Comments (4)
J12934
commented on July 4, 2024
Hi @Alon-Katz
Not 100% sure but this might be a helm / crd upgrade issue.
Helm install installs the CRD of the chart but helm upgrade does not upgrade it on changes.
We normally have a seperate head up warning about having to manually update the CRDs when the release had CRDs changes, but I forgot to add it to the 4.4.0 release.
So the CRD changes are in the release but not yet in your cluster so kubernetes doesn't allow you to use it yet.
I've updated the description of the release to now contain this notice, see:
https://github.com/secureCodeBox/secureCodeBox/releases/tag/v4.4.0
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v4.4.0/operator/crds/cascading.securecodebox.io_cascadingrules.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v4.4.0/operator/crds/execution.securecodebox.io_clusterparsedefinitions.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v4.4.0/operator/crds/execution.securecodebox.io_clusterscancompletionhooks.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v4.4.0/operator/crds/execution.securecodebox.io_clusterscantypes.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v4.4.0/operator/crds/execution.securecodebox.io_parsedefinitions.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v4.4.0/operator/crds/execution.securecodebox.io_scancompletionhooks.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v4.4.0/operator/crds/execution.securecodebox.io_scans.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v4.4.0/operator/crds/execution.securecodebox.io_scantypes.yaml
kubectl apply -f https://raw.githubusercontent.com/secureCodeBox/secureCodeBox/v4.4.0/operator/crds/execution.securecodebox.io_scheduledscans.yamlfrom securecodebox.
Alon-Katz
commented on July 4, 2024
Hi @J12934 , I tested this on a new Minikube instance with a fresh installation of SecureCodeBox v4.4.1, and I also tried to apply the CRD you provided, but the issue persists.
from securecodebox.
J12934
commented on July 4, 2024
Should be fixed with release v4.5.0 :)
Can you check if this resolves the issue for you?
from securecodebox.
Alon-Katz
commented on July 4, 2024
Hi @J12934 , Thanks for the quick release!
Seems like there is still an error, tried both with --set and with a values.yaml file (New minikube instance with a fresh install of v4.5.0 and also ran the crds apply just in case)
This is the set command:
helm upgrade --install new-scanner secureCodeBox/gitleaks --set parser.nodeSelector."beta\\.kubernetes\\.io/os"=linux -n securecodebox-system
This is the same in values.yaml file:
parser:
nodeSelector:
beta.kubernetes.io/os: linux
Same result in both methods
W0317 19:07:37.250238 40628 warnings.go:70] unknown field "spec.nodeSelector.beta.kubernetes.io/os"
Error: UPGRADE FAILED: failed to create resource: ParseDefinition.execution.securecodebox.io "gitleaks-json" is invalid: spec.nodeSelector.nodeSelectorTerms: Required value
from securecodebox.
Related Issues (20)
- securecodebox-operator-minio keeps crashing on ARM64 kubernetes cluster HOT 2
- Support Google Cloud Storage as an object storage HOT 2
- "product with this name already exists." error when sending trivy image scan results to DefectDojo HOT 3
- Automatically "TrΓΆt" on Mastodon for new Releases
- Admonition in Hooks How-To Broken
- Add a optional ttlSecondsAfterFinished field to scans to cleanup finished scans HOT 3
- π Recurring documentation issue
- Ncrack Parser is using a depracated encryption padding mechanism removed in the newest node security patch
- Switch (optional) encryption of identified passwords from ncrack to use AGE
- Passing parameters to ScheduledScan HOT 1
- add no ssl_use value
- Trivy Parser Creates Malformed Location URL HOT 4
- controleur crash with SchedulScan HOT 6
- The scan status displays 'Scanning,' even though the job has reached the specified backoff limit HOT 1
- Lurker terminated with 'OOMKilled' event HOT 5
- improve security Deployment Workload HOT 4
- Trivy Scans persisted to Defect Dojo are missing multiple metadata fields HOT 8
- π Recurring documentation issue
- "Exception while attaching findings to engagement" error in Persistence-defectdojo HOT 6
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
π Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. πππ
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google β€οΈ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from securecodebox.