Update kube-prometheus-stack helm release values to configure
kube-state-metrics and use kube-state-metrics to collect gotk resource
state metrics.
- Configure kube-state-metrics to run in custom resource state only
mode. In this mode, it'll only watch custom resources. Also, pass
empty collectors as extra args to prevent passing all the core
resources to watch as an argument.
- Running kube-state-metrics in custom resource state only mode makes
the default grafana dashboards of no use. Disable the default
dashboards.
- Add kube-state-metrics configuration to provide RBAC permissions to it
to allow listing and watching flux CRDs.
- Also, configure custom resource state for each of the flux custom
resources using Info type metrics called `gotk_resource_info`. KSM
issues a warning if an Info type object doesn't have `_info` suffix.
These metrics have the value 1 always. This works well for the CRD
state metrics as a zero value would mean that the resource doesn't
exist, in which case, the resource is deleted.
- Update the cluster dashboard panels to use `gotk_resource_info` in the
queries.
- Only the following panels have been updated
- Cluster Reconcilers
- Failing Reconcilers
- Cluster reconciliation readiness
- Kubernetes Manifests Sources
- Failing Sources
- Source acquisition readiness
- The panels have been updated such that it's work with static
resources which don't have any status as well. By default, it assumes
such static resources to be in a Ready state. Resources are seen as
failed only when the ready value is false.
- The queries have been updated to Instant type in order to show the
current data, instead of the result of past 15 minutes. This shows
more accurate resource data as the resource metrics change.
- The Stat visualizers have been updated to have zero as the default
value when there's no data. This is to prevent showing no data when
there's no object. This was motivated by the behavior of the previous
configuration which depended on stale metrics from controllers and
deleted conditions to show zero value when objects get deleted. With
the fixes in the controller metrics that removes stale metrics, this
will no longer work. In order to show a zero value for these stats, a
default is set.
- The `$namespace` variable has been updated to refer to
`exported_namespace` from `gotk_resource_info`.
Signed-off-by: Sunny <darkowlzz@protonmail.com>
As availability may be limited in some edge cases.
When a job is for example running within a container, `openssl` is not
always available. However, when running on a macOS or Windows runner,
the actual opposite is true.
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
If implemented users will be able to use a local kustomization file while
retrieving status from the live kustomization file.
Signed-off-by: Soule BA <soule@weave.works>
Plus the verification of the SHA256 of the archive, as advertised in
the checksum file published together with the release.
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
This ensures `jq` can properly parse the given `ARTIFACTS` JSON blob,
as it contains escaped newlines in for example the Brew formula.
This should address the issue with the generation of SLSA metadata.
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
This lacks documentation for the Terraform provider repository, which
is a higher level component than anything documented here.
Signed-off-by: Hidde Beydals <hidde@hhh.computer>
Co-authored-by: Max Jonas Werner <makkes@users.noreply.github.com>
Co-authored-by: Aurel Canciu <aurelcanciu@gmail.com>
Signed-off-by: Stefan Prodan <stefan.prodan@gmail.com>
Sunny
Stefan Prodan
dependabot[bot]
Hidde Beydals
Hidde Beydals
souleb
fluxcdbot