This repository aggregates hundreds of popular Kubernetes CRDs (CustomResourceDefinition) in JSON schema format. These schemas can be used by various tools such as Kubeconform as an alternative to kubectl --dry-run to perform validation on custom (and native) Kubernetes resources.
Running Kubernetes schema validation checks helps apply the "shift-left approach" on machines without giving them access to your cluster (e.g. locally or on CI).
This catalog is inspired by the CRDs-catalog from Datree, but instead uses a sources list to pull updates automatically and enables re-creation from these sources provided the source helm charts, uris, etc are still available.
kubeconform -schema-location default -schema-location 'https://raw.githubusercontent.com/CustomResourceDefinition/catalog/main/schema/{{.Group}}/{{.ResourceKind}}_{{.ResourceAPIVersion}}.json' [MANIFEST]You need to create a pull request with changes to the sources list using the methods below:
- Helm charts - the preferred method
- Git
- OCI charts
- Uris - when everything else fails
We prefer using the Helm charts method to avoid issues like needing to specify each release version with CRD changes or version history being unavailable.
Important
Please keep the configuration.yaml sorted by name.
To add CRDs for ArgoCD you should apply the following changes to configuration.yaml.
- entries:
- argo-cd
kind: helm
name: argo
repository: https://argoproj.github.io/argo-helmNote
Each repository should only be listed once in the file, if possible.
The name of a repository should be the name given by the developers, if possible.
Important
Always add the repository that the developers publish to directly and avoid aggregated helm chart repositories like Truechart etc.
If the above example already exists when you are trying to add Argo Rollouts. You should only add another chart entry to the existing repository entry, so the repository entry looks like the following.
- entries:
- argo-cd
- argo-rollouts
kind: helm
name: argo
repository: https://argoproj.github.io/argo-helmTo add CRDs for eks-anywhere you should apply the following changes to configuration.yaml.
- kind: git
kustomizationPaths: # paths to build kustomizations from (non-CRDs are discarded)
- config/crd
name: eks-anywhere
repository: https://github.com/aws/eks-anywhere
versionPrefix: v # by default only major.minor.patch tags are used, but a prefix can be set
# versionSuffix: # regex matching end of versions, by default matching $
# includeHead: true # by default the head branch is ignored and only published tags are used
# searchPaths: # paths to recursively find yaml files in (non-CRDs are discarded)
# - crdsImportant
Always use a https helm repository, if one is available.
To add CRDs for CrunchyData/postgres-operator you should apply the following changes to configuration.yaml.
- additionalVersions:
- 5.5.2
kind: helm-oci
name: crunchydata-pgo
repository: oci://registry.developers.crunchydata.com/crunchydata/pgoThe additionalVersions entry should be a list of previous versions that have old CRDs that should still be available. You should always add the current version to this list when initially adding a new chart.
To add CRDs for version 1.0.0 of the fictional Custom tool you should apply the following changes to configuration.yaml.
- apiGroups:
- custom.io
crds:
- baseUri: https://raw.githubusercontent.com/crds-r-us/custom/v1.0.0/chart/template/crds
paths:
- custom-crd.yaml
version: 1.0.0
kind: http
name: customNote
Each name should only be listed once in the file.
This entry should contain a complete list of unique value specified in the CRDs under the yaml path .spec.group.
Important
You should only ever append to this list.
Each release version that contains addition, changes or removal to CRDs must be listed separately in this list.
The baseUri combined with each entry in paths using the template ${baseUri}/${pathEntry} must be a URI to a manifest file that is publicly available. You can split the uris as you want, for instance to optimize for the longest common baseUri.
Tip
Each release version has their own baseUri and paths entries.