feat: remove Trivys own ns from the exclude list

Signed-off-by: Engin Diri <engin@pulumi.com>
aquasecurity · Dec 2, 2022 · 5b0f1e1 · 5b0f1e1
1 parent 6a48703
commit 5b0f1e1
Show file tree

Hide file tree

Showing 3 changed files with 3 additions and 3 deletions.
diff --git a/deploy/helm/templates/deployment.yaml b/deploy/helm/templates/deployment.yaml
@@ -38,7 +38,7 @@ spec:
             - name: OPERATOR_TARGET_NAMESPACES
               value: {{ .Values.targetNamespaces | quote }}
             - name: OPERATOR_EXCLUDE_NAMESPACES
-              value: {{ printf "%s,%s" (tpl .Values.excludeNamespaces .) (include "trivy-operator.namespace" . ) | quote }}
+              value: {{ .Values.excludeNamespaces | quote }}
             - name: OPERATOR_TARGET_WORKLOADS
               value: {{ tpl .Values.targetWorkloads . | quote }}
             - name: OPERATOR_SERVICE_ACCOUNT

diff --git a/deploy/static/trivy-operator.yaml b/deploy/static/trivy-operator.yaml
@@ -1437,7 +1437,7 @@ spec:
             - name: OPERATOR_TARGET_NAMESPACES
               value: ""
             - name: OPERATOR_EXCLUDE_NAMESPACES
-              value: ",trivy-system"
+              value: ""
             - name: OPERATOR_TARGET_WORKLOADS
               value: "pod,replicaset,replicationcontroller,statefulset,daemonset,cronjob,job"
             - name: OPERATOR_SERVICE_ACCOUNT

diff --git a/docs/operator/installation/olm.md b/docs/operator/installation/olm.md
@@ -47,7 +47,7 @@ configure it to watch the `default` namespaces:
      config:
        env:
        - name: OPERATOR_EXCLUDE_NAMESPACES
-        value: "kube-system,trivy-system"
+        value: "kube-system"
    EOF
    ```
    The operator will be installed in the `trivy-system` namespace and will select all namespaces, except