anthonygrees · September 29, 2022 22:08
diff --git a/lw_proxy_scanner_k8s.yml b/lw_proxy_scanner_k8s.yml
 apiVersion: v1
 kind: Service
 metadata:
  name: lacework-proxy-scanner
  namespace: proxy-scanner
  labels:
    app: lacework-proxy-scanner
 spec:
  type: LoadBalancer
  ports:
    - protocol: TCP
      port: 80
      targetPort: 8080
  selector:
    app: lacework-proxy-scanner
 ---
 apiVersion: apps/v1
 kind: Deployment
 metadata:
  labels:
    app: lacework-proxy-scanner
  name: lacework-proxy-scanner
 spec:
  replicas: 1
  selector:
    matchLabels:
      app: lacework-proxy-scanner
  template:
    metadata:
      labels:
        app: lacework-proxy-scanner
    spec:
      containers:
      - image: lacework/lacework-proxy-scanner:latest
        name: lacework-proxy-scanner
        env:
        - name: LOG_LEVEL
          value: "info"
        ports:
        - containerPort: 8080
          name: lacework
        resources:
          requests:
            cpu: "100m"
            memory: "512Mi"
        volumeMounts:
          - name: cache
            mountPath: /opt/lacework/cache
          - name: config
            mountPath: /opt/lacework/config/config.yml
            subPath: config.yml
      volumes:
        - name: cache
          emptyDir: {}
        - name: config
          configMap:
            name: lacework-proxy-scanner-config
 ---
 apiVersion: v1
 kind: ConfigMap
 metadata:
  name: lacework-proxy-scanner-config
 data:
  config.yml: |
    # The recommended path is /opt/lacework/cache
    static_cache_location: /opt/lacework/cache
    lacework:
      account_name: <account.name>
      integration_access_token: <token>
    registries:
      - domain: yourharborregistry.getresponse.com
        name: <name>
        ssl: true
        auto_poll: false
        credentials:
          user_name: <UserName>
          password: <Password>
        poll_frequency_minutes: 20
        # Define the notification type acr|dtr|ghcr|hub|jfrog|v2_registry that corresponds to your registry
        notification_type: harbor
        scan_non_os_packages: true
	apiVersion: v1
	kind: Service
	metadata:
	name: lacework-proxy-scanner
	namespace: proxy-scanner
	labels:
	app: lacework-proxy-scanner
	spec:
	type: LoadBalancer
	ports:
	- protocol: TCP
	port: 80
	targetPort: 8080
	selector:
	app: lacework-proxy-scanner
	---
	apiVersion: apps/v1
	kind: Deployment
	metadata:
	labels:
	app: lacework-proxy-scanner
	name: lacework-proxy-scanner
	spec:
	replicas: 1
	selector:
	matchLabels:
	app: lacework-proxy-scanner
	template:
	metadata:
	labels:
	app: lacework-proxy-scanner
	spec:
	containers:
	- image: lacework/lacework-proxy-scanner:latest
	name: lacework-proxy-scanner
	env:
	- name: LOG_LEVEL
	value: "info"
	ports:
	- containerPort: 8080
	name: lacework
	resources:
	requests:
	cpu: "100m"
	memory: "512Mi"
	volumeMounts:
	- name: cache
	mountPath: /opt/lacework/cache
	- name: config
	mountPath: /opt/lacework/config/config.yml
	subPath: config.yml
	volumes:
	- name: cache
	emptyDir: {}
	- name: config
	configMap:
	name: lacework-proxy-scanner-config
	---
	apiVersion: v1
	kind: ConfigMap
	metadata:
	name: lacework-proxy-scanner-config
	data:
	config.yml: \|
	# The recommended path is /opt/lacework/cache
	static_cache_location: /opt/lacework/cache
	lacework:
	account_name: <account.name>
	integration_access_token: <token>
	registries:
	- domain: yourharborregistry.getresponse.com
	name: <name>
	ssl: true
	auto_poll: false
	credentials:
	user_name: <UserName>
	password: <Password>
	poll_frequency_minutes: 20
	# Define the notification type acr\|dtr\|ghcr\|hub\|jfrog\|v2_registry that corresponds to your registry
	notification_type: harbor
	scan_non_os_packages: true