mirror of
https://github.com/ghndrx/prowler.git
synced 2026-02-10 06:45:08 +00:00
41 lines
1.2 KiB
YAML
41 lines
1.2 KiB
YAML
apiVersion: batch/v1beta1
|
|
kind: CronJob
|
|
metadata:
|
|
name: devsecops-prowler-cronjob-secret
|
|
namespace: defectdojo
|
|
spec:
|
|
#Cron Time is set according to server time, ensure server time zone and set accordingly.
|
|
successfulJobsHistoryLimit: 2
|
|
failedJobsHistoryLimit: 1
|
|
schedule: "5 3 * * 0,2,4"
|
|
jobTemplate:
|
|
spec:
|
|
template:
|
|
spec:
|
|
containers:
|
|
- name: prowler
|
|
image: toniblyx/prowler:latest
|
|
imagePullPolicy: Always
|
|
command:
|
|
- "./prowler"
|
|
args: [ "-g", "hipaa", "-M", "csv,json,html", "-B", "$(awsS3Bucket)" ]
|
|
env:
|
|
- name: AWS_ACCESS_KEY_ID
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: devsecops-prowler-cronjob-secret
|
|
key: awsId
|
|
- name: AWS_SECRET_ACCESS_KEY
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: devsecops-prowler-cronjob-secret
|
|
key: awsSecretKey
|
|
- name: awsS3Bucket
|
|
valueFrom:
|
|
secretKeyRef:
|
|
name: devsecops-prowler-cronjob-secret
|
|
key: awsS3Bucket
|
|
imagePullPolicy: IfNotPresent
|
|
restartPolicy: OnFailure
|
|
backoffLimit: 3
|