FairwindsOps/nova

Kustomize Helm update tracking

Closed this issue · 2 comments

Would it be possible for Nova to scan Kustomize's kustomization.yaml helmCharts versions and notify if the chart version in there is outdata?

An example of such a kustomization.yaml implementing the Polaris helm chart is here:

https://github.com/HariSekhon/Kubernetes-configs/blob/master/polaris/base/kustomization.yaml

@sudermanjr @lucasreed any chance you could re-open and pin this?

I think it'd be a useful feature and the github actions workflow to close it was a bit aggressive.

Btw I worked around this for Kustomize Helm installations by using scripts to parse the Helm charts out of kustomization.yaml files and install them the old fashioned non-GitOps way with Helm to a temporary Kubernetes cluster inside CI/CD to avoid tampering with my real live stuff... and then run nova on that CI/CD temporary k8s cluster to find outdated chart versions since Nova only works on old fashioned Helm installations.

The CI/CD workflow is here:

https://github.com/HariSekhon/Kubernetes-configs/actions/workflows/kustomize-nova.yaml

which uses these scripts from my DevOps Bash tools repo:

https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/kubernetes/kustomize_install_helm_charts.sh

which uses this script:

https://github.com/HariSekhon/DevOps-Bash-tools/blob/master/kubernetes/kustomize_parse_helm_charts.sh