-
Notifications
You must be signed in to change notification settings - Fork 1
/
Copy pathartifacthub-pkg.yml
58 lines (58 loc) · 1.66 KB
/
artifacthub-pkg.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
# Kubewarden Artifacthub Package config
#
# Use this config to submit the policy to https://artifacthub.io.
#
# This config can be saved to its default location with:
# kwctl scaffold artifacthub > artifacthub-pkg.yml
version: 0.1.0
name: image-cve-policy
displayName: Policy Name
createdAt: 2024-11-21T07:41:49.550457713Z
description: Short description
license: Apache-2.0
homeURL: https://github.com/yourorg/image-cve-policy
containersImages:
- name: policy
image: ghcr.io/kubewarden/policies/image-cve-policy:v0.1.0
keywords:
- pod
- cool policy
- kubewarden
links:
- name: policy
url: https://github.com/yourorg/image-cve-policy/releases/download/v0.1.0/policy.wasm
- name: source
url: https://github.com/yourorg/image-cve-policy
install: |
The policy can be obtained using [`kwctl`](https://github.com/kubewarden/kwctl):
```console
kwctl pull ghcr.io/kubewarden/policies/image-cve-policy:v0.1.0
```
Then, generate the policy manifest and tune it to your liking. For example:
```console
kwctl scaffold manifest -t ClusterAdmissionPolicy registry://ghcr.io/kubewarden/policies/image-cve-policy:v0.1.0
```
maintainers:
- name: Flavio Castelli
email: fcastelli@suse.com
provider:
name: kubewarden
recommendations:
- url: https://artifacthub.io/packages/helm/kubewarden/kubewarden-controller
annotations:
kubewarden/contextAwareResources: |
- apiVersion: storage.sbombastic.rancher.io/v1alpha1
kind: VulnerabilityReport
kubewarden/mutation: 'false'
kubewarden/questions-ui: |
# TODO
kubewarden/resources: Pod
kubewarden/rules: |
- apiGroups:
- ''
apiVersions:
- v1
resources:
- pods
operations:
- CREATE