Giter Site home page Giter Site logo

test's Introduction

Unicorn Delivery Service - Core (UDS Core)

UDS Core establishes a secure baseline for cloud-native systems and ships with compliance documentation and first-class support for airgap/egress-limited systems. Based on the work of Platform One, UDS Core expands on the security posture of Big Bang while providing advanced automation with the UDS Operator and UDS Policy Engine. UDS Core is a collection of several individual applications combined into a single Zarf package and we recommend using UDS CLI to deploy it as a UDS Bundle.

tl;dr - try it now

Core Applications

Future Applications

  • Kiali - Service Mesh Observability
  • Tempo - Tracing

Prerequisites

Using UDS Core in Production

While the UDS Bundles published by this repo can be used for dev and test environments and include a K3d cluster, UDS Core also publishes a UDS Package that is intended to be used in your own UDS Bundle. You can use the k3d-core-demo bundle as an example.

Quickstart, Dev & Test Environments

UDS Core publishes bundles you can use for trying out UDS Core or for UDS Package development where you only need part of UDS Core. These bundles leverage UDS K3d to create a local k3d cluster with tools installed to emulate a cloud environment.

Note

These UDS Bundles are intended for dev and test environments and should not be used for production. They also serve as examples to create custom bundles.

Quickstart

If you want to try out UDS Core, you can use the k3d-core-demo bundle to create a local k3d cluster with UDS Core installed by running the following command:

uds deploy k3d-core-demo:0.21.1

UDS Package Development

In addition to the demo bundle, a k3d-slim-dev bundle also exists to work with UDS Core with only Istio, Keycloak & Pepr installed. Run the command below to use it.

Deploy Istio, Keycloak and Pepr:

uds deploy k3d-core-slim-dev:0.21.1

Developing UDS Core

UDS Core development leverages the uds zarf dev deploy command. For convenience, a UDS Task is provided to setup the environment. You'll need to have NodeJS 20 or later installed to continue. Here's an example of a flow developing the metrics-server package:

# Create the dev environment
uds run dev-setup

# If developing the Pepr module:
npx pepr dev

# If not developing the Pepr module (can be run multiple times):
npx pepr deploy

# Deploy the package (can be run multiple times)
uds run dev-deploy --set PKG=metrics-server

Testing UDS Core

You can perform a complete test of UDS Core by running the following command:

uds run test-uds-core

This will create a local k3d cluster, install UDS Core, and run a series of tests against it, the same tests that are run in CI. If you want to run the tests against a specific package, you can use the PKG env variable. The following example runs the tests against the metrics-server package:

UDS_PKG=metrics-server uds run test-single-package

Note you can specify the --set FLAVOR=registry1 flag to test using Iron Bank images instead of the upstream images.

test's People

Contributors

mjnagel avatar

Watchers

avatar

test's Issues

Dependency Dashboard

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Open

These updates have all been created already. Click a checkbox below to force a retry/rebase of any.

Detected dependencies

helm-values
src/authservice/chart/values.yaml
src/authservice/values/registry1-values.yaml
  • registry1.dso.mil/ironbank/istio-ecosystem/authservice 0.5.3
src/authservice/values/upstream-values.yaml
  • ghcr.io/istio-ecosystem/authservice/authservice 0.5.3
src/grafana/values/registry1-values.yaml
  • registry1.dso.mil/ironbank/opensource/grafana/grafana 10.4.2
  • registry1.dso.mil/ironbank/redhat/ubi/ubi9-minimal 9.3
  • registry1.dso.mil/ironbank/redhat/ubi/ubi9-minimal 9.3
  • registry1.dso.mil/ironbank/kiwigrid/k8s-sidecar 1.26.1
src/grafana/values/upstream-values.yaml
  • ghcr.io/kiwigrid/k8s-sidecar 1.26.1
  • docker.io/grafana/grafana 10.4.2
  • docker.io/library/busybox 1.36.1
  • docker.io/curlimages/curl 8.7.1
src/istio/values/registry1-values.yaml
  • registry1.dso.mil/ironbank/tetrate/istio/pilot 1.21.2-tetratefips-v0
  • registry1.dso.mil/ironbank/tetrate/istio/proxyv2 1.21.2-tetratefips-v0
  • registry1.dso.mil/ironbank/tetrate/istio/proxyv2 1.21.2-tetratefips-v0
src/istio/values/upstream-values.yaml
  • docker.io/istio/pilot 1.21.2-distroless
  • docker.io/istio/proxyv2 1.21.2-distroless
  • docker.io/istio/proxyv2 1.21.2-distroless
src/keycloak/chart/values.yaml
  • quay.io/keycloak/keycloak 24.0.4
  • ghcr.io/defenseunicorns/uds/identity-config 0.4.3
src/keycloak/values/registry1-values.yaml
  • registry1.dso.mil/ironbank/opensource/keycloak/keycloak 24.0.4
src/keycloak/values/upstream-values.yaml
  • quay.io/keycloak/keycloak 24.0.4
src/loki/values/registry1-values.yaml
  • registry1.dso.mil/ironbank/opensource/grafana/loki 2.9.6
  • registry1.dso.mil/ironbank/opensource/nginx/nginx-alpine 1.25.3
src/loki/values/upstream-values.yaml
  • docker.io/grafana/loki 2.9.6
  • docker.io/nginxinc/nginx-unprivileged 1.25-alpine
src/metrics-server/values/registry1-values.yaml
  • registry1.dso.mil/ironbank/opensource/kubernetes-sigs/metrics-server v0.7.1
src/metrics-server/values/upstream-values.yaml
  • registry.k8s.io/metrics-server/metrics-server v0.7.1
src/prometheus-stack/values/registry1-values.yaml
  • registry1.dso.mil/ironbank/opensource/prometheus/alertmanager v0.27.0
  • registry1.dso.mil/ironbank/opensource/kubernetes/kube-state-metrics v2.12.0
  • registry1.dso.mil/ironbank/opensource/prometheus/prometheus v2.51.2
  • registry1.dso.mil/ironbank/opensource/prometheus/node-exporter v1.8.0
  • registry1.dso.mil/ironbank/opensource/ingress-nginx/kube-webhook-certgen v1.3.0
  • registry1.dso.mil/ironbank/opensource/prometheus-operator/prometheus-operator v0.73.2
  • registry1.dso.mil/ironbank/opensource/prometheus-operator/prometheus-config-reloader v0.73.2
src/prometheus-stack/values/upstream-values.yaml
  • quay.io/prometheus/alertmanager v0.27.0
  • registry.k8s.io/kube-state-metrics/kube-state-metrics v2.12.0
  • quay.io/prometheus/prometheus v2.51.2
  • quay.io/prometheus/node-exporter v1.8.0
  • registry.k8s.io/ingress-nginx/kube-webhook-certgen v20221220-controller-v1.5.1-58-g787ea74b6
  • quay.io/prometheus-operator/prometheus-operator v0.73.2
  • quay.io/prometheus-operator/prometheus-config-reloader v0.73.2
src/promtail/values/registry1-values.yaml
  • registry1.dso.mil/ironbank/opensource/grafana/promtail v2.9.6
  • registry1.dso.mil/ironbank/opensource/jimmidyson/configmap-reload v0.12.0
src/promtail/values/upstream-values.yaml
  • docker.io/grafana/promtail 2.9.6
  • ghcr.io/jimmidyson/configmap-reload v0.12.0
src/test/app-admin.yaml
src/test/app-tenant.yaml
src/velero/values/registry1-values.yaml
  • registry1.dso.mil/ironbank/opensource/velero/velero v1.13.2
  • registry1.dso.mil/ironbank/big-bang/base 2.1.0
  • registry1.dso.mil/ironbank/opensource/velero/velero-plugin-for-aws v1.9.2
src/velero/values/upstream-values.yaml
  • velero/velero v1.13.2
  • docker.io/bitnami/kubectl 1.30.0
  • velero/velero-plugin-for-aws v1.9.2
kubernetes
src/authservice/chart/templates/deployment.yaml
  • Deployment apps/v1
src/authservice/chart/templates/hpa.yaml
  • HorizontalPodAutoscaler autoscaling/v2
src/keycloak/chart/templates/hpa.yaml
  • HorizontalPodAutoscaler autoscaling/v2
src/keycloak/chart/templates/poddisruptionbudget.yaml
  • PodDisruptionBudget policy/v1
src/keycloak/chart/templates/statefulset.yaml
  • StatefulSet apps/v1
src/test/app-admin.yaml
  • Deployment apps/v1
src/test/app-tenant.yaml
  • Deployment apps/v1
npm
package.json
  • pepr 0.29.2
  • @jest/globals 29.7.0
  • jest 29.7.0
  • ts-jest 29.1.2
  • node >=20.0.0
regex
.vscode/settings.json
  • defenseunicorns/uds-cli v0.10.4
  • defenseunicorns/uds-cli v0.10.4
  • defenseunicorns/uds-cli v0.10.4
src/grafana/oscal-component.yaml
  • GSA/fedramp-automation 93ca0e20ff5e54fc04140613476fba80f08e3c7d
src/istio/oscal-component.yaml
  • GSA/fedramp-automation 93ca0e20ff5e54fc04140613476fba80f08e3c7d
src/keycloak/tasks.yaml
  • defenseunicorns/uds-identity-config v0.4.3
src/loki/oscal-component.yaml
  • GSA/fedramp-automation 93ca0e20ff5e54fc04140613476fba80f08e3c7d
src/neuvector/oscal-component.yaml
  • GSA/fedramp-automation 93ca0e20ff5e54fc04140613476fba80f08e3c7d
src/prometheus-stack/oscal-component.yaml
  • GSA/fedramp-automation 93ca0e20ff5e54fc04140613476fba80f08e3c7d
src/promtail/oscal-component.yaml
  • GSA/fedramp-automation 93ca0e20ff5e54fc04140613476fba80f08e3c7d
src/velero/oscal-component.yaml
tasks.yaml
  • defenseunicorns/uds-common v0.3.6
tasks/create.yaml
  • defenseunicorns/uds-common v0.3.11
bundles/k3d-slim-dev/uds-bundle.yaml
  • defenseunicorns/uds-k3d 0.6.0
  • defenseunicorns/zarf v0.33.2
bundles/k3d-standard/uds-bundle.yaml
  • defenseunicorns/uds-k3d 0.6.0
  • defenseunicorns/zarf v0.33.2
src/keycloak/chart/Chart.yaml
  • quay.io/keycloak/keycloak 24.0.4
src/keycloak/chart/values.yaml
  • defenseunicorns/uds-identity-config 0.4.3
src/keycloak/common/zarf.yaml
  • quay.io/keycloak/keycloak 24.0.4
tasks/create.yaml
  • registry1.dso.mil/ironbank/opensource/defenseunicorns/pepr/controller v0.29.2
tasks/setup.yaml
  • defenseunicorns/uds-k3d 0.5.0
  • defenseunicorns/zarf v0.33.2
src/authservice/zarf.yaml
  • ghcr.io/istio-ecosystem/authservice/authservice 0.5.3
  • registry1.dso.mil/ironbank/istio-ecosystem/authservice 0.5.3
src/grafana/zarf.yaml
  • docker.io/grafana/grafana 10.4.2
  • docker.io/curlimages/curl 8.7.1
  • docker.io/library/busybox 1.36.1
  • ghcr.io/kiwigrid/k8s-sidecar 1.26.1
  • registry1.dso.mil/ironbank/opensource/grafana/grafana 10.4.2
  • registry1.dso.mil/ironbank/redhat/ubi/ubi9-minimal 9.3
  • registry1.dso.mil/ironbank/kiwigrid/k8s-sidecar 1.26.1
src/istio/zarf.yaml
  • docker.io/istio/pilot 1.21.2-distroless
  • docker.io/istio/proxyv2 1.21.2-distroless
  • registry1.dso.mil/ironbank/tetrate/istio/proxyv2 1.21.2-tetratefips-v0
  • registry1.dso.mil/ironbank/tetrate/istio/pilot 1.21.2-tetratefips-v0
src/keycloak/zarf.yaml
  • quay.io/keycloak/keycloak 24.0.4
  • ghcr.io/defenseunicorns/uds/identity-config 0.4.3
  • registry1.dso.mil/ironbank/opensource/keycloak/keycloak 24.0.4
  • ghcr.io/defenseunicorns/uds/identity-config 0.4.3
src/loki/zarf.yaml
  • docker.io/grafana/loki 2.9.6
  • docker.io/nginxinc/nginx-unprivileged 1.25-alpine
  • registry1.dso.mil/ironbank/opensource/grafana/loki 2.9.6
  • registry1.dso.mil/ironbank/opensource/nginx/nginx-alpine 1.25.3
src/metrics-server/zarf.yaml
  • registry.k8s.io/metrics-server/metrics-server v0.7.1
  • registry1.dso.mil/ironbank/opensource/kubernetes-sigs/metrics-server v0.7.1
src/neuvector/zarf.yaml
  • docker.io/neuvector/controller 5.3.2
  • docker.io/neuvector/manager 5.3.2
  • docker.io/neuvector/enforcer 5.3.2
  • docker.io/neuvector/prometheus-exporter 5.3.2
  • registry1.dso.mil/ironbank/neuvector/neuvector/controller 5.3.2
  • registry1.dso.mil/ironbank/neuvector/neuvector/manager 5.3.2
  • registry1.dso.mil/ironbank/redhat/ubi/ubi9-minimal 9.4
  • registry1.dso.mil/ironbank/neuvector/neuvector/scanner 5
  • registry1.dso.mil/ironbank/neuvector/neuvector/enforcer 5.3.2
  • registry1.dso.mil/ironbank/neuvector/neuvector/prometheus-exporter 5.3.2
src/prometheus-stack/zarf.yaml
  • quay.io/prometheus/node-exporter v1.8.0
  • quay.io/prometheus-operator/prometheus-operator v0.73.2
  • registry.k8s.io/kube-state-metrics/kube-state-metrics v2.12.0
  • quay.io/prometheus/alertmanager v0.27.0
  • quay.io/prometheus-operator/prometheus-config-reloader v0.73.2
  • quay.io/prometheus/prometheus v2.51.2
  • registry.k8s.io/ingress-nginx/kube-webhook-certgen v20221220-controller-v1.5.1-58-g787ea74b6
  • registry1.dso.mil/ironbank/opensource/prometheus/node-exporter v1.8.0
  • registry1.dso.mil/ironbank/opensource/prometheus-operator/prometheus-operator v0.73.2
  • registry1.dso.mil/ironbank/opensource/kubernetes/kube-state-metrics v2.12.0
  • registry1.dso.mil/ironbank/opensource/prometheus/alertmanager v0.27.0
  • registry1.dso.mil/ironbank/opensource/prometheus-operator/prometheus-config-reloader v0.73.2
  • registry1.dso.mil/ironbank/opensource/prometheus/prometheus v2.51.2
  • registry1.dso.mil/ironbank/opensource/ingress-nginx/kube-webhook-certgen v1.3.0
src/promtail/zarf.yaml
  • ghcr.io/jimmidyson/configmap-reload v0.12.0
  • docker.io/grafana/promtail 2.9.6
  • registry1.dso.mil/ironbank/opensource/jimmidyson/configmap-reload v0.12.0
  • registry1.dso.mil/ironbank/opensource/grafana/promtail v2.9.6
src/velero/zarf.yaml
  • velero/velero v1.13.2
  • velero/velero-plugin-for-aws v1.9.2
  • docker.io/bitnami/kubectl 1.30.0
  • registry1.dso.mil/ironbank/opensource/velero/velero v1.13.2
  • registry1.dso.mil/ironbank/opensource/velero/velero-plugin-for-aws v1.9.2
  • registry1.dso.mil/ironbank/big-bang/base 2.1.0
src/grafana/common/zarf.yaml
  • grafana 7.3.9
src/istio/common/zarf.yaml
  • base 1.21.2
  • istiod 1.21.2
src/istio/zarf.yaml
  • gateway 1.21.2
  • gateway 1.21.2
  • gateway 1.21.2
src/loki/common/zarf.yaml
  • loki 5.47.1
src/metrics-server/common/zarf.yaml
  • metrics-server 3.12.1
src/neuvector/common/zarf.yaml
  • crd 2.7.6
  • core 2.7.6
  • monitor 2.7.6
src/prometheus-stack/common/zarf.yaml
  • kube-prometheus-stack 58.4.0
src/prometheus-stack/zarf.yaml
  • prometheus-operator-crds 11.0.0
src/promtail/common/zarf.yaml
  • promtail 6.15.5
src/velero/common/zarf.yaml
  • velero 6.1.0
bundles/k3d-slim-dev/uds-bundle.yaml
  • ghcr.io/defenseunicorns/packages/uds-k3d 0.6.0
  • ghcr.io/defenseunicorns/packages/init v0.33.2
bundles/k3d-standard/uds-bundle.yaml
  • ghcr.io/defenseunicorns/packages/uds-k3d 0.6.0
  • ghcr.io/defenseunicorns/packages/init v0.33.2
  • Check this box to trigger a request for Renovate to run again on this repository

Renovate Dashboard ๐Ÿค–

This issue lists Renovate updates and detected dependencies. Read the Dependency Dashboard docs to learn more.

Awaiting Schedule

These updates are awaiting their schedule. Click on a checkbox to get an update now.

  • chore(deps): update dependency defenseunicorns/uds-cli to v0.9.2
  • chore(deps): update dependency defenseunicorns/uds-core to v0.13.1
  • chore(deps): update ghcr.io/stefanprodan/podinfo docker tag to v6.6.0

Detected dependencies

github-actions
.github/actions/save-logs/action.yaml
  • actions/upload-artifact v4.3.1@5d5d22a31266ced268874388b861e4b58bb5c2f3
.github/actions/setup/action.yaml
.github/workflows/pull_request.yaml
  • actions/checkout v4.1.1@b4ffde65f46336ab88eb53be808477a3936bae11
.github/workflows/tag_release.yaml
  • google-github-actions/release-please-action v4@cc61a07e2da466bebbc19b3a7dd01d6aecb20d1e
regex
.github/actions/setup/action.yaml
  • k3d-io/k3d main
release-please-config.json
tasks/setup.yaml
  • defenseunicorns/uds-core 0.12.0
.github/actions/setup/action.yaml
  • defenseunicorns/uds-cli 0.9.0
zarf.yaml
  • ghcr.io/stefanprodan/podinfo 6.4.0
README.md
  • defenseunicorns/uds-core 0.12.0
README.md
  • defenseunicorns/uds-cli 0.9.0
  • Check this box to trigger a request for Renovate to run again on this repository

Action Required: Fix Renovate Configuration

There is an error with this repository's Renovate configuration that needs to be fixed. As a precaution, Renovate will stop PRs until it is resolved.

Error type: Failed to decrypt field username. Please re-encrypt and try again.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.