ralvares · April 12, 2025 02:51
diff --git a/secured-cluster.yaml b/secured-cluster.yaml
 apiVersion: platform.stackrox.io/v1alpha1
 kind: SecuredCluster
 metadata:
  name: stackrox-secured-cluster-services
  namespace: stackrox
 spec:
  customize:
    envVars:
      - name: ROX_SCANNER_V4_RED_HAT_CVES
        value: 'true'
  sensor:
    resources:
      requests:
        cpu: 10m
        memory: 50Mi
  admissionControl:
    bypass: BreakGlassAnnotation
    contactImageScanners: ScanIfMissing
    listenOnCreates: true
    listenOnEvents: true
    listenOnUpdates: true
    replicas: 1
    resources:
      requests:
        cpu: 100m
        memory: 50Mi
    timeoutSeconds: 10
  auditLogs:
    collection: Auto
  clusterName: production
  monitoring:
    openshift:
      enabled: true
  network:
    policies: Enabled
  perNode:
    collector:
      collection: CORE_BPF
      forceCollection: false
      imageFlavor: Regular
      resources:
        requests:
          cpu: 100m
          memory: 50Mi
    compliance:
      resources:
        requests:
          cpu: 100m
          memory: 50Mi
    taintToleration: TolerateTaints
  scanner:
    analyzer:
      resources:
        requests:
          cpu: 100m
          memory: 50Mi
      scaling:
        autoScaling: Enabled
        maxReplicas: 2
        minReplicas: 1
        replicas: 1
    db:
      resources:
        requests:
          cpu: 100m
          memory: 50Mi
    scannerComponent: AutoSense
  scannerV4:
    db:
      persistence:
        persistentVolumeClaim:
          claimName: scanner-v4-db
      resources:
        requests:
          cpu: 100m
          memory: 50Mi
    indexer:
      resources:
        requests:
          cpu: 100m
          memory: 50Mi
      scaling:
        autoScaling: Enabled
        maxReplicas: 2
        minReplicas: 1
        replicas: 1
    monitoring:
      exposeEndpoint: Disabled
    scannerComponent: AutoSense
 ---
 apiVersion: v1
 kind: ConfigMap
 metadata:
  name: collector-config
  namespace: stackrox
 data:
  runtime_config.yaml: | 
    networking:
      externalIps:
        enable: true
        enabled: ENABLED
      maxConnectionsPerMinute: 2048
	apiVersion: platform.stackrox.io/v1alpha1
	kind: SecuredCluster
	metadata:
	name: stackrox-secured-cluster-services
	namespace: stackrox
	spec:
	customize:
	envVars:
	- name: ROX_SCANNER_V4_RED_HAT_CVES
	value: 'true'
	sensor:
	resources:
	requests:
	cpu: 10m
	memory: 50Mi
	admissionControl:
	bypass: BreakGlassAnnotation
	contactImageScanners: ScanIfMissing
	listenOnCreates: true
	listenOnEvents: true
	listenOnUpdates: true
	replicas: 1
	resources:
	requests:
	cpu: 100m
	memory: 50Mi
	timeoutSeconds: 10
	auditLogs:
	collection: Auto
	clusterName: production
	monitoring:
	openshift:
	enabled: true
	network:
	policies: Enabled
	perNode:
	collector:
	collection: CORE_BPF
	forceCollection: false
	imageFlavor: Regular
	resources:
	requests:
	cpu: 100m
	memory: 50Mi
	compliance:
	resources:
	requests:
	cpu: 100m
	memory: 50Mi
	taintToleration: TolerateTaints
	scanner:
	analyzer:
	resources:
	requests:
	cpu: 100m
	memory: 50Mi
	scaling:
	autoScaling: Enabled
	maxReplicas: 2
	minReplicas: 1
	replicas: 1
	db:
	resources:
	requests:
	cpu: 100m
	memory: 50Mi
	scannerComponent: AutoSense
	scannerV4:
	db:
	persistence:
	persistentVolumeClaim:
	claimName: scanner-v4-db
	resources:
	requests:
	cpu: 100m
	memory: 50Mi
	indexer:
	resources:
	requests:
	cpu: 100m
	memory: 50Mi
	scaling:
	autoScaling: Enabled
	maxReplicas: 2
	minReplicas: 1
	replicas: 1
	monitoring:
	exposeEndpoint: Disabled
	scannerComponent: AutoSense
	---
	apiVersion: v1
	kind: ConfigMap
	metadata:
	name: collector-config
	namespace: stackrox
	data:
	runtime_config.yaml: \|
	networking:
	externalIps:
	enable: true
	enabled: ENABLED
	maxConnectionsPerMinute: 2048