values.yaml is also created by
helm create new-scanner.
Most of these generated fields are not necessary for the secureCodeBox.
In the following we will describe the important fields.
values.yaml will look something like this:
image field contains the container image and tag used for the scanner.
This could be the official image of the scanner but in some cases a custom image is needed.
tag of the image is
null and will default to the charts
For WPScan the official image can be used so the
image field looks like this:
parserImage field specifies the container image with the parser for the scanner.
This will always be a custom image containing the Parser SDK and the parser (see Parser SDK).
tag will default to the charts
appVersion and should be
parserImage looks like this:
scannerJob defines multiple properties for the Scan Job including resources, evironment variables, volumes and security context.
scannerJob could look like the following.
Defines how long the scanner job after finishing will be available (see: TTL Controller for Finished Resources | Kubernetes
resources field can limit or request resources for the scan job (see: Managing Resources For Containers | Kubernetes)
An basic example could be the following:
Optional environment variables mapped into each scanJob (see: Define Environment Variables for a Container | Kubernetes).
Optional Volumes mapped into each scanJob (see: Volumes | Kubernetes).
Optional VolumeMounts mapped into each scanJob (see: Volumes | Kubernetes).
Optional additional Containers started with each scanJob (see: Init Containers | Kubernetes).
Optional securityContext set on scanner container (see: Configure a Security Context for a Pod or Container | Kubernetes).