Update quay.io/prometheus/alertmanager:main Docker digest to 9added6

nope.
KubePrism.
2023-12-11 11:00:32 +00:00 · 2023-12-10 22:04:29 -06:00 · 2023-12-10 21:49:27 -06:00 · 2023-12-10 21:43:08 -06:00 · 2023-12-10 16:36:38 -06:00 · 2023-12-08 22:17:50 -06:00
8 changed files with 249 additions and 92 deletions
--- a/kubernetes/apps/default/rocky.yaml
+++ b/kubernetes/apps/default/rocky.yaml
@ -4,8 +4,6 @@ metadata:
  name: rocky-linux
  namespace: default
 spec:
-  nodeSelector:
-    intel.feature.node.kubernetes.io/gpu: "true"
  containers:
    - name: rocky
      image: rockylinux:9
@ -15,9 +13,7 @@ spec:
      resources:
        requests:
          cpu: 100m
-          gpu.intel.com/i915: 1
          memory: 512Mi
        limits:
          cpu: 4000m
-          gpu.intel.com/i915: 1
-          memory: 8000Mi
+          memory: 4000Mi
--- a/kubernetes/apps/default/ubuntu.yaml
+++ b/kubernetes/apps/default/ubuntu.yaml
@ -4,8 +4,6 @@ metadata:
  name: ubuntu
  namespace: default
 spec:
-  nodeSelector:
-    intel.feature.node.kubernetes.io/gpu: "true"
  containers:
    - name: ubuntu
      image: ubuntu:latest
@ -15,9 +13,7 @@ spec:
      resources:
        requests:
          cpu: 100m
-          gpu.intel.com/i915: 1
          memory: 512Mi
        limits:
          cpu: 4000m
-          gpu.intel.com/i915: 1
-          memory: 8000Mi
+          memory: 4000Mi
--- a/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml
+++ b/kubernetes/apps/kube-system/cilium/app/helmrelease.yaml
@ -54,6 +54,6 @@ spec:
      autoMount:
        enabled: false
      hostRoot: /sys/fs/cgroup
-    k8sServiceHost: 10.2.0.6
+    k8sServiceHost: ${K8S_SERVICE_ENDPOINT}
    k8sServicePort: 6443
    rollOutCiliumPods: true
--- a/kubernetes/apps/monitoring/alertmanager/app/helmrelease.yaml
+++ b/kubernetes/apps/monitoring/alertmanager/app/helmrelease.yaml
@ -27,7 +27,7 @@ spec:
          main:
            image:
              repository: quay.io/prometheus/alertmanager
-              tag: main@sha256:8b7bb9cdc78bd947496274a7a8f76b031cd4c638dddb1236ef9f7c730bdcd7f2
+              tag: main@sha256:9added6b8ed550fea5b9ba1210914ce68f8bcc91e49e7ba9a026a1c767598d19
              pullPolicy: IfNotPresent
    podAnnotations:
      reloader.stakater.com/auto: "true"
--- a/kubernetes/flux/vars/cluster-secrets.sops.yaml
+++ b/kubernetes/flux/vars/cluster-secrets.sops.yaml
@ -8,6 +8,7 @@ stringData:
    SECRET_PUSHOVER_ALERT_MANAGER_APIKEY: ENC[AES256_GCM,data:4+9e/tWQBszoPakAo+1vNhWsdKz8qfoioeUz+dTb,iv:sY4dkzMEmvi8kCLesBiknmoYHWq3uqXpWs5Y4FeFSuk=,tag:rPxH+5m6rPiSnhm2JrrT4w==,type:str]
    SECRET_HEALTHCHECKS_WEBHOOK: ENC[AES256_GCM,data:a6hjTy2HRy7s2+KHxfop8077CgAzzILCF/g5I9TIXdhRiziUrLpJVzC0mqNmfdooJsZyErrJ9ihamFKLFoK8S/PmD5IgWuZu,iv:l5JTxmiWct5nr7eJM/Rtl7AclhCoIQ4KW6nJK6Slhg0=,tag:K5yGxYBTNSSoxYJt8Kmhyw==,type:str]
    SECRET_CLOUDFLARE_ACCOUNT_ID: ENC[AES256_GCM,data:X63a7aMBMyd9Be6bik0knOyMXnYx/Kg3SoOrG0bkAHU=,iv:POcU1kIRWekrzUdzqPopKDovviK+fMZRVuZVWp9Vuuc=,tag:n9UamxITJCiLbH37Ta2lTg==,type:str]
+    K8S_SERVICE_ENDPOINT: ENC[AES256_GCM,data:dRQiZcBNb95uNMzdlqM=,iv:KBK/YcOQsO/5UnM3glNiK8pA45XZ9NPcY+9H3Q1yFXk=,tag:YwQoSsmcvP3g79yHfrFJVw==,type:str]
 sops:
    kms: []
    gcp_kms: []
@ -23,8 +24,8 @@ sops:
            dDhWMDZYait3UzNRZy9oVk85cHBPdEUKa7e22jHlW1chaLDKBB1in8ZTFnfKMXug
            QJQ/9z6z/RjmnnFam2FWg++Xg2A8LQ7XTZcfR97csf59DQ/xwu7sVw==
            -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2023-11-28T03:23:26Z"
-    mac: ENC[AES256_GCM,data:pymGYIauY1QsSuepCBNRi+s1g2UypI5/RIe+c4auKfyv0QFdgPHTPHYhT0q4g8nfFwFp8E6u9oxFlDZSR1Vy3BHc4RqZCREA6+kKHG7bwH25xvhtWUQnLq7bDkNhm7ZzjEeIgNq5pEXeeNr12nlHJqTFw++lvnGjJRJJ5Rzl0AQ=,iv:EMrOFhLoNodX0KCiMqoA/FI+WqypChI+53JCg+eu6OE=,tag:DUOR4uf2ib0eYlJOdTfNNg==,type:str]
+    lastmodified: "2023-12-11T04:04:11Z"
+    mac: ENC[AES256_GCM,data:P/TJeZ0oZVqZCAo5mxtxhFgzuEW8RFatDNQS/0GcXVs+FB7Y9t5WmFFpHWTddo8E8YtzXFkvQAmXpUS9VmjLDh4k0pPlw+6kO4XnDpci9yemugLf1oEuZcOGNYahxMPNFver7HVUUp1VvIJnwjBPfq1kppDnmUjo6wUAPd126RE=,iv:bax+X0a6w+NCpqk4F3Zwo32vKdsjECMXYx8yBN74FF8=,tag:zi69sJqzNhkLAEEyC6lPdQ==,type:str]
    pgp: []
    encrypted_regex: ^(data|stringData)$
    version: 3.8.1
--- a/talos/talconfig-pips.yaml
+++ b/talos/talconfig-pips.yaml
@ -0,0 +1,214 @@
+---
+clusterName: valinor
+
+talosVersion: v1.5.5
+kubernetesVersion: 1.28.4
+endpoint: "https://10.2.0.3:6443"
+
+cniConfig:
+  name: none
+
+additionalApiServerCertSans:
+  - 10.2.0.3
+
+additionalMachineCertSans:
+  - 10.2.0.3
+
+nodes:
+  # cloud CAX21 Arm64
+  - hostname: aule
+    disableSearchDomain: true
+    ipAddress: 10.2.0.4
+    controlPlane: true
+    installDiskSelector:
+      busPath: /dev/sda
+    networkInterfaces:
+      - interface: eth0
+        dhcp: true
+      - interface: eth1
+        dhcp: true
+        routes:
+          - network: 10.2.0.0/16
+            gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
+            metric: 2048
+  # cloud CAX21 Arm64
+  - hostname: arlen
+    disableSearchDomain: true
+    ipAddress: 10.2.0.5
+    controlPlane: true
+    installDiskSelector:
+      busPath: /dev/sda
+    networkInterfaces:
+      - interface: eth0
+        dhcp: true
+      - interface: eth1
+        dhcp: true
+        routes:
+          - network: 10.2.0.0/16
+            gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
+            metric: 2048
+  # cloud CAX21 Arm64
+  - hostname: eonwe
+    disableSearchDomain: true
+    ipAddress: 10.2.0.6
+    controlPlane: true
+    installDiskSelector:
+      busPath: /dev/sda
+    networkInterfaces:
+      - interface: eth0
+        dhcp: true
+      - interface: eth1
+        dhcp: true
+        routes:
+          - network: 10.2.0.0/16
+            gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
+            metric: 2048
+  # Bare-metal AX41-Nvme - AMD Ryzen 5 3600 6-Core Processor (Zen2) - 64GB ECC RAM
+  - hostname: nienna
+    disableSearchDomain: true
+    ipAddress: 10.2.1.2
+    controlPlane: false
+    # customization:
+    #   extraKernelArgs:
+    #     - net.ifnames=0
+    #   systemExtensions:
+    #     officialExtensions:
+    #       - siderolabs/amd-ucode
+    #       - siderolabs/qemu-guest-agent
+    talosImageURL: factory.talos.dev/installer/696bb48d9c48e567596f393a4ff9bfd26d4dda5d92c16beb580e96fa68d6324c
+    # https://factory.talos.dev/image/696bb48d9c48e567596f393a4ff9bfd26d4dda5d92c16beb580e96fa68d6324c/v1.5.5/metal-amd64.iso
+    # no guest agent in the raw.xz image
+    # https://factory.talos.dev/image/6c789e7a3eec37617fd9d239a7f696ba48e75bc4780f5cb30bf8882686d79a22/v1.5.5/metal-amd64.raw.xz
+    installDiskSelector:
+      busPath: /pci0000:00/0000:00:0a.0/virtio2/
+      # Ceph Disk Fast: /pci0000:00/0000:00:11.0/nvme/nvme0/nvme0n1
+      # Ceph Disk Large: /pci0000:00/0000:00:10.0/ata1/host0/target0:0:0/0:0:0:0/
+    networkInterfaces:
+      - interface: eth0
+        dhcp: true
+      - interface: eth1
+        dhcp: false
+        vlans:
+          - vlanId: 4010
+            mtu: 1400
+            addresses:
+              - 10.2.1.2/24
+            dhcp: false
+            routes:
+              - network: 10.2.0.0/16
+                gateway: 10.2.1.1 # The route's gateway (if empty, creates link scope route).
+                metric: 2048
+  # VM on EX44 - Intel Gen 13 (Raptor Lake) - 64GB RAM
+  - hostname: orome
+    disableSearchDomain: true
+    ipAddress: 10.2.1.3
+    controlPlane: false
+    # customization:
+    #     extraKernelArgs:
+    #         - net.ifnames=0
+    #     systemExtensions:
+    #         officialExtensions:
+    #             - siderolabs/i915-ucode
+    #             - siderolabs/intel-ucode
+    #             - siderolabs/qemu-guest-agent
+    talosImageURL: factory.talos.dev/installer/f2f665587318c2d79e7b315cc333fff276ed59c8de831f16e28b4db107496ac2
+    # https://factory.talos.dev/image/f2f665587318c2d79e7b315cc333fff276ed59c8de831f16e28b4db107496ac2/metal-amd64.iso
+    installDiskSelector:
+      busPath: /pci0000:00/0000:00:0a.0/virtio2/
+      # Ceph Disk: /dev/disk/by-id/nvme-SAMSUNG_MZVL2512HCJQ-00B00_S675NU0TB36132
+    networkInterfaces:
+      - interface: eth0
+        dhcp: true
+      - interface: eth1
+        dhcp: false
+        vlans:
+          - vlanId: 4010
+            mtu: 1400
+            addresses:
+              - 10.2.1.3/24
+            dhcp: false
+            routes:
+              - network: 10.2.0.0/16
+                gateway: 10.2.1.1 # The route's gateway (if empty, creates link scope route).
+                metric: 2048
+worker:
+  patches:
+    - |-
+      cluster:
+        externalCloudProvider:
+          enabled: true
+          manifests:
+            - https://github.com/hetznercloud/hcloud-cloud-controller-manager/releases/latest/download/ccm.yaml
+      machine:
+        sysctls:
+            fs.inotify.max_user_watches: "1048576"
+            fs.inotify.max_user_instances: "8192"
+        time:
+          disabled: false
+          servers:
+            - ntp.hetzner.com
+        kubelet:
+          extraArgs:
+            feature-gates: CronJobTimeZone=true,GracefulNodeShutdown=true,NewVolumeManagerReconstruction=false
+            rotate-server-certificates: "true"
+          extraConfig:
+            maxPods: 150
+          nodeIP:
+            validSubnets:
+                - 10.2.0.0/16
+controlPlane:
+  patches:
+    - |-
+      cluster:
+        allowSchedulingOnMasters: true
+        externalCloudProvider:
+          enabled: true
+          manifests:
+            - https://github.com/hetznercloud/hcloud-cloud-controller-manager/releases/latest/download/ccm.yaml
+        network:
+          cni:
+            name: none
+        proxy:
+          disabled: true
+        etcd:
+          advertisedSubnets:
+            - 10.2.0.0/24
+
+    - |-
+      - op: remove
+        path: /cluster/apiServer/admissionControl
+
+    - |-
+      machine:
+        features:
+          kubePrism:
+            enabled: true
+            port: 7445
+
+        files:
+          - op: create
+            path: /etc/cri/conf.d/20-customization.part
+            content: |
+              [plugins]
+                [plugins."io.containerd.grpc.v1.cri"]
+                  enable_unprivileged_ports = true
+                  enable_unprivileged_icmp = true
+        kubelet:
+          extraArgs:
+            feature-gates: CronJobTimeZone=true,GracefulNodeShutdown=true,NewVolumeManagerReconstruction=false
+            rotate-server-certificates: "true"
+          extraConfig:
+            maxPods: 150
+          nodeIP:
+            validSubnets:
+                - 10.2.0.0/16
+        network:
+          extraHostEntries:
+            - ip: 10.2.0.3
+        sysctls:
+          fs.inotify.max_user_watches: "1048576"
+          fs.inotify.max_user_instances: "8192"
+        time:
+          disabled: false
+          servers:
+            - ntp.hetzner.com
--- a/talos/talconfig.yaml
+++ b/talos/talconfig.yaml
@ -3,99 +3,75 @@ clusterName: valinor

 talosVersion: v1.5.5
 kubernetesVersion: 1.28.4
-endpoint: "https://10.2.0.3:6443"
+endpoint: "https://${clusterEndpointIP}:6443"

 cniConfig:
  name: none

 additionalApiServerCertSans:
-  - 10.2.0.3
+  - ${clusterEndpointIP}

 additionalMachineCertSans:
-  - 10.2.0.3
+  - ${clusterEndpointIP}

 nodes:
  # cloud CAX21 Arm64
  - hostname: aule
    disableSearchDomain: true
-    ipAddress: 10.2.0.4
+    ipAddress: ${auleIP}
    controlPlane: true
    installDiskSelector:
      busPath: /dev/sda
    networkInterfaces:
      - interface: eth0
        dhcp: true
-      - interface: eth1
-        dhcp: true
-        routes:
-          - network: 10.2.0.0/16
-            gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
-            metric: 2048
  # cloud CAX21 Arm64
  - hostname: arlen
    disableSearchDomain: true
-    ipAddress: 10.2.0.5
+    ipAddress: ${arlenIP}
    controlPlane: true
    installDiskSelector:
      busPath: /dev/sda
    networkInterfaces:
      - interface: eth0
        dhcp: true
-      - interface: eth1
-        dhcp: true
-        routes:
-          - network: 10.2.0.0/16
-            gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
-            metric: 2048
  # cloud CAX21 Arm64
  - hostname: eonwe
    disableSearchDomain: true
-    ipAddress: 10.2.0.6
+    ipAddress: ${eonweIP}
    controlPlane: true
    installDiskSelector:
      busPath: /dev/sda
    networkInterfaces:
      - interface: eth0
        dhcp: true
-      - interface: eth1
-        dhcp: true
-        routes:
-          - network: 10.2.0.0/16
-            gateway: 10.2.0.1 # The route's gateway (if empty, creates link scope route).
-            metric: 2048
  # Bare-metal AX41-Nvme - AMD Ryzen 5 3600 6-Core Processor (Zen2) - 64GB ECC RAM
  - hostname: nienna
    disableSearchDomain: true
-    ipAddress: 10.2.1.2
+    ipAddress: ${niennaIP}
    controlPlane: false
    # customization:
-    # extraKernelArgs:
-    #   - net.ifnames=0
-    # systemExtensions:
+    #   extraKernelArgs:
+    #     - net.ifnames=0
+    #   systemExtensions:
    #     officialExtensions:
-    #         - siderolabs/amd-ucode
-    talosImageURL: factory.talos.dev/installer/6c789e7a3eec37617fd9d239a7f696ba48e75bc4780f5cb30bf8882686d79a22
+    #       - siderolabs/amd-ucode
+    #       - siderolabs/qemu-guest-agent
+    talosImageURL: factory.talos.dev/installer/696bb48d9c48e567596f393a4ff9bfd26d4dda5d92c16beb580e96fa68d6324c
+    # https://factory.talos.dev/image/696bb48d9c48e567596f393a4ff9bfd26d4dda5d92c16beb580e96fa68d6324c/v1.5.5/metal-amd64.iso
+    # no guest agent in the raw.xz image
    # https://factory.talos.dev/image/6c789e7a3eec37617fd9d239a7f696ba48e75bc4780f5cb30bf8882686d79a22/v1.5.5/metal-amd64.raw.xz
    installDiskSelector:
-      busPath: /pci0000:00/0000:00:03.1/0000:27:00.0/nvme/nvme0/nvme0n1
-      # Ceph Disk: /dev/disk/by-id/nvme-SAMSUNG_MZVLB512HBJQ-00000_S4GENX0N424497
+      busPath: /pci0000:00/0000:00:0a.0/virtio2/
+      # Ceph Disk Fast: /pci0000:00/0000:00:11.0/nvme/nvme0/nvme0n1
+      # Ceph Disk Large: /pci0000:00/0000:00:10.0/ata1/host0/target0:0:0/0:0:0:0/
    networkInterfaces:
      - interface: eth0
        dhcp: true
-        vlans:
-          - vlanId: 4010
-            mtu: 1400
-            addresses:
-              - 10.2.1.2/24
-            dhcp: false
-            routes:
-              - network: 10.2.0.0/16
-                gateway: 10.2.1.1 # The route's gateway (if empty, creates link scope route).
-                metric: 2048
  # VM on EX44 - Intel Gen 13 (Raptor Lake) - 64GB RAM
  - hostname: orome
    disableSearchDomain: true
-    ipAddress: 10.2.1.3
+    ipAddress: ${oromeIP}
    controlPlane: false
    # customization:
    #     extraKernelArgs:
@ -106,30 +82,13 @@ nodes:
    #             - siderolabs/intel-ucode
    #             - siderolabs/qemu-guest-agent
    talosImageURL: factory.talos.dev/installer/f2f665587318c2d79e7b315cc333fff276ed59c8de831f16e28b4db107496ac2
+    # https://factory.talos.dev/image/f2f665587318c2d79e7b315cc333fff276ed59c8de831f16e28b4db107496ac2/metal-amd64.iso
    installDiskSelector:
      busPath: /pci0000:00/0000:00:0a.0/virtio2/
      # Ceph Disk: /dev/disk/by-id/nvme-SAMSUNG_MZVL2512HCJQ-00B00_S675NU0TB36132
    networkInterfaces:
      - interface: eth0
        dhcp: true
-        addresses:
-          - ${oromeIP}
-        routes:
-          - network: 0.0.0.0/0
-            gateway: ${oromeGateway} # The route's gateway (if empty, creates link scope route).
-            metric: 1024
-      - interface: eth1
-        dhcp: false
-        vlans:
-          - vlanId: 4010
-            mtu: 1400
-            addresses:
-              - 10.2.1.3/24
-            dhcp: false
-            routes:
-              - network: 10.2.0.0/16
-                gateway: 10.2.1.1 # The route's gateway (if empty, creates link scope route).
-                metric: 2048
 worker:
  patches:
    - |-
@ -152,9 +111,6 @@ worker:
            rotate-server-certificates: "true"
          extraConfig:
            maxPods: 150
-          nodeIP:
-            validSubnets:
-                - 10.2.0.0/16
 controlPlane:
  patches:
    - |-
@ -169,9 +125,6 @@ controlPlane:
            name: none
        proxy:
          disabled: true
-        etcd:
-          advertisedSubnets:
-            - 10.2.0.0/24

    - |-
      - op: remove
@ -198,12 +151,6 @@ controlPlane:
            rotate-server-certificates: "true"
          extraConfig:
            maxPods: 150
-          nodeIP:
-            validSubnets:
-                - 10.2.0.0/16
-        network:
-          extraHostEntries:
-            - ip: 10.2.0.3
        sysctls:
          fs.inotify.max_user_watches: "1048576"
          fs.inotify.max_user_instances: "8192"
--- a/talos/talenv.sops.yaml
+++ b/talos/talenv.sops.yaml
@ -1,7 +1,10 @@
 clusterName: ENC[AES256_GCM,data:iT5CwpMddw==,iv:st1ajjpRXQiHozpIJqUUwmRe542IiR2aWLEdqkk4W9k=,tag:KOCQ8x28kwNNDUXwOTpulg==,type:str]
-clusterEndpointIP: ENC[AES256_GCM,data:5VXivET/uV4=,iv:SRhLmDfbSlhnb9DsaFXCqiP/Bx4Khi4GdXseyuhuYAw=,tag:BrP3OL/1FwrUyCMWRFB0BQ==,type:str]
-oromeIP: ENC[AES256_GCM,data:SQyZ1Lpe8HipAbpOdGWRMQ==,iv:1u1eM3N90BvX9tob0c+hKXUFlrFWDh+oKM+sSRrmSyY=,tag:oWjt80hHImn0s1r0CM+1eA==,type:str]
-oromeGateway: ENC[AES256_GCM,data:Ic8WKbNl9SsdfYT1,iv:HlKGNuBrvHjwrydybAD7cQEKYXL/JLzs/1m+G2bznYA=,tag:NGt1IacjxuX1XqP7mHB5ww==,type:str]
+clusterEndpointIP: ENC[AES256_GCM,data:nQcNkmmaLuOxz5tTKlY=,iv:IAnSXk667TSWcE2QDmE/xk56R6dCsNK5hMIY96BPN08=,tag:G1ebt6kfJ2V1WMfJ9zNBhA==,type:str]
+auleIP: ENC[AES256_GCM,data:fowDru5uo1tx36Y3vQ==,iv:wSPdnE+eQ+er2pCOvS2DoynCxA+4oNbJacQhvQR6KJk=,tag:Fb+D9nA3U/QbgqmQhDMDDw==,type:str]
+arlenIP: ENC[AES256_GCM,data:O3z2uYFNjS9iMng=,iv:b6T1AbWdIoFrH3hV1zop1C2x652sweKhgKPzUVNoDUY=,tag:d6edGxWSXtq9cpbcjIbtQw==,type:str]
+eonweIP: ENC[AES256_GCM,data:WdN3OPeVD0ppPax856w=,iv:QVhxp1Q3JPbHZAyZbwoBfmIu+qazvAQPKJR10RdtfFI=,tag:raJ2APpfNTyXLSH9SjzoGA==,type:str]
+niennaIP: ENC[AES256_GCM,data:XQCs/IoSGQIzBKe2Kw==,iv:P72qBaIHY8oLpfR+t5ZZ31XJE1kytCvav0I25nQKSWI=,tag:ZVbQHHzct2Y/fvHxAXROXQ==,type:str]
+oromeIP: ENC[AES256_GCM,data:nCeVxdK8Q1+E9nMoeNM=,iv:lqM72ewe+nwJUiJGOsLmGBtUU9JcxxmbEUZJNdFroWI=,tag:cpXvK0HW22mpy4nxWCgRmw==,type:str]
 sops:
    kms: []
    gcp_kms: []
@ -17,8 +20,8 @@ sops:
            MTFUZEplYVN5RGhhMGNEcDlGbTVQcjQKktwztZAHGUqoxbGHuAg0dX5Vap+wFVfx
            ku6Hzg1ZU8Lvd8ODe+4p+RvHSKVll1akgpPVuymCUxl+I6EvH7gEDA==
            -----END AGE ENCRYPTED FILE-----
-    lastmodified: "2023-12-02T02:23:49Z"
-    mac: ENC[AES256_GCM,data:vut8v85tPP1DoJCvdqa0Da3z+78qadjuq5PTmqP/DB8fXy8S7qY5QiDZBv4kKhb5j6lmzYUD1USZZYLzDJN5n4Vw9qdstMr6WuCTqimt5MsZEefn621/p0Q2hdH7rC75gGiLHTFLc53HnrESg+opZRkmknrNuKKcZH8GI0H4MeQ=,iv:OakKTwA24IlwIU3gXP53CN7bdO8iDoKpoGLy+EcVGIg=,tag:82RBOg4ebBk9QEtSRAMymw==,type:str]
+    lastmodified: "2023-12-10T16:40:14Z"
+    mac: ENC[AES256_GCM,data:P0rbT2U+Ga29qR7hewngNrmfqA0ShNnCjaYGQLyHTsowqJ3ZY4HX7UQzwtXaZZTfz0SSIAK9yUHStmOoQ0p6c5t6uhww5565MAi23J5vQSkg3iIZ9MLuHkfAYwt4mOXVxvlhGMM0sEkE3nsurHVyEB3TOBgXKziz7Wi+pH1knXw=,iv:QBs7SV667gbiWbTNOcmzHc2eygJSLmK2aiLF4b4qvWU=,tag:/LjNKYD+XooTRLr/gcJQvg==,type:str]
    pgp: []
    unencrypted_suffix: _unencrypted
    version: 3.8.1
Author	SHA1	Message	Date
Smeagol	f5c170ad50	Update quay.io/prometheus/alertmanager:main Docker digest to 9added6	2023-12-11 11:00:32 +00:00
Joseph Hanson	fef15282b3	nope.	2023-12-10 22:04:29 -06:00
Joseph Hanson	a9100b44f8	KubePrism.	2023-12-10 21:49:27 -06:00
Joseph Hanson	8ec4555466	Update cilium k8s endpoint	2023-12-10 21:43:08 -06:00
Joseph Hanson	bbf93870ac	updating to use different ips	2023-12-10 16:36:38 -06:00
Joseph Hanson	23639028b7	Update orome and nienna for new drives and net devices.	2023-12-08 22:17:50 -06:00
Joseph Hanson	2ef92745e0	remove gpu from containers	2023-12-08 22:17:09 -06:00