Plugin for Helm to integrate the sigstore ecosystem

Overview

helm-sigstore

Build Status

Plugin for Helm to integrate the sigstore ecosystem. Search, upload and verify signed Helm Charts in the Rekor Transparency Log.

Info

helm-sigstore is developed as part of the sigstore project.

We also use a slack channel! Click here for the invite link.

Installation

Use the following steps to build the helm-sigstore binary and install it as a Helm Plugin

Building

On a system with Go installed, execute the following to download the source and build the plugin

$ mkdir -p $GOPATH/src/github.com/sigstore
$ cd $GOPATH/src/github.com/sigstore
$ git clone https://github.com/sigstore/helm-sigstore.git
$ cd helm-sigstore

Build the plugin

$ make

The plugin binary will be available in the bin directory

Plugin Installation

Before installing helm-sigstore as a Helm plugin, ensure that Helm is installed and configured on your machine. Then install the plugin.

$ helm plugin install https://github.com/sigstore/helm-sigstore

Confirm the plugin is available in Helm

$ helm plugin list

NAME            VERSION         DESCRIPTION                                                                  
sigstore        0.1.0           This plugin integrates Helm into the Sigstore ecosystem.                     

With the installation complete and successful, the plugin can be invoked through the helm sigstore command

$ helm sigstore

Integrates sigstore with Helm

Usage:
  sigstore [command]
...

Quickstart

This brief example demonstrates how to upload a signed Helm chart to Rekor and validate the entry

Upload a Signed Helm Chart

$ helm sigstore upload <path_to_packaged_chart>

Created Helm entry at index 6821, available at: https://rekor.sigstore.dev/api/v1/log/entries/b30a142ef6c8b0480cd3e081fc99bc3d2a1a50ef60f68749c983a1479be6c4b9

NOTE: The provenance file must be located in the same directory as the packaged chart

Verify the Signed Chart from Rekor

Use the same signed Helm chart from the prior section to verify the entry in Rekor

helm sigstore verify <path_to_packaged_chart>
Chart Verified Successfully From Helm entry:

Rekor Server: https://rekor.sigstore.dev
Rekor Index: 6821
Rekor UUID: b30a142ef6c8b0480cd3e081fc99bc3d2a1a50ef60f68749c983a1479be6c4b9

See the Usage documentation for detailed explanations and additional options.

Security

Should you discover any security issues, please refer to sigstores security process

Comments
  • Bump github.com/sigstore/rekor from 0.11.0 to 0.12.2

    Bump github.com/sigstore/rekor from 0.11.0 to 0.12.2

    Bumps github.com/sigstore/rekor from 0.11.0 to 0.12.2.

    Release notes

    Sourced from github.com/sigstore/rekor's releases.

    v0.12.2

    What's Changed

    Full Changelog: https://github.com/sigstore/rekor/compare/v0.12.1...v0.12.2

    v0.12.1

    Highlights

    ** Rekor ** v0.12.1 comes with a breaking change to rekor-cli v0.12.1. Users of rekor-cli MUST upgrade to the latest version The addition of the intotov2 created a breaking change for the rekor-cli

    What's Changed

    New Contributors

    Full Changelog: https://github.com/sigstore/rekor/compare/v0.12.0...v0.12.1

    Thanks for all contributors!

    v0.12.0

    What's Changed

    ... (truncated)

    Changelog

    Sourced from github.com/sigstore/rekor's changelog.

    v0.12.2

    Enhancements

    • add changelog for 0.12.0 and 0.12.1 (#1064)
    • add description on /api/v1/index/retrieve endpoint (#1073)
    • Adding e2e test coverage (#1071)
    • export rekor build/version information (#1074)

    Bug Fixes

    • Search through all shards when searching by hash (#1082)
    • Use POST instead of GET for /api/log/entries/retrieve metrics (#1083)

    Contributors

    • Bob Callaway
    • Carlos Tadeu Panato Junior
    • Ceridwen Driskill
    • Simon Kent
    • Priya Wadhwa

    v0.12.1

    ** Rekor v0.12.1 comes with a breaking change to rekor-cli v0.12.1. Users of rekor-cli MUST upgrade to the latest version ** The addition of the intotov2 created a breaking change for the rekor-cli

    Enhancements

    Bug Fixes

    Contributors

    v0.12.0

    Enhancements

    ... (truncated)

    Commits
    • b2e7ec9 Update CHANGELOG.md for 0.12.2 release
    • 838f40b Search through all shards when searching by hash (#1082)
    • ca2dce6 Use POST instead of GET for /api/log/entries/retrieve metrics (#1083)
    • 204d9af Bump ossf/scorecard-action from 2.0.3 to 2.0.4 (#1081)
    • 1df8e51 Bump actions/github-script from 6.2.0 to 6.3.0 (#1079)
    • 6904cff Bump sigstore/cosign-installer from 2.6.0 to 2.7.0 (#1077)
    • 5ebde78 Bump actions/dependency-review-action from 2.3.0 to 2.4.0 (#1076)
    • 851ee7e Bump github.com/go-swagger/go-swagger in /hack/tools (#1078)
    • f3daebb export rekor build/version information (#1074)
    • f989b43 Adding e2e test coverage (#1071)
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies go 
    opened by dependabot[bot] 8
  • Security Policy violation Branch Protection

    Security Policy violation Branch Protection

    This issue was automatically created by Allstar.

    Security Policy Violation Dismiss stale reviews not configured for branch main Block force push not configured for branch main


    This issue will auto resolve when the policy is in compliance.

    Issue created by Allstar. See https://github.com/ossf/allstar/ for more information. For questions specific to the repository, please contact the owner or maintainer.

    allstar 
    opened by allstar-app[bot] 8
  • add arm64 to be downloaded when using helm plugin install

    add arm64 to be downloaded when using helm plugin install

    Summary

    add arm64 to be downloaded when using helm plugin install

    Ticket Link

    Fixes #34

    cc @strongjz

    Release Note

    add arm64 to be downloaded when using helm plugin install
    
    opened by cpanato 2
  • add goreleaser and update release job

    add goreleaser and update release job

    Summary

    • add goreleaser and update release job

    Ticket Link

    Fixes: https://github.com/sigstore/helm-sigstore/issues/26

    Release Note

    add goreleaser and update release job
    
    opened by cpanato 2
  • Bump github.com/go-openapi/strfmt from 0.20.1 to 0.20.3

    Bump github.com/go-openapi/strfmt from 0.20.1 to 0.20.3

    Bumps github.com/go-openapi/strfmt from 0.20.1 to 0.20.3.

    Commits
    • cdff709 Merge pull request #86 from dimovnike/85-bson-precision-loss
    • e143a57 issue-85: DateTime.MarshalBSONValue() was losing milliseconds
    • 583b813 Merge pull request #84 from dimovnike/83-objectid-hex
    • f9b2b7b issue-83: ObjectId.String() breaks swagger validation and CLI
    • See full diff in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies 
    opened by dependabot[bot] 2
  • Bump github.com/go-openapi/runtime from 0.19.29 to 0.20.0

    Bump github.com/go-openapi/runtime from 0.19.29 to 0.20.0

    Bumps github.com/go-openapi/runtime from 0.19.29 to 0.20.0.

    Commits
    • 2f6d5dc update github actions
    • f7fb72b Update go.mod
    • 2bc043c Merge pull request #216 from jkawamoto/215
    • b3931df Stop preparing the request if an error occurs
    • 715c788 Merge pull request #214 from jkawamoto/213
    • 6a7287f Avoid copying the whole file into RAM to detect its content type
    • e518b0a Merge pull request #212 from jsilland/julien/207-again
    • c83326f Adds support for query parameters in path patterns
    • d555223 Merge pull request #211 from germanhs/master
    • 4444a78 Merge branch 'master' into master
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies 
    opened by dependabot[bot] 2
  • Bump actions/checkout from 3.1.0 to 3.2.0

    Bump actions/checkout from 3.1.0 to 3.2.0

    Bumps actions/checkout from 3.1.0 to 3.2.0.

    Release notes

    Sourced from actions/checkout's releases.

    v3.2.0

    What's Changed

    New Contributors

    Full Changelog: https://github.com/actions/checkout/compare/v3...v3.2.0

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies github_actions 
    opened by dependabot[bot] 1
  • Bump github.com/sigstore/rekor from 0.11.0 to 0.12.1

    Bump github.com/sigstore/rekor from 0.11.0 to 0.12.1

    Bumps github.com/sigstore/rekor from 0.11.0 to 0.12.1.

    Release notes

    Sourced from github.com/sigstore/rekor's releases.

    v0.12.1

    What's Changed

    New Contributors

    Full Changelog: https://github.com/sigstore/rekor/compare/v0.12.0...v0.12.1

    Thanks for all contributors!

    v0.12.0

    What's Changed

    New Contributors

    Full Changelog: https://github.com/sigstore/rekor/compare/v0.11.0...v0.12.0

    Commits
    • 584bc16 Bump actions/dependency-review-action from 2.1.0 to 2.2.0 (#1063)
    • b2cd790 Bump codecov/codecov-action from 3.1.0 to 3.1.1 (#1061)
    • f27af35 Adds new rekor metrics for latency and QPS. (#1059)
    • 8260a79 Bump github.com/go-playground/validator/v10 from 10.11.0 to 10.11.1 (#1058)
    • 2d16546 Bump github/codeql-action from 2.1.23 to 2.1.24 (#1057)
    • 4bb6f44 feat: add file based signer and password (#1049)
    • f1b8bae Bump github/codeql-action from 2.1.22 to 2.1.23 (#1053)
    • 689924f Bump golang from 4c8f4b8 to 02f2932 (#1050)
    • e0853da fix: fix harness tests with intoto v0.0.2 (#1052)
    • e7dc6c5 Bump github.com/sigstore/sigstore from 1.4.0 to 1.4.1 (#1048)
    • Additional commits viewable in compare view

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies go 
    opened by dependabot[bot] 1
  • Bump github.com/sigstore/rekor from 0.11.0 to 0.12.0

    Bump github.com/sigstore/rekor from 0.11.0 to 0.12.0

    Bumps github.com/sigstore/rekor from 0.11.0 to 0.12.0.

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies go 
    opened by dependabot[bot] 1
  • Bump github.com/go-openapi/swag from 0.22.0 to 0.22.3

    Bump github.com/go-openapi/swag from 0.22.0 to 0.22.3

    Bumps github.com/go-openapi/swag from 0.22.0 to 0.22.3.

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies go 
    opened by dependabot[bot] 1
  • Bump github.com/go-openapi/swag from 0.22.0 to 0.22.1

    Bump github.com/go-openapi/swag from 0.22.0 to 0.22.1

    Bumps github.com/go-openapi/swag from 0.22.0 to 0.22.1.

    Commits

    Dependabot compatibility score

    Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


    Dependabot commands and options

    You can trigger Dependabot actions by commenting on this PR:

    • @dependabot rebase will rebase this PR
    • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
    • @dependabot merge will merge this PR after your CI passes on it
    • @dependabot squash and merge will squash and merge this PR after your CI passes on it
    • @dependabot cancel merge will cancel a previously requested merge and block automerging
    • @dependabot reopen will reopen this PR if it is closed
    • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
    • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
    • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    dependencies go 
    opened by dependabot[bot] 1
  • Use SLSA 3 Go Builder

    Use SLSA 3 Go Builder

    Closes #102

    Summary

    This PR replaces the old Go Releaser build to the SLSA 3 Go Builder which is based on Go Releaser.

    To also cover all the other important release artifacts other than the binary, such as SBOM and Signing Build, I've created SBOM using SYFT (same as the Go Releaser used to generate the SBOM). I've also generate provenance to the SBOM.

    To sign the binaries I've also used the sigstore cosign with keyless config.

    Here is an example of the release https://github.com/joycebrum/helm-sigstore/releases/tag/v1.0.17 and the action that created it https://github.com/joycebrum/helm-sigstore/actions/runs/3795159339

    Any doubts or concerns let me know.

    Release Note

    Updated build process to generate provenance in a trustful builder.

    Documentation

    Not necessary

    opened by joycebrum 2
  • Generate SLSA 3 Provenance

    Generate SLSA 3 Provenance

    Description

    Hi, I am Joyce, working on behalf of Google and the Open Source Security Foundation (OpenSSF) to help open source projects to improve their supply chain security.

    I would like to offer help to config helm-sigstore's builds to generate a SLSA Level 3 Provenance. The Supply chain Levels for Software Artifacts, or SLSA (salsa) aims to improve security in the build process, to do that it has defined 4 levels of build integrity.

    I would suggest, since it seems you already user goreleaser to build and release on github, to use the SLSA Go Builder which do the same as the goreleaser but also generates and sign the artifacts, besides being a Level 3 build process.

    Are you open to a PR with these changes?

    It could also contain changes on the README with:

    • A SLSA Level 3 badge
    • A brief paragraph to end-user know how to verify the artifact integrity using the provenance.
    enhancement 
    opened by joycebrum 2
  • deal with deprecation of x/crypto/openpgp

    deal with deprecation of x/crypto/openpgp

    Description

    Per https://github.com/golang/go/issues/44226 golang.org/x/crypto/openpgp is now frozen and deprecated. We should look to switch to a different implementation to ensure we stay up to date as best we can with this technology.

    similar to https://github.com/sigstore/rekor/issues/286

    enhancement help wanted dependencies 
    opened by cpanato 1
Releases(v0.1.7)
Owner
sigstore
software supply chain security
sigstore
kubectl plugin for signing Kubernetes manifest YAML files with sigstore

k8s-manifest-sigstore kubectl plugin for signing Kubernetes manifest YAML files with sigstore ⚠️ Still under developement, not ready for production us

sigstore 70 Nov 28, 2022
Helm Operator is designed to managed the full lifecycle of Helm charts with Kubernetes CRD resource.

Helm Operator Helm Operator is designed to install and manage Helm charts with Kubernetes CRD resource. Helm Operator does not create the Helm release

Chen Zhiwei 5 Aug 25, 2022
helm-lint-ls is helm lint language server protocol LSP.

helm-lint-ls is helm lint language server protocol LSP.

MrJosh 25 Dec 27, 2022
Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.

sigstore-scaffolding This repository contains scaffolding to make standing up a full sigstore stack easier and automatable. Our focus is on running on

Ville Aikas 40 Dec 27, 2022
A helm v3 plugin to get values from a previous release

helm-val helm-val is a helm plugin to fetch values from a previous release. Getting started Installation To install the plugin: $ helm plugin install

Hamza ZOUHAIR 15 Dec 11, 2022
Moby Project - a collaborative project for the container ecosystem to assemble container-based systems

The Moby Project Moby is an open-source project created by Docker to enable and accelerate software containerization. It provides a "Lego set" of tool

Moby 64.9k Jan 8, 2023
The Elastalert Operator is an implementation of a Kubernetes Operator, to easily integrate elastalert with gitops.

Elastalert Operator for Kubernetes The Elastalert Operator is an implementation of a Kubernetes Operator. Getting started Firstly, learn How to use el

null 20 Jun 28, 2022
🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their signatures

cosign-gatekeeper-provider To integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying i

sigstore 50 Dec 8, 2022
💧 Visual Data Preparation (VDP) is an open-source tool to seamlessly integrate Vision AI with the modern data stack

Website | Community | Blog Get Early Access Visual Data Preparation (VDP) is an open-source tool to streamline the end-to-end visual data processing p

Instill AI 646 Jan 5, 2023
Create changelogs for Helm Charts, based on git history

helm-changelog Create changelogs for Helm Charts, based on git history. The application depends on the assumption that the helm chart is released on t

Frederik Mogensen 37 Nov 27, 2022
Dredger is a utility to help convert helm charts to Terraform modules using kubernetes provider.

dredger Dredger is a utility to help convert helm charts to Terraform modules using kubernetes provider. Dredger is made of dark magic and cannot full

Synchronoss 14 Aug 25, 2022
Render helm values-files from others

helm-plugin-render-values The Helm downloader plugin with rendering templated values files Install Use helm CLI to install this plugin: $ helm plugin

Vivid Money 5 Aug 1, 2022
sail is an operation framework based on Ansible/Helm. sail follows the principles of Infrastructure as Code (IaC), Operation as Code (OaC), and Everything as Code. So it is a tool for DevOps.

sail 中文文档 sail is an operation framework based on Ansible/Helm. sail follows the principles of Infrastructure as Code (IaC), Operation as Code (OaC),a

Bougou Nisou 10 Dec 16, 2021
Creates Helm chart from Kubernetes yaml

Helmify CLI that creates Helm charts from kubernetes yamls. Helmify reads a list of supported k8s objects from stdin and converts it to a helm chart.

Artem 363 Dec 28, 2022
A best practices Go source project with unit-test and integration test, also use skaffold & helm to automate CI & CD at local to optimize development cycle

Dependencies Docker Go 1.17 MySQL 8.0.25 Bootstrap Run chmod +x start.sh if start.sh script does not have privileged to run Run ./start.sh --bootstrap

Quang Nguyen 4 Apr 4, 2022
The CLI tool glueing Git, Docker, Helm and Kubernetes with any CI system to implement CI/CD and Giterminism

___ werf is an Open Source CLI tool written in Go, designed to simplify and speed up the delivery of applications. To use it, you need to describe the

werf 3.4k Jan 4, 2023
Helm : a tool for managing Kubernetes charts

Helm Helm is a tool for managing Kubernetes charts. Charts are packages of pre-configured Kubernetes resources. Use Helm to: Find and use popular soft

null 0 Nov 30, 2021
Katenary - Convert docker-compose to a configurable helm chart

Katenary is a tool to help transforming docker-compose files to a working Helm C

Patrice Ferlet 40 Dec 23, 2022
Kubernetes Operator to automate Helm, DaemonSet, StatefulSet & Deployment updates

Keel - automated Kubernetes deployments for the rest of us Website https://keel.sh Slack - kubernetes.slack.com look for channel #keel Keel is a tool

Keel 2.1k Dec 28, 2022