Chart: Harbor Scanner Adapter for Sysdig Secure

This chart deploys the Harbor Scanner Adapter for Sysdig Secure on your Kubernetes cluster.

Installing the Chart

  1. Ensure you are passing the value. This one is mandatory to connect with the backend and perform scanning analysis
  2. Create a namespace for the deployment:
$ kubectl create ns harbor-scanner-sysdig-secure
  1. Add Sysdig Helm charts repository:
$ helm repo add sysdig
  1. Deploy the scanner adapter
$ helm install -n sharbor-scanner-sysdig-secure harbor-scanner-sysdig-secure -f values.yaml sysdig/harbor-scanner-sysdig-secure


The following table lists the configurable parameters of the Harbor Scanner Sysdig Secure chart and their default values:

Parameter Description Default
customEntryPoint Ovverride container entrypoint []
replicaCount Amount of replicas for Scanner Adapter 1
image.repository The image repository to pull from sysdiglabs/harbor-scanner-sysdig-secure
image.pullPolicy The image pull policy IfNotPresent
imagePullSecrets The image pull secrets []
nameOverride Chart name override ` `
fullnameOverride Chart full name override ` `
serviceAccount.create Create the service account true
serviceAccount.annotations Extra annotations for serviceAccount {} Use this value as serviceAccount Name ` `
rbac.create Create and use RBAC resources true
podAnnotations Custom pod annotations {}
podSecurityContext Configure deployment PSP’s {}
securityContext Configure securityContext {}
service.type Use this type as service ClusterIP
service.port Configure port for the service 5000
nodeSelector Configure nodeSelector for scheduling {}
tolerations Tolerations for scheduling []
affinity Configure affinity rules {} API Token to access Sysdig Secure. This value is mandatory. ` ` Existing secret name with API Token to access Sysdig Secure
Alternatively, specify the name of a Kubernetes secret containing sysdig_secure_api_token entry.

If neither this value nor are configured, the user will be required to provide the deployment the SECURE_API_TOKEN environment variables.
` ` Sysdig Secure endpoint Verify SSL certificate when connecting to Sysdig Secure endpoint true
proxy.httpProxy URL of the proxy for HTTP connections, or empty if not using proxy (sets the http_proxy environment variable) ` `
proxy.httpsProxy URL of the proxy for HTTPS connections, or empty if not using proxy (sets the https_proxy environment variable) ` `
proxy.noProxy Comma-separated list of domain extensions proxy should not be used for. Include the internal IP of the kubeapi server. ` `
inlineScanning.enabled Enable Inline Scanning feature true

Specify each parameter using the --set key=value[,key=value] argument to helm install. For example,

$ helm install my-release \
    --set \

Alternatively, a YAML file that specifies the values for the parameters can be provided while installing the chart. For example,

$ helm install my-release -f values.yaml sysdig/harbor-scanner-sysdig-secure

Tip: You can use the default values.yaml