-
Notifications
You must be signed in to change notification settings - Fork 22
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
refactor: provider configuration (#388)
* refactor: provider config * fix: using provider enum * refactor: use struct tags for unmarshaling * fix: wording for config validation errors
- Loading branch information
1 parent
d594f99
commit fbd40fd
Showing
11 changed files
with
308 additions
and
96 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,46 @@ | ||
# Configuration | ||
|
||
## Orchestrator | ||
|
||
| Environment Variable | Required | Default | Description | | ||
|-------------------------------------------|-----------|---------|----------------------------------------------| | ||
| `DELETE_JOB_POLICY` | | | | | ||
| `SCANNER_CONTAINER_IMAGE` | | | | | ||
| `GITLEAKS_BINARY_PATH` | | | | | ||
| `CLAM_BINARY_PATHCLAM_BINARY_PATH` | | | | | ||
| `FRESHCLAM_BINARY_PATH` | | | | | ||
| `ALTERNATIVE_FRESHCLAM_MIRROR_URL` | | | | | ||
| `LYNIS_INSTALL_PATH` | | | | | ||
| `SCANNER_VMCLARITY_BACKEND_ADDRESS` | | | | | ||
| `EXPLOIT_DB_ADDRESS` | | | | | ||
| `TRIVY_SERVER_ADDRESS` | | | | | ||
| `TRIVY_SERVER_TIMEOUT` | | | | | ||
| `GRYPE_SERVER_ADDRESS` | | | | | ||
| `GRYPE_SERVER_TIMEOUT` | | | | | ||
| `CHKROOTKIT_BINARY_PATH` | | | | | ||
| `SCAN_CONFIG_POLLING_INTERVAL` | | | | | ||
| `SCAN_CONFIG_RECONCILE_TIMEOUT` | | | | | ||
| `SCAN_POLLING_INTERVAL` | | | | | ||
| `SCAN_RECONCILE_TIMEOUT` | | | | | ||
| `SCAN_TIMEOUT` | | | | | ||
| `SCAN_RESULT_POLLING_INTERVAL` | | | | | ||
| `SCAN_RESULT_RECONCILE_TIMEOUT` | | | | | ||
| `SCAN_RESULT_PROCESSOR_POLLING_INTERVAL` | | | | | ||
| `SCAN_RESULT_PROCESSOR_RECONCILE_TIMEOUT` | | | | | ||
| `DISCOVERY_INTERVAL` | | | | | ||
| `CONTROLLER_STARTUP_DELAY` | | | | | ||
| `PROVIDER` | **yes** | `aws` | Provider used for Target discovery and scans | | ||
|
||
## Provider | ||
|
||
### AWS | ||
|
||
| Environment Variable | Required | Default | Description | | ||
|----------------------------------------|----------|--------------|-------------------------------------------------------------------------------| | ||
| `VMCLARITY_AWS_REGION` | **yes** | | Region where the Scanner instance needs to be created | | ||
| `VMCLARITY_AWS_SUBNET_ID` | **yes** | | SubnetID where the Scanner instance needs to be created | | ||
| `VMCLARITY_AWS_SECURITY_GROUP_ID` | **yes** | | SecurityGroupId which needs to be attached to the Scanner instance | | ||
| `VMCLARITY_AWS_KEYPAIR_NAME` | | | Name of the SSH KeyPair to use for Scanner instance launch | | ||
| `VMCLARITY_AWS_SCANNER_AMI_ID` | **yes** | | The AMI image used for creating Scanner instance | | ||
| `VMCLARITY_AWS_SCANNER_INSTANCE_TYPE` | | `t2.large` | The instance type used for Scanner instance | | ||
| `VMCLARITY_AWS_BLOCK_DEVICE_NAME` | | `xvdh` | Block device name used for attaching Scanner volume to the Scanner instance | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Oops, something went wrong.