repositorypackage
0.5.1
Repository: https://github.com/gabe565/pre-commit-fluxcd.git
Documentation: pkg.go.dev
# Packages
No description provided by the author
# README
Pre-Commit Hooks for FluxCD
A collection of Pre-Commit hooks for FluxCD GitOps repos.
Installation
Add the following snippet to .pre-commit-config.yaml.
hooks:
- repo: https://github.com/gabe565/pre-commit-fluxcd
rev: '' # Use the sha / tag you want to point at
hooks:
- id: check-charts-pinned
- id: check-charts-support-renovate
- id: check-drift-detection-enabled
- id: check-secrets-encrypted
Hooks
- check-charts-pinned
- check-charts-support-renovate
- check-drift-detection-enabled
- check-secrets-encrypted
check-charts-pinned
This hook ensures HelmRelease Kubernetes manifests have a version pinned at .spec.chart.spec.version.
check-charts-support-renovate
Renovate will only update HelmRelease versions if the following conditions are satisfied:
- The
HelmReleaseresource hasmetadata.namespaceorspec.chart.spec.sourceRef.namespaceset - The referenced
HelmRepositoryhasmetadata.namespaceset.
This hook ensures these conditions are satisfied.
check-drift-detection-enabled
This hook ensures HelmRelease manifests have drift detection enabled.
If you would like to allow warn mode, add the --allow-warn arg:
- id: check-drift-detection-enabled
args:
- --allow-warn
check-secrets-encrypted
This hook ensures .env files, and Secret Kubernetes manifests are encrypted using SOPS.