Skip to content

Instantly share code, notes, and snippets.

@bashfulrobot

bashfulrobot/sysdig-agent-values.yaml

Created September 28, 2022 19:15
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save bashfulrobot/00c079861756ea59f83614ec22af652d to your computer and use it in GitHub Desktop.
Save bashfulrobot/00c079861756ea59f83614ec22af652d to your computer and use it in GitHub Desktop.
Download ZIP
Template values.yaml - sysdig agent
Raw
sysdig-agent-values.yaml
#### Sysdig Deploy Chart - https://charts.sysdig.com/charts/sysdig-deploy/
global:
clusterConfig:
name: op://secrets/sysdig-us2-agent-install/dt-cluster-name
sysdig:
accessKey: op://secrets/sysdig-us2-agent-install/accessKey
region: op://secrets/sysdig-us2-agent-install/region
kspm:
deploy: true
kspmCollector:
apiEndpoint: op://secrets/sysdig-us2-agent-install/apiEndpoint
#### Agent Sub Chart - https://github.com/sysdiglabs/charts/blob/master/charts/agent/README.md
agent:
auditLog:
enabled: true
# Custom sizing for EKS to fix scheduleing due to large requests
# resourceProfile: custom
# resources:
# requests:
# cpu: 250m
# memory: 756Mi
# limits:
# cpu: 1000m
# memory: 1024Mi
sysdig:
settings:
tags: linux:ubuntu,dept:dev,local:vancouver,location:home,tailscale:no
# # Allow sysdig to run on Kubernetes 1.24 masters/control-plane.
tolerations:
- effect: NoSchedule
key: node-role.kubernetes.io/control-plane
- effect: NoSchedule
key: node-role.kubernetes.io/master
#### Node Analyzer sub chart - https://github.com/sysdiglabs/charts/blob/master/charts/node-analyzer/README.md
nodeAnalyzer:
secure:
enabled: true
vulnerabilityManagement:
newEngineOnly: false
nodeAnalyzer:
apiEndpoint: op://secrets/sysdig-us2-agent-install/apiEndpoint
runtimeScanner:
deploy: true
settings:
eveEnabled: true
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment