diff --git a/argocd/resources/dragonfly.yml b/argocd/resources/dragonfly.yml
index ed31871..872a7c4 100644
--- a/argocd/resources/dragonfly.yml
+++ b/argocd/resources/dragonfly.yml
@@ -16,5 +16,4 @@ spec:
cpu: 50m
memory: 50Mi
limits:
- cpu: 100m
memory: 350Mi
diff --git a/cnpg/cluster/resources/cluster.yaml b/cnpg/cluster/resources/cluster.yaml
index c14d5fd..1aca1cf 100644
--- a/cnpg/cluster/resources/cluster.yaml
+++ b/cnpg/cluster/resources/cluster.yaml
@@ -50,7 +50,6 @@ spec:
cpu: 400m
memory: 600Mi
limits:
- cpu: 1200m
memory: 900Mi
affinity:
diff --git a/dragonfly-operator/resources/deployment.yaml b/dragonfly-operator/resources/deployment.yaml
index 9d98158..08dafcc 100644
--- a/dragonfly-operator/resources/deployment.yaml
+++ b/dragonfly-operator/resources/deployment.yaml
@@ -36,75 +36,73 @@ spec:
- arm64
requiredDuringSchedulingIgnoredDuringExecution:
nodeSelectorTerms:
- - matchExpressions:
- - key: kubernetes.io/arch
- operator: In
- values:
- - amd64
- - arm64
- - ppc64le
- - s390x
- - key: kubernetes.io/os
- operator: In
- values:
- - linux
+ - matchExpressions:
+ - key: kubernetes.io/arch
+ operator: In
+ values:
+ - amd64
+ - arm64
+ - ppc64le
+ - s390x
+ - key: kubernetes.io/os
+ operator: In
+ values:
+ - linux
containers:
- - args:
- - --secure-listen-address=0.0.0.0:8443
- - --upstream=http://127.0.0.1:8080/
- - --logtostderr=true
- - --v=0
- image: kube-rbac-proxy
- name: kube-rbac-proxy
- ports:
- - containerPort: 8443
- name: https
- protocol: TCP
- resources:
- limits:
- cpu: 500m
- memory: 128Mi
- requests:
- cpu: 5m
- memory: 64Mi
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- - args:
- - --health-probe-bind-address=:8081
- - --metrics-bind-address=127.0.0.1:8080
- - --leader-elect
- command:
- - /manager
- image: dragonfly-operator
- livenessProbe:
- httpGet:
- path: /healthz
- port: 8081
- initialDelaySeconds: 15
- periodSeconds: 20
- name: manager
- readinessProbe:
- httpGet:
- path: /readyz
- port: 8081
- initialDelaySeconds: 5
- periodSeconds: 10
- resources:
- limits:
- cpu: 500m
- memory: 128Mi
- requests:
- cpu: 10m
- memory: 64Mi
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
+ - args:
+ - --secure-listen-address=0.0.0.0:8443
+ - --upstream=http://127.0.0.1:8080/
+ - --logtostderr=true
+ - --v=0
+ image: kube-rbac-proxy
+ name: kube-rbac-proxy
+ ports:
+ - containerPort: 8443
+ name: https
+ protocol: TCP
+ resources:
+ limits:
+ memory: 128Mi
+ requests:
+ cpu: 5m
+ memory: 64Mi
+ securityContext:
+ allowPrivilegeEscalation: false
+ capabilities:
+ drop:
+ - ALL
+ - args:
+ - --health-probe-bind-address=:8081
+ - --metrics-bind-address=127.0.0.1:8080
+ - --leader-elect
+ command:
+ - /manager
+ image: dragonfly-operator
+ livenessProbe:
+ httpGet:
+ path: /healthz
+ port: 8081
+ initialDelaySeconds: 15
+ periodSeconds: 20
+ name: manager
+ readinessProbe:
+ httpGet:
+ path: /readyz
+ port: 8081
+ initialDelaySeconds: 5
+ periodSeconds: 10
+ resources:
+ limits:
+ memory: 128Mi
+ requests:
+ cpu: 10m
+ memory: 64Mi
+ securityContext:
+ allowPrivilegeEscalation: false
+ capabilities:
+ drop:
+ - ALL
securityContext:
runAsNonRoot: true
serviceAccountName: dragonfly-operator-controller-manager
- terminationGracePeriodSeconds: 10
\ No newline at end of file
+ terminationGracePeriodSeconds: 10
diff --git a/ente/resources/cast/deployment.yaml b/ente/resources/cast/deployment.yaml
index 4af1048..3ff4cd2 100644
--- a/ente/resources/cast/deployment.yaml
+++ b/ente/resources/cast/deployment.yaml
@@ -31,7 +31,6 @@ spec:
cpu: "25m"
limits:
memory: "128Mi"
- cpu: "50m"
ports:
- name: http
containerPort: 3000
diff --git a/ente/resources/museum/cache.yaml b/ente/resources/museum/cache.yaml
index d513f05..a0e2780 100644
--- a/ente/resources/museum/cache.yaml
+++ b/ente/resources/museum/cache.yaml
@@ -16,5 +16,4 @@ spec:
cpu: 50m
memory: 50Mi
limits:
- cpu: 100m
memory: 350Mi
diff --git a/ente/resources/museum/deployment.yaml b/ente/resources/museum/deployment.yaml
index 1618c02..f9932e7 100644
--- a/ente/resources/museum/deployment.yaml
+++ b/ente/resources/museum/deployment.yaml
@@ -49,7 +49,6 @@ spec:
cpu: "50m"
limits:
memory: "128Mi"
- cpu: "250m"
ports:
- name: api
containerPort: 8080
diff --git a/ente/resources/photos/deployment.yaml b/ente/resources/photos/deployment.yaml
index bb41a55..09ffd07 100644
--- a/ente/resources/photos/deployment.yaml
+++ b/ente/resources/photos/deployment.yaml
@@ -31,7 +31,6 @@ spec:
cpu: "25m"
limits:
memory: "128Mi"
- cpu: "50m"
ports:
- name: http
containerPort: 3000
diff --git a/external-dns/resources/deployment.yaml b/external-dns/resources/deployment.yaml
index 01153a8..4289858 100644
--- a/external-dns/resources/deployment.yaml
+++ b/external-dns/resources/deployment.yaml
@@ -44,5 +44,4 @@ spec:
cpu: 50m
memory: 128Mi
limits:
- cpu: 100m
memory: 128Mi
diff --git a/fider/resources/deployment.yaml b/fider/resources/deployment.yaml
index 5cb2bd9..ce2b7df 100644
--- a/fider/resources/deployment.yaml
+++ b/fider/resources/deployment.yaml
@@ -36,7 +36,6 @@ spec:
name: fider-config
resources:
limits:
- cpu: 200m
memory: 200Mi
requests:
cpu: 50m
@@ -44,12 +43,12 @@ spec:
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
- - weight: 100
- podAffinityTerm:
- labelSelector:
- matchExpressions:
- - key: app.kubernetes.io/name
- operator: In
- values:
- - fider
- topologyKey: topology.kubernetes.io/zone
+ - weight: 100
+ podAffinityTerm:
+ labelSelector:
+ matchExpressions:
+ - key: app.kubernetes.io/name
+ operator: In
+ values:
+ - fider
+ topologyKey: topology.kubernetes.io/zone
diff --git a/forgejo/config/values.forgejo.yaml b/forgejo/config/values.forgejo.yaml
index fa18e65..8be930e 100644
--- a/forgejo/config/values.forgejo.yaml
+++ b/forgejo/config/values.forgejo.yaml
@@ -9,7 +9,6 @@ ingress:
resources:
limits:
- cpu: 500m
memory: 3Gi
requests:
cpu: 250m
diff --git a/forgejo/config/values.meilisearch.yaml b/forgejo/config/values.meilisearch.yaml
index 7c9b1d5..d18ecc3 100644
--- a/forgejo/config/values.meilisearch.yaml
+++ b/forgejo/config/values.meilisearch.yaml
@@ -16,7 +16,6 @@ persistence:
resources:
limits:
- cpu: 100m
memory: 768Mi
requests:
cpu: 100m
diff --git a/forgejo/resources/dragonfly.yml b/forgejo/resources/dragonfly.yml
index 8947712..8885172 100644
--- a/forgejo/resources/dragonfly.yml
+++ b/forgejo/resources/dragonfly.yml
@@ -16,5 +16,4 @@ spec:
cpu: 100m
memory: 350Mi
limits:
- cpu: 100m
- memory: 350Mi
\ No newline at end of file
+ memory: 350Mi
diff --git a/garage/resources/workload.yaml b/garage/resources/workload.yaml
index d08e7aa..8ee301c 100644
--- a/garage/resources/workload.yaml
+++ b/garage/resources/workload.yaml
@@ -48,7 +48,6 @@ spec:
cpu: 300m
memory: 280Mi
limits:
- cpu: 750m
memory: 500Mi
securityContext:
capabilities:
diff --git a/harbor/resources/dragonfly/db.yaml b/harbor/resources/dragonfly/db.yaml
index f48d88c..2b8d03c 100644
--- a/harbor/resources/dragonfly/db.yaml
+++ b/harbor/resources/dragonfly/db.yaml
@@ -16,5 +16,4 @@ spec:
cpu: 100m
memory: 350Mi
limits:
- cpu: 100m
memory: 350Mi
diff --git a/hedgedoc/resources/deployment.yaml b/hedgedoc/resources/deployment.yaml
index f334157..d1477d2 100644
--- a/hedgedoc/resources/deployment.yaml
+++ b/hedgedoc/resources/deployment.yaml
@@ -13,42 +13,41 @@ spec:
app.kubernetes.io/name: hedgedoc
spec:
containers:
- - name: hedgedoc
- image: hedgedoc
- env:
- - name: CMD_DB_URL
- valueFrom:
- secretKeyRef:
- name: db-credentials-hedgedoc
- key: PQ_URL
- - name: NODE_EXTRA_CA_CERTS
- value: /certs/ca.crt
- envFrom:
- - secretRef:
- name: hedgedoc-config
- ports:
- - containerPort: 3000
- protocol: TCP
- name: web
- volumeMounts:
- - name: upload-tmp
- mountPath: /tmp
- - name: pg-certs
- mountPath: /certs
- readOnly: true
- resources:
- requests:
- memory: "168Mi"
- cpu: "50m"
- limits:
- memory: "256Mi"
- cpu: "500m"
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
+ - name: hedgedoc
+ image: hedgedoc
+ env:
+ - name: CMD_DB_URL
+ valueFrom:
+ secretKeyRef:
+ name: db-credentials-hedgedoc
+ key: PQ_URL
+ - name: NODE_EXTRA_CA_CERTS
+ value: /certs/ca.crt
+ envFrom:
+ - secretRef:
+ name: hedgedoc-config
+ ports:
+ - containerPort: 3000
+ protocol: TCP
+ name: web
+ volumeMounts:
+ - name: upload-tmp
+ mountPath: /tmp
+ - name: pg-certs
+ mountPath: /certs
+ readOnly: true
+ resources:
+ requests:
+ memory: "168Mi"
+ cpu: "50m"
+ limits:
+ memory: "256Mi"
+ securityContext:
+ allowPrivilegeEscalation: false
+ capabilities:
+ drop:
+ - ALL
+ readOnlyRootFilesystem: true
securityContext:
runAsUser: 1000
runAsGroup: 1000
@@ -69,4 +68,4 @@ spec:
sizeLimit: 500Mi
- name: pg-certs
secret:
- secretName: default-cluster-cluster-cert
\ No newline at end of file
+ secretName: default-cluster-cluster-cert
diff --git a/kube-prometheus/config/values.prometheus.yaml b/kube-prometheus/config/values.prometheus.yaml
index 005336a..31cad6d 100644
--- a/kube-prometheus/config/values.prometheus.yaml
+++ b/kube-prometheus/config/values.prometheus.yaml
@@ -24,7 +24,6 @@ prometheus:
cpu: 500m
limits:
memory: 2200Mi
- cpu: 800m
storageSpec:
volumeClaimTemplate:
spec:
diff --git a/linkwarden/resources/deployment.yaml b/linkwarden/resources/deployment.yaml
index dccee61..80d54a9 100644
--- a/linkwarden/resources/deployment.yaml
+++ b/linkwarden/resources/deployment.yaml
@@ -61,7 +61,6 @@ spec:
cpu: "50m"
limits:
memory: "1500Mi"
- cpu: "500m"
readinessProbe:
httpGet:
path: /login
@@ -104,7 +103,6 @@ spec:
cpu: "50m"
limits:
memory: "1500Mi"
- cpu: "500m"
securityContext:
allowPrivilegeEscalation: false
capabilities:
@@ -131,4 +129,4 @@ spec:
sizeLimit: 250Mi
- name: node-cache
emptyDir:
- sizeLimit: 1500Mi
\ No newline at end of file
+ sizeLimit: 1500Mi
diff --git a/meali/resources/deployment.yaml b/meali/resources/deployment.yaml
index 226a007..32675eb 100644
--- a/meali/resources/deployment.yaml
+++ b/meali/resources/deployment.yaml
@@ -34,7 +34,6 @@ spec:
name: meali-config
resources:
limits:
- cpu: 200m
memory: 500Mi
requests:
cpu: 150m
diff --git a/nextcloud/config/values.keydb.yaml b/nextcloud/config/values.keydb.yaml
index 4bb9510..22eefa1 100644
--- a/nextcloud/config/values.keydb.yaml
+++ b/nextcloud/config/values.keydb.yaml
@@ -13,7 +13,6 @@ resources:
cpu: 50m
memory: 100Mi
limits:
- cpu: 250m
memory: 256Mi
exporter:
@@ -24,7 +23,6 @@ exporter:
cpu: 50m
memory: 50Mi
limits:
- cpu: 150m
memory: 100Mi
serviceMonitor:
diff --git a/nocodb/resources/deployment.yaml b/nocodb/resources/deployment.yaml
index c092ea5..75de852 100644
--- a/nocodb/resources/deployment.yaml
+++ b/nocodb/resources/deployment.yaml
@@ -63,7 +63,6 @@ spec:
cpu: "50m"
limits:
memory: "256Mi"
- cpu: "500m"
securityContext:
allowPrivilegeEscalation: false
capabilities:
diff --git a/nocodb/resources/dragonfly.yaml b/nocodb/resources/dragonfly.yaml
index 9ba23d8..76b408d 100644
--- a/nocodb/resources/dragonfly.yaml
+++ b/nocodb/resources/dragonfly.yaml
@@ -16,5 +16,4 @@ spec:
cpu: 100m
memory: 350Mi
limits:
- cpu: 100m
- memory: 350Mi
\ No newline at end of file
+ memory: 350Mi
diff --git a/plausible/resources/deployment.yaml b/plausible/resources/deployment.yaml
index a9ad621..f0b8a7d 100644
--- a/plausible/resources/deployment.yaml
+++ b/plausible/resources/deployment.yaml
@@ -42,7 +42,6 @@ spec:
cpu: "250m"
limits:
memory: "512Mi"
- cpu: "500m"
securityContext:
allowPrivilegeEscalation: false
capabilities:
diff --git a/postgres-operator/resources/db/default-cluster.yaml b/postgres-operator/resources/db/default-cluster.yaml
index bdd14c3..f694930 100644
--- a/postgres-operator/resources/db/default-cluster.yaml
+++ b/postgres-operator/resources/db/default-cluster.yaml
@@ -52,25 +52,24 @@ spec:
cpu: 500m
memory: 800Mi
limits:
- cpu: 500m
memory: 800Mi
dataVolumeClaimSpec:
storageClassName: hcloud-volumes
accessModes:
- - "ReadWriteOnce"
+ - "ReadWriteOnce"
resources:
requests:
storage: 10Gi
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
- - weight: 1
- podAffinityTerm:
- topologyKey: kubernetes.io/hostname
- labelSelector:
- matchLabels:
- postgres-operator.crunchydata.com/cluster: default-cluster
- postgres-operator.crunchydata.com/instance-set: instance1
+ - weight: 1
+ podAffinityTerm:
+ topologyKey: kubernetes.io/hostname
+ labelSelector:
+ matchLabels:
+ postgres-operator.crunchydata.com/cluster: default-cluster
+ postgres-operator.crunchydata.com/instance-set: instance1
backups:
pgbackrest:
@@ -79,8 +78,8 @@ spec:
options:
- --type=full
configuration:
- - secret:
- name: pgo-s3-creds
+ - secret:
+ name: pgo-s3-creds
global:
repo1-retention-full: "14"
repo1-retention-full-type: time
@@ -88,11 +87,11 @@ spec:
repo1-path: /pgbackrest/default-cluster/repo1
repo1-s3-uri-style: path
repos:
- - name: repo1
- schedules:
- full: "0 1 * * 0"
- differential: "0 1 * * 1-6"
- s3:
- bucket: backup
- endpoint: s3.icb4dc0.de
- region: hel1
+ - name: repo1
+ schedules:
+ full: "0 1 * * 0"
+ differential: "0 1 * * 1-6"
+ s3:
+ bucket: backup
+ endpoint: s3.icb4dc0.de
+ region: hel1
diff --git a/s3-csi/patches/daemonset.yaml b/s3-csi/patches/daemonset.yaml
index aed0d35..ceff4d7 100644
--- a/s3-csi/patches/daemonset.yaml
+++ b/s3-csi/patches/daemonset.yaml
@@ -5,7 +5,6 @@
cpu: 20m
memory: 15Mi
limits:
- cpu: 20m
memory: 15Mi
- op: add
path: "/spec/template/spec/containers/1/resources"
@@ -14,5 +13,4 @@
cpu: 100m
memory: 100Mi
limits:
- cpu: 100m
memory: 100Mi
diff --git a/snips/resources/statefulset.yaml b/snips/resources/statefulset.yaml
index d504d53..2f9721a 100644
--- a/snips/resources/statefulset.yaml
+++ b/snips/resources/statefulset.yaml
@@ -17,7 +17,14 @@ spec:
initContainers:
- name: init-litestream
image: litestream
- args: ['restore', '-replica=Garage', '-if-db-not-exists', '-if-replica-exists', '/data/snips.db']
+ args:
+ [
+ "restore",
+ "-replica=Garage",
+ "-if-db-not-exists",
+ "-if-replica-exists",
+ "/data/snips.db",
+ ]
env:
- name: LITESTREAM_ACCESS_KEY_ID
valueFrom:
@@ -76,7 +83,6 @@ spec:
periodSeconds: 5
resources:
limits:
- cpu: 100m
memory: 200Mi
requests:
cpu: 50m
@@ -95,7 +101,7 @@ spec:
readOnlyRootFilesystem: true
- name: litestream
image: litestream
- args: ['replicate']
+ args: ["replicate"]
volumeMounts:
- name: data
mountPath: /data
@@ -142,15 +148,15 @@ spec:
affinity:
podAntiAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
- - weight: 100
- podAffinityTerm:
- labelSelector:
- matchExpressions:
- - key: app.kubernetes.io/name
- operator: In
- values:
- - snips
- topologyKey: topology.kubernetes.io/zone
+ - weight: 100
+ podAffinityTerm:
+ labelSelector:
+ matchExpressions:
+ - key: app.kubernetes.io/name
+ operator: In
+ values:
+ - snips
+ topologyKey: topology.kubernetes.io/zone
volumes:
- name: data
emptyDir: {}
diff --git a/vaultwarden/resources/deployment.yaml b/vaultwarden/resources/deployment.yaml
index 4e1a86a..88893c3 100644
--- a/vaultwarden/resources/deployment.yaml
+++ b/vaultwarden/resources/deployment.yaml
@@ -30,7 +30,6 @@ spec:
resources:
limits:
memory: "128Mi"
- cpu: "500m"
ports:
- containerPort: 8080
volumeMounts:
diff --git a/vikunja/resources/api/deployment.yaml b/vikunja/resources/api/deployment.yaml
index 18aab14..8aa7179 100644
--- a/vikunja/resources/api/deployment.yaml
+++ b/vikunja/resources/api/deployment.yaml
@@ -51,7 +51,7 @@ spec:
resourceFieldRef:
resource: limits.memory
ports:
- - containerPort: 3456
+ - containerPort: 3456
securityContext:
allowPrivilegeEscalation: false
readOnlyRootFilesystem: true
@@ -65,7 +65,6 @@ spec:
cpu: 20m
limits:
memory: "100Mi"
- cpu: "50m"
volumeMounts:
- name: vikunja-config
mountPath: /etc/vikunja
diff --git a/vikunja/resources/api/dragonfly.yaml b/vikunja/resources/api/dragonfly.yaml
index d3cb1c4..70eba9a 100644
--- a/vikunja/resources/api/dragonfly.yaml
+++ b/vikunja/resources/api/dragonfly.yaml
@@ -16,5 +16,4 @@ spec:
cpu: 50m
memory: 50Mi
limits:
- cpu: 100m
memory: 350Mi
diff --git a/vikunja/resources/ui/deployment.yaml b/vikunja/resources/ui/deployment.yaml
index 6cabb66..fdc60a9 100644
--- a/vikunja/resources/ui/deployment.yaml
+++ b/vikunja/resources/ui/deployment.yaml
@@ -18,22 +18,21 @@ spec:
app.kubernetes.io/part-of: vikunja
spec:
containers:
- - name: vikunja-ui
- image: vikunja-ui
- env:
- - name: VIKUNJA_API_URL
- value: https://todo.icb4dc0.de/api/v1
- - name: VIKUNJA_HTTP_PORT
- value: "8080"
- resources:
- requests:
- memory: 15Mi
- cpu: 10m
- limits:
- memory: "50Mi"
- cpu: "50m"
- ports:
- - containerPort: 8080
+ - name: vikunja-ui
+ image: vikunja-ui
+ env:
+ - name: VIKUNJA_API_URL
+ value: https://todo.icb4dc0.de/api/v1
+ - name: VIKUNJA_HTTP_PORT
+ value: "8080"
+ resources:
+ requests:
+ memory: 15Mi
+ cpu: 10m
+ limits:
+ memory: "50Mi"
+ ports:
+ - containerPort: 8080
affinity:
nodeAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
diff --git a/zipline/resources/deployment.yaml b/zipline/resources/deployment.yaml
index 5412336..1193004 100644
--- a/zipline/resources/deployment.yaml
+++ b/zipline/resources/deployment.yaml
@@ -14,37 +14,36 @@ spec:
app.kubernetes.io/name: zipline
spec:
containers:
- - name: zipline
- image: zipline
- env:
- - name: CORE_DATABASE_URL
- valueFrom:
- secretKeyRef:
- name: db-credentials-zipline
- key: PQ_URL
- envFrom:
- - secretRef:
- name: zipline-config
- ports:
- - containerPort: 3000
- protocol: TCP
- name: web
- volumeMounts:
- - mountPath: /tmp
- name: temp
- resources:
- requests:
- memory: "256Mi"
- cpu: "50m"
- limits:
- memory: "512Mi"
- cpu: "500m"
- securityContext:
- allowPrivilegeEscalation: false
- capabilities:
- drop:
- - ALL
- readOnlyRootFilesystem: true
+ - name: zipline
+ image: zipline
+ env:
+ - name: CORE_DATABASE_URL
+ valueFrom:
+ secretKeyRef:
+ name: db-credentials-zipline
+ key: PQ_URL
+ envFrom:
+ - secretRef:
+ name: zipline-config
+ ports:
+ - containerPort: 3000
+ protocol: TCP
+ name: web
+ volumeMounts:
+ - mountPath: /tmp
+ name: temp
+ resources:
+ requests:
+ memory: "256Mi"
+ cpu: "50m"
+ limits:
+ memory: "512Mi"
+ securityContext:
+ allowPrivilegeEscalation: false
+ capabilities:
+ drop:
+ - ALL
+ readOnlyRootFilesystem: true
affinity:
nodeAffinity:
preferredDuringSchedulingIgnoredDuringExecution:
@@ -62,4 +61,4 @@ spec:
securityContext:
runAsUser: 1000
runAsGroup: 1000
- runAsNonRoot: true
\ No newline at end of file
+ runAsNonRoot: true