Severity Policy Dashboard

Signed-off-by: Frank Jogeleit <frank.jogeleit@web.de>
kyverno · Aug 22, 2024 · e3547bc · e3547bc
1 parent 470ea67
commit e3547bc
Show file tree

Hide file tree

Showing 3 changed files with 10 additions and 24 deletions.
diff --git a/charts/policy-reporter/Chart.yaml b/charts/policy-reporter/Chart.yaml
@@ -5,7 +5,7 @@ description: |
   It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
 
 type: application
-version: 3.0.0-beta.2
+version: 3.0.0-beta.3
 appVersion: 3.0.0-beta
 
 icon: https://github.com/kyverno/kyverno/raw/main/img/logo.png

diff --git a/charts/policy-reporter/README.md b/charts/policy-reporter/README.md
@@ -3,7 +3,7 @@
 Policy Reporter watches for PolicyReport Resources.
 It creates Prometheus Metrics and can send rule validation events to different targets like Loki, Elasticsearch, Slack or Discord
 
-![Version: 3.0.0-beta.2](https://img.shields.io/badge/Version-3.0.0--beta.2-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 3.0.0-beta](https://img.shields.io/badge/AppVersion-3.0.0--beta-informational?style=flat-square)
+![Version: 3.0.0-beta.3](https://img.shields.io/badge/Version-3.0.0--beta.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 3.0.0-beta](https://img.shields.io/badge/AppVersion-3.0.0--beta-informational?style=flat-square)
 
 ## Documentation
 
@@ -56,7 +56,7 @@ Check the [Documentation](https://kyverno.github.io/policy-reporter/guide/02-get
 | image.registry | string | `"ghcr.io"` |  |
 | image.repository | string | `"kyverno/policy-reporter"` |  |
 | image.pullPolicy | string | `"IfNotPresent"` |  |
-| image.tag | string | `"56386a3"` |  |
+| image.tag | string | `"470ea67"` |  |
 | imagePullSecrets | list | `[]` |  |
 | priorityClassName | string | `""` |  |
 | replicaCount | int | `1` |  |
@@ -350,7 +350,7 @@ Check the [Documentation](https://kyverno.github.io/policy-reporter/guide/02-get
 | ui.image.registry | string | `"ghcr.io"` | Image registry |
 | ui.image.repository | string | `"kyverno/policy-reporter-ui"` | Image repository |
 | ui.image.pullPolicy | string | `"IfNotPresent"` | Image PullPolicy |
-| ui.image.tag | string | `"2.0.0-beta.2"` | Image tag Defaults to `Chart.AppVersion` if omitted |
+| ui.image.tag | string | `"2.0.0-beta.4"` | Image tag Defaults to `Chart.AppVersion` if omitted |
 | ui.replicaCount | int | `1` | Deployment replica count |
 | ui.tempDir | string | `"/tmp"` | Temporary Directory to persist session data for authentication |
 | ui.logging.encoding | string | `"console"` | log encoding possible encodings are console and json |
@@ -374,10 +374,11 @@ Check the [Documentation](https://kyverno.github.io/policy-reporter/guide/02-get
 | ui.oauth.secretRef | string | `""` | Provide OpenID Connect configuration via Secret supported keys: `provider`, `clientId`, `clientSecret` |
 | ui.displayMode | string | `""` | DisplayMode dark/light uses the OS configured prefered color scheme as default |
 | ui.customBoards | list | `[]` | Additional customizable dashboards |
-| ui.sources | list | `[{"exceptions":false,"excludes":{"results":["warn","error"]},"name":"kyverno"}]` | source specific configurations |
-| ui.sources[0] | object | `{"exceptions":false,"excludes":{"results":["warn","error"]},"name":"kyverno"}` | kyverno specific UI confiurations |
+| ui.sources | list | `[{"chartType":"result","exceptions":false,"excludes":{"results":["warn","error"]},"name":"kyverno"}]` | source specific configurations |
+| ui.sources[0] | object | `{"chartType":"result","exceptions":false,"excludes":{"results":["warn","error"]},"name":"kyverno"}` | kyverno specific UI confiurations |
+| ui.sources[0].chartType | string | `"result"` | show results per category, other option: severity |
 | ui.sources[0].exceptions | bool | `false` | enabled action button to generate PolicyExceptions from the UI |
-| ui.sources[0].excludes | object | `{"results":["warn","error"]}` | exclude Pod, Job and Replica resources from kyverno results by default if no kinds are specified |
+| ui.sources[0].excludes | object | `{"results":["warn","error"]}` | exclude results or (cluster)kinds per source |
 | ui.clusters | list | `[{"name":"Default","secretRef":"policy-report-ui-default-cluster"}]` | Connected Policy Reporter APIs |
 | ui.imagePullSecrets | list | `[]` | Image pull secrets for image verification policies, this will define the `--imagePullSecrets` argument |
 | ui.serviceAccount.create | bool | `true` | Create ServiceAccount |

diff --git a/charts/policy-reporter/values.yaml b/charts/policy-reporter/values.yaml
@@ -11,7 +11,7 @@ image:
   registry: ghcr.io
   repository: kyverno/policy-reporter
   pullPolicy: IfNotPresent
-  tag: 56386a3
+  tag: 470ea67
 
 imagePullSecrets: []
 
@@ -757,7 +757,7 @@ ui:
     pullPolicy: IfNotPresent
       # -- (string) Image tag
       # Defaults to `Chart.AppVersion` if omitted
-    tag: "2.0.0-beta.2"
+    tag: "2.0.0-beta.4"
 
   # -- Deployment replica count
   replicaCount: 1
@@ -850,21 +850,6 @@ ui:
         - warn
         - error
 
-    - name: Trivy ConfigAudit
-      chartType: severity
-      excludes:
-        results:
-        - pass
-        - error
-
-    - name: Trivy Vulnerability
-      chartType: severity
-      excludes:
-        results:
-        - pass
-        - error
-
-
   # -- Connected Policy Reporter APIs
   clusters:
   - name: Default