pre-commit-fluxcd

command module
v0.5.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Feb 19, 2024 License: MIT Imports: 3 Imported by: 0

README

Pre-Commit Hooks for FluxCD

A collection of Pre-Commit hooks for FluxCD GitOps repos.

Installation

Add the following snippet to .pre-commit-config.yaml.

hooks:
  - repo: https://github.com/gabe565/pre-commit-fluxcd
    rev: ''  # Use the sha / tag you want to point at
    hooks:
      - id: check-charts-pinned
      - id: check-charts-support-renovate
      - id: check-drift-detection-enabled
      - id: check-secrets-encrypted

Hooks

check-charts-pinned

This hook ensures HelmRelease Kubernetes manifests have a version pinned at .spec.chart.spec.version.

check-charts-support-renovate

Renovate will only update HelmRelease versions if the following conditions are satisfied:

  • The HelmRelease resource has metadata.namespace or spec.chart.spec.sourceRef.namespace set
  • The referenced HelmRepository has metadata.namespace set.

This hook ensures these conditions are satisfied.

check-drift-detection-enabled

This hook ensures HelmRelease manifests have drift detection enabled.

If you would like to allow warn mode, add the --allow-warn arg:

- id: check-drift-detection-enabled
  args:
    - --allow-warn
check-secrets-encrypted

This hook ensures .env files, and Secret Kubernetes manifests are encrypted using SOPS.

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
cmd
charts_pinned
charts_support_renovate
drift_detection
secrets_encrypted

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.