diff --git a/helm-charts/falcon-image-analyzer/Chart.yaml b/helm-charts/falcon-image-analyzer/Chart.yaml index 1d49002b..f6bd46d6 100644 --- a/helm-charts/falcon-image-analyzer/Chart.yaml +++ b/helm-charts/falcon-image-analyzer/Chart.yaml @@ -15,10 +15,10 @@ type: application # This is the chart version. This version number should be incremented each time you make changes # to the chart and its templates, including the app version. # Versions are expected to follow Semantic Versioning (https://semver.org/) -version: 1.1.6 +version: 1.1.7 # This is the version number of the application being deployed. This version number should be # incremented each time you make changes to the application. Versions are not expected to # follow Semantic Versioning. They should reflect the version the application is using. # It is recommended to use it with quotes. -appVersion: "1.0.11" +appVersion: "1.0.12" diff --git a/helm-charts/falcon-image-analyzer/README.md b/helm-charts/falcon-image-analyzer/README.md index b3be62c1..00080a27 100644 --- a/helm-charts/falcon-image-analyzer/README.md +++ b/helm-charts/falcon-image-analyzer/README.md @@ -15,9 +15,11 @@ The Falcon Image Analyzer Helm chart has been tested to deploy on the following * SUSE Rancher K3s * Red Hat OpenShift Kubernetes -## New updates in current release (1.1.5) -- Adding a way to specify `priorityClassName` for pod. Image Support `1.0.11` -- Configure securityContexts for deployments. Image Support requires version `1.0.11` +## New updates in current release (1.1.7) +- Adding a way to specify log output terminal `log/output:` . Image Support `1.0.12` +use this field to set the output terminal of logs +`1` = stdout ( some cloud providers like GCP assume any output on stderr to be critical err and display on console ) . +`2` = stderr/default ( stderr is the normal output for logs ) . Any other value will be defaulted to stderr ## Dependencies @@ -57,6 +59,7 @@ The following tables list the Falcon sensor configurable parameters and their de | `gcp.enabled` optional | Set to `true` if cluster is Gogle GKE or self-managed on Google Cloud GCP nodes. | false | | `exclusions.namespace` optional ( available in falcon-imageanalyzer >= 1.0.8 and Helm Chart v >= 1.1.3) | Set the value as a comma separate list of namespaces to be excluded. all pods in that namespace(s) will be excluded | "" | | `exclusions.registry` optional ( available in falcon-imageanalyzer >= 1.0.8 and Helm Chart v >= 1.1.3) | Set the value as a comma separate list of registries to be excluded. all images in that registry(s) will be excluded | "" | +| `log.output` optional ( available Helm Chart v >= 1.1.7 & falcon-imageanalyzer >= 1.0.12) | Set the value to for log output terminal. `2=stderr` and `1=stdout` | 2 ( stderr ) | | `crowdstrikeConfig.clusterName` required | Cluster name | None | | `crowdstrikeConfig.enableDebug` optional | Set to `true` for debug level log verbosity. | false | | `crowdstrikeConfig.clientID` required | CrowdStrike Falcon OAuth API Client ID | None | diff --git a/helm-charts/falcon-image-analyzer/templates/configmap.yaml b/helm-charts/falcon-image-analyzer/templates/configmap.yaml index d95d5eb2..f070da75 100644 --- a/helm-charts/falcon-image-analyzer/templates/configmap.yaml +++ b/helm-charts/falcon-image-analyzer/templates/configmap.yaml @@ -7,6 +7,7 @@ metadata: {{- include "falcon-image-analyzer.labels" . | nindent 4 }} data: IS_KUBERNETES: {{ .Values.isKubernetes | quote }} + LOG_OUTPUT: {{ .Values.log.output | quote }} AGENT_CID: {{ .Values.crowdstrikeConfig.cid | quote }} AGENT_CLUSTER_NAME: {{ .Values.crowdstrikeConfig.clusterName | quote }} AGENT_REGISTRY_CREDENTIALS: {{ .Values.privateRegistries.credentials | quote }} diff --git a/helm-charts/falcon-image-analyzer/values.yaml b/helm-charts/falcon-image-analyzer/values.yaml index dcf0b972..e940099d 100644 --- a/helm-charts/falcon-image-analyzer/values.yaml +++ b/helm-charts/falcon-image-analyzer/values.yaml @@ -133,6 +133,16 @@ volumes: emptyDir: sizeLimit: 20Gi + +# use this field to set the output terminal of logs +# 1 = stdout ( some cloud providers like GCP assume any output on stderr to be critical err and display on console ) . +# 2 = stderr/default ( stderr is the normal output for logs ) +# any other value will be defaulted to stderr +# https://stackoverflow.com/questions/4919093/should-i-log-messages-to-stderr-or-stdout/4919110#4919110 ) + +log: + output: 2 + crowdstrikeConfig: clusterName: "" enableDebug: "false"