config: changed registry to ghcr.io

[sheril5]

No description provided.

[dryrunsecurity]

Hi there 👋, @DryRunSecurity here, below is a summary of our analysis and findings.

DryRun Security	Status	Findings
Configured Codepaths Analyzer	✅	0 findings
Sensitive Files Analyzer	✅	0 findings
Authn/Authz Analyzer	✅	0 findings
AppSec Analyzer	✅	0 findings
Secrets Analyzer	✅	0 findings

Note

🟢 Risk threshold not exceeded.

Change Summary (click to expand)

The following is a summary of changes in this pull request made by me, your security buddy 🤖. Note that this summary is auto-generated and not meant to be a definitive list of security issues but rather a helpful summary from a security perspective.

Summary:

The changes in this pull request are primarily focused on updating the version of the proact-scheduler Helm chart and the Docker image used for the PostgreSQL database. These changes do not appear to introduce any immediate security concerns, but it's important to review them carefully to ensure that the updated chart and dependencies are secure and compatible with the application.

The version update for the Helm chart is a routine change, and it's essential to verify that the new version functions correctly and that any dependencies or configurations remain compatible. Additionally, it's a good practice to review the changelog or release notes associated with the version update to understand the changes and any potential security-related updates or fixes that may have been included.

The change in the Docker image source for the PostgreSQL database is worth noting, as the image is now being pulled from the GitHub Container Registry (ghcr.io) instead of the default Docker Hub (docker.io) repository. While this change in itself does not necessarily indicate a security concern, it's important to ensure that the new image source is trusted and that the image has been properly vetted for any known vulnerabilities or security issues. Additionally, the sensitive configuration values related to the PostgreSQL database, such as the host, port, database name, username, and password, should be carefully managed and protected using secure methods like Kubernetes Secrets.

Files Changed:

1. charts/proact-scheduler/Chart.yaml:

   • The version field in the Chart.yaml file has been incremented from 0.1.2 to 0.1.3, indicating a minor version update for the proact-scheduler Helm chart.

2. charts/proact-scheduler/values.yaml:

   • The Docker image used for the PostgreSQL database has been changed from docker.io/bitnami/postgresql:16.0.0-debian-11-r13 to ghcr.io/kube-tarian/helmrepo-supporting-tools/postgresql:16.0.0-debian-11-r13.
   • The values.yaml file contains several configuration options related to the PostgreSQL database, such as the host, port, database name, username, and password, which should be carefully managed and protected.

Powered by DryRun Security