The path to the unencrypted TLS key
--cert-path [path-to-file]      The path to the PEM-encoded TLS certificate
--allowed-registry -r [string]  The name of the allowed registry

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

main.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL