From a61418e037dba0bb7c865b5806f82208ffbd45de Mon Sep 17 00:00:00 2001 From: TrueCharts-Bot Date: Sun, 20 Mar 2022 16:15:41 +0000 Subject: [PATCH] Commit new App releases for TrueCharts Signed-off-by: TrueCharts-Bot --- incubator/verysync/0.0.1/CHANGELOG.md | 10 + incubator/verysync/0.0.1/CONFIG.md | 7 + incubator/verysync/0.0.1/Chart.lock | 6 + incubator/verysync/0.0.1/Chart.yaml | 28 + incubator/verysync/0.0.1/README.md | 37 + incubator/verysync/0.0.1/app-readme.md | 3 + .../verysync/0.0.1/charts/common-9.1.6.tgz | Bin 0 -> 42858 bytes incubator/verysync/0.0.1/helm-values.md | 36 + incubator/verysync/0.0.1/ix_values.yaml | 41 + incubator/verysync/0.0.1/questions.yaml | 2787 +++++++++++++++++ incubator/verysync/0.0.1/security.md | 138 + .../verysync/0.0.1/templates/common.yaml | 1 + incubator/verysync/0.0.1/values.yaml | 0 incubator/verysync/item.yaml | 4 + 14 files changed, 3098 insertions(+) create mode 100644 incubator/verysync/0.0.1/CHANGELOG.md create mode 100644 incubator/verysync/0.0.1/CONFIG.md create mode 100644 incubator/verysync/0.0.1/Chart.lock create mode 100644 incubator/verysync/0.0.1/Chart.yaml create mode 100644 incubator/verysync/0.0.1/README.md create mode 100644 incubator/verysync/0.0.1/app-readme.md create mode 100644 incubator/verysync/0.0.1/charts/common-9.1.6.tgz create mode 100644 incubator/verysync/0.0.1/helm-values.md create mode 100644 incubator/verysync/0.0.1/ix_values.yaml create mode 100644 incubator/verysync/0.0.1/questions.yaml create mode 100644 incubator/verysync/0.0.1/security.md create mode 100644 incubator/verysync/0.0.1/templates/common.yaml create mode 100644 incubator/verysync/0.0.1/values.yaml create mode 100644 incubator/verysync/item.yaml diff --git a/incubator/verysync/0.0.1/CHANGELOG.md b/incubator/verysync/0.0.1/CHANGELOG.md new file mode 100644 index 00000000000..515006cfb92 --- /dev/null +++ b/incubator/verysync/0.0.1/CHANGELOG.md @@ -0,0 +1,10 @@ +# Changelog
+ + + +### verysync-0.0.1 (2022-03-20) + +#### Feat + +* Add verysync ([#2228](https://github.com/truecharts/apps/issues/2228)) + diff --git a/incubator/verysync/0.0.1/CONFIG.md b/incubator/verysync/0.0.1/CONFIG.md new file mode 100644 index 00000000000..c147b7c819c --- /dev/null +++ b/incubator/verysync/0.0.1/CONFIG.md @@ -0,0 +1,7 @@ +# Configuration Options + +##### Connecting to other apps +If you need to connect this App to other Apps on TrueNAS SCALE, please refer to our [Linking Apps Internally](https://truecharts.org/manual/Quick-Start%20Guides/06-linking-apps/) quick-start guide. + +##### Available config options +In the future this page is going to contain an automated list of options available in the installation/edit UI. diff --git a/incubator/verysync/0.0.1/Chart.lock b/incubator/verysync/0.0.1/Chart.lock new file mode 100644 index 00000000000..bf0b8d45b06 --- /dev/null +++ b/incubator/verysync/0.0.1/Chart.lock @@ -0,0 +1,6 @@ +dependencies: +- name: common + repository: https://truecharts.org + version: 9.1.6 +digest: sha256:d65395039794859a54173a3b1687c20877eeb9127fa4044016eb188cc1644675 +generated: "2022-03-20T16:10:51.89733019Z" diff --git a/incubator/verysync/0.0.1/Chart.yaml b/incubator/verysync/0.0.1/Chart.yaml new file mode 100644 index 00000000000..7cd3364ba2e --- /dev/null +++ b/incubator/verysync/0.0.1/Chart.yaml @@ -0,0 +1,28 @@ +apiVersion: v2 +appVersion: "2.13.0" +dependencies: +- name: common + repository: https://truecharts.org + version: 9.1.6 +description: very sync is an easy-to-use multi-platform file synchronization software +home: https://github.com/truecharts/apps/tree/master/charts/stable/verysync +icon: https://truecharts.org/_static/img/appicons/verysync.png +keywords: +- verysync +- sync +- btsync +- bittorrent +kubeVersion: '>=1.16.0-0' +maintainers: +- email: info@truecharts.org + name: TrueCharts + url: https://truecharts.org +name: verysync +sources: +- https://hub.docker.com/r/jonnyan404/verysync +version: 0.0.1 +annotations: + truecharts.org/catagories: | + - media + truecharts.org/SCALE-support: "true" + truecharts.org/grade: U diff --git a/incubator/verysync/0.0.1/README.md b/incubator/verysync/0.0.1/README.md new file mode 100644 index 00000000000..6e0c5daad15 --- /dev/null +++ b/incubator/verysync/0.0.1/README.md @@ -0,0 +1,37 @@ +# Introduction + +very sync is an easy-to-use multi-platform file synchronization software + +TrueCharts are designed to be installed as TrueNAS SCALE app only. We can not guarantee this charts works as a stand-alone helm installation. +**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/apps/issues/new/choose)** + +## Source Code + +* + +## Requirements + +Kubernetes: `>=1.16.0-0` + +## Dependencies + +| Repository | Name | Version | +|------------|------|---------| +| https://truecharts.org | common | 9.1.6 | + +## Installing the Chart + +To install this App on TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/manual/Quick-Start%20Guides/02-Installing-an-App/). + +## Upgrading, Rolling Back and Uninstalling the Chart + +To upgrade, rollback or delete this App from TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/manual/Quick-Start%20Guides/04-Upgrade-rollback-delete-an-App/). + +## Support + +- Please check our [quick-start guides](https://truecharts.org/manual/Quick-Start%20Guides/01-Adding-TrueCharts/) first. +- See the [Wiki](https://truecharts.org) +- Check our [Discord](https://discord.gg/tVsPTHWTtr) +- Open a [issue](https://github.com/truecharts/apps/issues/new/choose) +--- +All Rights Reserved - The TrueCharts Project diff --git a/incubator/verysync/0.0.1/app-readme.md b/incubator/verysync/0.0.1/app-readme.md new file mode 100644 index 00000000000..9f3bf338715 --- /dev/null +++ b/incubator/verysync/0.0.1/app-readme.md @@ -0,0 +1,3 @@ +very sync is an easy-to-use multi-platform file synchronization software + +This App is supplied by TrueCharts, for more information please visit https://truecharts.org diff --git a/incubator/verysync/0.0.1/charts/common-9.1.6.tgz b/incubator/verysync/0.0.1/charts/common-9.1.6.tgz new file mode 100644 index 0000000000000000000000000000000000000000..db63793f154731db3975d243fcdfc735ae09e40a GIT binary patch literal 42858 zcmV)mK%T!JiwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0PMYeciT3yFus55Q{YjuPwhU|t7SRS-R$qWPTKl3aeQJYz4z|j z<3J=NVNH=N0Lsz2`R>1iR{|tRQGRQ?Yu>w!MFNAtU@$Wn31SW(ffoBtwFM zXls!y(F80QOX;N7n`5@frrjV}_87@fAj7p)FZ&0J+uWV-sz zUtbNngK@Xt>3`E&LL4)QV?+cnw1haC036Sf|I7h*6EbfB5JTQyivR#*B+Ah*RFK6L z25g<8iAJxr(zv|r4!YykV~xL>|0@_}h(3@2sGa|VLBBsdEYAPK!PESIl;;`fbin%* z#h=bj0ZmbWXE*>s63_5FBaqMa)-&**A)3J~V!ZGP0 zbuM760b3xT3V*7Uj(F!6I(v0S{+%dDO|uHpO6gBwdDFw zx`4xj@njn8!-Mg37z|z>z|nLRpo3t1IGgr^VgKc9|3!a)d@vlKX}CWahqEC(4972~ zqv65yWiWa%-S0QXAkCr(q)CK>bqk1JXX3{MoXk!Wc19589cl?^KVyP^$RG)~rTR4{ zXwEBE(>;gXkmLqt186p(SA%Z9JM0e!{g;E0q4yy~quGo8;KlxngBK_q?;pOLj%P1s zhvV4`G#kwZ)6wB*IvftCFZu_EsQ+>>h5hLW9n8kVmoHy7!C@;>rzBZ2h@)*Ot?N}2 z+CXkdXI*|XEQiX&?x;J|s3?NKyFA~U4ApHYGHBE zKM40n`+XE127_?4KSSZ*MK}!ygTuq=;TQ$e@hsRs91jNj(_l0R_eUWd?)QUHe+Wk} z4h|Z$T}|Di=o+r6qHB=O3PZ+R6deW8xmMT+XTlU>wb4&iH1@C<-z{T5u8pTdf7ijFGthCY&Z*t zXc(e#Fq#ef19&ifdDtHv9PSTC`vH7`rh{=feG!Dy!(e06+lk$TvN=KYm+b|wsaYd> zbLdTluc^@lo~!0Y-C@qY`v-p+fH0g*;dC?{4_=P?+xluTii(+DvDW00&6Avi>0fhI*fn&B@X znTcPsEQUJk_!6C}!j5Y2Fm#lQgrz^;ku`SH=)Hxn>}5k;*QU#XEK ziV!hyQ4FUMQWI8x?Y4mW5KhF}t%yZl6!1k;SA72jBOHQ6EKDhYgd>$>n{0L{AuHIcMK-r=4(aoA~;3SHeh9iyY}gp&DtF~&6ZO{ zI3tIMVuC`DCLxv6Kf(c|6ELV@pe&se7$QI!feg*pqUiSt0j~`*bdUD|hq5PI#<0pM_yp>ZXt| zEl@!I%Sek4azr^0f>xN~BnAsixr7H1UScLjU4HmczJJSKPr!bwg&ox)g=(%LTy^1= z$|b-1zEUJBg(s91I7bl*SV91dqU4$i0gNDBgA@l>IGzItLOh!xk}n)X9I!ormuW&6 zjG2+yLY#shKAy7G_*TB(AmQMrW*lMXlVk&!JKr*K_ zwfSeO>QNZV8aOs02Czg!%EX)keE6qp4XxXH2F?gxLV}~Ur^DzABk;&=hx5U)Mgm;m zCHiL)qt?a$Ou)yBW2=zVcO3W{2%1L5PkDNDE?a5I4@J#1M=_GtiB^>gfV5neFtwGH zRCEf0q2L*03y@Jh)(aFZ!3q-0D^O7~g={ea-}JsI)#I%#63X@@&wPQ)G(r{EB|Fr@JcJTvUW*aHO4}B#D%BcZi`e-l`^b46hCBw{Ju^S{>iDpM*^w}b>#3#3n8yNF$CrUA|ZgFC8w9_ zGGEHlE_k1+5mYLC4$$XfAHj3$fTP<2~3YQc0xAG9Q!$pv`E9y>3zpg4@^WZ?2 z0P^R_*|F{ZqNWl69njWxT)#UQ_Itxoq4I|$W5}%%BFbxl#3EF8>;umq$@nnhBCQ@+?`(xl-0s+O+nBvYQeH6NGn)PMlCfWqdc$X?`fZG+-~ ztW!R*bIX5E>K~yeg(*7Y%UZsOdaY88~0Z41Uo*rb+7= zINAkzx$z8qw<}wFJptd`+<@)}BsjHu$~EQJuivzufn!sorG^B>tM5s&G`|7pcDpSU zuaty)20m$|Wd9XOx#FIYWNB0|pXG9iz$^VMNCk*QL0bhA5Ta$WCtZ26Fh@Yb1lKr< zz!b?s9T+Zg%n`XrBSX!LH}B5g9$mb-{B-p8>*PAV zh9m?>XD7Te7tcCy;wqaW5+jCa7bm?i322W&dPRFU=K7!$LIyi96$T_9ot`zU9X+fa z^d(Iw>ZD27!SO61OIeop@)Ji*jD+s%>HF7jE>Dl%z0s3whEWuLK(l<(i8p6r0mmmo zH%>ytsnBZaVb!Y(xmeYgDVW>&( ztU(P_foseBG+^QN6(8JA2;(^-Nk%(4B301Q7e1hv32`fUm?Flw@uFX7U(3%66zes1 zLfNU*&|nF#5TM*P5W)&E5XMw1%LIH@Cdv1hP{yaskFxIPmIb7^2FrDK+pgXQc;>W? zsjMjETf3qqUoCEdcUuNgK|Q;=_Ryqih5P#ST+@Z_nJpD_Elys^R0q=V$##ZLIDv-pT|n&@7N7eA0BOZA(X`;%sA8X?XKFcKd$W2th-3oc>w z+<6~=ND}rA(X<2Dt*S1B{bsqBly$(d+XIjS z7y}$*W=iaFLlMVwK7a8N0muN3DT7f2k~ms-Tk4nb*wTA$4e_M|3bEMY%jAxN;&idL z>bBHgj~4^I`3mE;XelowmW~{U5Q|t>NY(%|w4`0|hBxVy)*hb)Tp@tD;JuE)6%q#W z#R3&!@K3U@q4w>`crp?q(gi=F$TILikk5BcP8-RJo>+d+pmB$MmFoIchh+}Si|ZLl zrl=GJ(CIW0<m1Ex9ak_rIMDOu0b&%s+kR_5-(Vt}$H*C7?!son%A| zk_LWeU`r97%NqroB1U!e*A$7BE4b!n6<@g(b{uj<-9EQ3j?dbyeBpa>e3mzGG6N9& zcyV#2TEJAQF6|Ey;)#Fn@&B9~)xImcoI2nBo*`&m;`jKrQqQ?{{4qL6BcDojF4BQNYK&H)1Ri88GOBpAI$ z5nP|6Ac;dd0fWB!nj(UQk}bUF5;Dn{`Ea1#&mfL6f-V*WQI0VGlJB*K5Z{W|%{22f zyZQVe+-{&hvHLdc?vm}E`P~ov_r~z&QYUQ9?n;;VnVs4|@0ryV>?cOwhS6=J-7}l} zK;H+G7nyme-amULJ>N?NV+t?>3vMTaCH#Vy*^*;*@a=y8)!?AdSB1Q;U?Ywt$Wkzs zj#kXXtf2lGRXuUW{Z>m_tk8+kahD!qY#{^J3miz_@eK2+kyvls#mF}lSYW{tQ3~hA zHwmr@W(>t$-JG-&>&!%ggd;3K*2fM^agVS1qXdQ>f@qSF0MQ;dAy9eMVrM#32s&B4d$UH}6QkBdi_lVO9L%XTEy;EZj$*zlTvYg~8QD@-~^%_wgG- z67u;sB7=@{QjNb>ViMpu=QO$J1!9CG-)UMPFeflTvn-0%kA%IzU9@^u(ig?`vbFZn zVrr|6M5_HjDze149^U}?$b*7fQ^7EldnX)C6*^{?aC|9A@e)Un=-rWTI7@z`!ED5O zBH}P`T+(IbEl^d%qtf!a@8Ff*PO<{9bWp;M&=EM6N`vlkbtE=1SkUcucP-&8c7?cx zSjvD$7=wWZvuC+@#lBM#N9+8vs0GOt3i*0hp&&u4A0@1vSSjgq&So?GMS|D5O%5HV z4k6qCXb(uEh17Pg)C4AsPwt-=VpVldxZ+h`&HnB=UZxS+d7Hp+3L_W?i0tkG{_{Ka zb5DDYPtNwhX%eC{8Q!H8x%n!+NZx4WirC)D=w8)eYSMzGoX8>s4_F&iN;GUTDR{MDB_3>nKa0HX0Ib=H;Swqj*jA zEUl2Q8)U4Y#RdUu!MUZ3l@zZOuoXhq;SK>J77_e;orJJSp)8kLydNwHlBjEaJI_)9 z!wNL`%vTwo_vF9l{Ev&{Gi647e0}!Wt}YiO{F7Rmr0_Zhkgsp@=(#uqbHsAFFQQR6 zD}DU%R(us&BHysGdM^>42Y%;YARm=xSl@CwFrlbs%~z0{|8XSUXnYOV=IU z&pGJNe8klGD-^25jWrBL!{OK*m5?4_YsG_O$`A}eGPBy@r9Y>l2{9U7KEf)TgHtF} zQ%?tjP&stAG8K!g9QPdSB0o6CDV0`JQ4HFsvbCTXC9VA&jY@4w-F5%aY!!0IVgsFb zFrR4}(@DuJRKZbPcyG1}g|EI^g2~U8;8MT~*5BX$-m+S)G*(raCe~_R^ls*=f>Uj- z>QJ)g=Bg%vBTh}UUac(Eaq)MwS4}9MUzX}t9^76v#H}+}k201-IKHxJC*$#Kp~#tg z4@?ub$V0;@M?hc!9m*@iE@R1C9AA}bZ?^sueXt3}CPWM@aTrF|kRW>mzsFxt_>O-; z;!}w-Vm2i+SzDITQjHOaX86kfa`l4BV1*P0NQYo^gw0tA1zAQmi!I6AP|Yb|!{k(g zX^QxYn8WA4RnvJ}CYCL)DL<!&JXvM~mg-PBFvbA6;7;qPF&x`ER z1>bRnEkj8~#4Z<)lC$^-q$*4ex}zhe>~d*=_=R*XqmG0YfSc(uG`CJ+n&%A?~6tHpK%lkt4A!E;-X4!A`oQ<`vMiqn$R63k9DVSRM|=lk=|drs7g0fC6e zf1vtRhR5eLTZn@=5k(T@9IsFesO**ORJnc@3uiG3!H$K-u3$|GI?keK55$QBNtmM| zphs-1^0~7}jHkla8`-7}LoTB_Hmj@no@*$Nz!Q{-LpcC_!BlW)5J9}$%LiQr^qB8_ z;yJ4mYi~&xI_5A$efU(w{`Q{-0r<{LF0S>6%s3FLCOeMMk z&%i)(+8=^7R**!=oZgZ*R*>{~^(XFlWbTkc4=vL~B>h*ksU2xv`j*4Ymg(! z>kaPXO?{HZld6SqgQ-ul_=zu?^F_rfskzsZiCELPoYLw+1g$UUhcO&Wz$&Ma|kZxU%*euE5Pf z2hOaYbyJ^j3G(xo6 zpaAZX_#s+Zi(4IHARH1YB1=rE@bAeJQNbd)j%8+|#WIm9fg*O67c4oC9&J3^;2G#G z*RSpVoZBf`bk&P>Dmr5Q)XEi`2HJmuJrmgU|{VYzAFRE9^XG3Yq(F${F^beI(wP(aOG~3 zDA-x*G^90bXYDThf!+O9e;>~2|5~`JrCVN(#3uzZMS<}2-oYQKWsCGX%3r(#&R(k7 zA)1(1KzqBTlX5idTc6}k+;ZK~S)VHSN^e~^VJ%%&M@($uFK4H@9FuLi(Q`E9MjYpm ze3(Ri`QcP`E6<4b2j<_0W?%1!tMHo5!>uyOH5+SLc=JH3)*Fs;5$e+jR|%*v7f>c3 zTF_`|@6A~BbVSGD;h|U7snL=V80End@AHVlE3}?~j3Qz-pn-|YTdq5El4NObx$c-E ztqt2=)^#t6%kqGL&sMY*jzhe{VFn{UGFSTk1d(@%G8hM_+maL(8)!OhCsmmjMcj%= zqG)@M_*?PP-UwkvekGAn8P6b4sWT5835ZMNdr0-ejh zw`hO(1D3y>ea>KkVA@gdIwH_lQT>$jh1`YX1P_v!G6JzkalVxjlL;DeJnx{D48`d| zO7T1v$(G_IM7?LRxLr&hVcl)ynlSglzzOM;ty0s3B!w!rY z?&vqWE&Z1VNtUEZl+4%XDW8(Zcf?emP!|W&<>_?YK!=JJIyo`8p-|O4HOWMm@XPrX zx}Jc);FzH~B7YU^p)3Bx=jvZ5BRHPRFV_nce~c+)n9fA*#KLzG7LyO#U!z?-6yuY_6*Mr76cR>r`}`=vkRlWOrmQv;GlJ#Y9%4aH#i7X|Yd+$J!h z3BWPe1>#)Uf(v{q;|VDsSj_5+)`# zMEAq0mc_EKl8Un=ijr%QKK~hrxVYE@F#JbGnLJDbDToo5>5!~tW^0uYT`n(3v<6cm zj-S98Lj-)2)A*aNNEF9MMC#oj%_d;f@AsE#gJCJIvU~9Z7Fo9BC|X4ag@OnDcR0_l zsIHk-v6w0fg93_Hh`@+XjSgP~>r{*~+{I+k3q?$iihHV!w}fG6a+%k*Y@$3rot>)Y zyWoU1Xd0+%wZ!>49M6(HEwC$ z^=;!FeLJ`!NAH=r3b(ULW4~j_%0b=&V3pbj5^Y}z<< zJ$0&}eFCulx@K9f`i#12FkgGh&BGAI3_}@3sS@LAzYcHg+)3jhW?cvF8W`M=RX!-4 zbY1RkCD~k`U(mLqakBtZHV;<3!cla7jajg;9P{XlxG^GBNt5a2$=PaTf>nKA$Hklo zN-FZMSV=B51q-QOD`@BrJSf&G##2R+mAlv+!Is%Lb$%lm1FijMX$&Y1Q2?!rek`w+ zSP?kxEVUBjy^>dn&E&;nCg4zDtd@H##|dGs&H5c9?8GDk@XQWMM)4|lk(6(40;R~} z{ECiHAYKmsR?8y6;Zrk*P)~VB$-9YhD=)CKk+Di+{=Y6qL47UnT|Iy+ zb$e%O$(_pS)oyuogOa-*?ObNK4Yfy#uh=kW zJ?(Gm2(O5|q9VjZ9;COzMWaMz?qCT>iEP9f3=Jp{nayR##GQ-AJ=5vH%*dAxh?Cfo z0!0L@FKrc4-|Ma@Z?RpGHb^aVfIxo%nHg7ZJaGNLK(UK5EAqoPe$HdX0%p4QU%i^4LhUR`Co208}tZXL59Hj`Hx&~Y&4(dm^r4?2Y4;&YB(AOP^VwS>f9JSqRMxWqVcGMVot%Z zSi37Pw-9+2@_ELMMiC+})^@7RE5ujnSBP>x3b+ZUlN4F4%hrlGywSn#$}gxUB!A=Y zjm&2*ZF=-26&HPB?e*gV7>KW1e{DkIs5&qz&5EA z3a2v*=kS5LCrl1qx9(KE=d3)h?K}4_1nRcO-YXBj>l5AE*<>k6mJH&^GRSh9EK26m z?L!wh1vX!ajQ_ zH&d)rq>{ltet64!{WiJ6;sa+6H`wCBWR?)TGdD*_r3IjBxv*6)qC}q%G>IdWk;5zW zzU}e?-u1fbxOF8>f4g}RBSsgAJd&yB1xYf_0^)USE_o6+E?r}`5H`nI65iX~&^Xl1 z4TI-HEF%o?`z`kuyuiA2V@k!*cT?AUMYBG6XsoYr8W0rHw&wZ3y_i{*E(mMj~s&?E?xi-M(9dS8LWIQS@;;wd8yq zPPgxts@SY!s__ z{|@)Z2Y(ujhJ(>~*dHGB|I{D$hx_|~0{wgLtM|z$gXB;BJGWKr+#lq*x#@k|5-QB( zfe|YzwQW0%GL#Y=%LGCT!x|#jKQzptLcLU?G)VI6@AEt4U1O@-`nLD=YwPC5ggdom zf$k!OZP5A3tq1-U&p`K+GwE0mpzGF@ z>+a^2zkY3XI-M3wv08^sfQ4OeHJl;_2dyg{hZ9gSqgqSEpo~}2A)Yrkc_##VYQbp` zEn+6WbBulkG3M%rff28&uNx6fU5MVPn`{AauufCjTMg9K8^`wMrlS9O1Q%adDk=bA z;qDtKNm=l#akAL7766tw{(wX}V_FHtDr12fC;;%wW&n8^3&6etfEdAnO=dsSNz9MW zK7M34!v7TN{S1+So1b%}$Tbe_ zcL~Lz{j;`*^4Q{ic5;~?lDtDd8{p-1RsZNHNu&S%t%dII=qc-e7)5u`^}c6={_h_Q z`>y^Uj0Oi!`u|ZLq5svr_>8ROnb6$9>i9q8t*YQe?FJDfd=-3QExZ)dcwAWhdB7kpuw#`t`U*cM8rLa7330kV1 z4{gTOLgTCKa~t9xS+tbrzd62fZ&F~x{2vSl`-S;`us<3<&Hu-E#QgstW^y5urI`#m z=bjFUQI{)MO<==6Rnu7B4PmA9gjO5Q%p)+KBk-J8*aOe=b48O^#z@Fty2edjy0lbK zCch~lA#tEq6P>SLTc&jHTbahp+A6fuzm>9a%2P6eKzV~|@21#p*MXGdsIa``c=5(d z__pneZAm4kk47f7yzoH#y%=B#t_^lV956nLX84Lt?iNT`6pUiS%pQ|AcwTFlS!UTE zP;~xFJZ1TBl5;+m{2va-Mf>kye|+#H{~zP2_5X08=6ZmHr&ut^xjFgg@%pHZu5H{t zhV9y3=ZbPuNEd~{!0$q7t zMY{U5kr&N6B<(!G79Q1jT3Bl55$LAHdhef6=|ZpgVLO+wEgJ{buQ_IUKa$=Q8h2EYdWzdt%WDC+-% z!^0>2{}|70^uJ+{`!xUz*d`W$Dg0yt{0o=>#J7Fp)KptH294*G5y;Sd&DXPfQQrQ5 zBm=g6KuisLZxO~J*olz^F9)()`jSKuj^`iKP=2IXd0D_e`^=GQH zbt*%VtO>O9XS&_TPTV|I;7$pX|TKc!YD?_Wz%#Ll(8(e^6z_Ddwqn{pa@vH}w4L zgCCaPU%x7N{WbGe`25vp%j2)%`278$PBm5by>_?INxox%MC0mgZ5Mf<;pwQa;@ph@s2=ng`wUn%48Hr1|=!&;@tE6-r z>5$1!*Z zN8ffnMZLUClknVfCDeA-DqG>S+fZKC;JB;BaHZ$Y5`z&n-jkA><8Dq4TW4?VI{!!H zr?I_q=$Fmqb7NK1%)ihH_*+|PfcD?*?ly&tY5>2{aBl-xq1>r!Kx4iK^0t~O$%?6D zEtHTsUY}b6n`?CdOLD$YwOC^F-t$=65aRrr^8u&R(uW*loPHN2!ByplZh%7q3X8aO z3SP;(^h_|iDsCldz#);Yz-mZ#JLpS*QfF-;-?&~a)%WU3o#x(0|8lMT#$XQ#ZH}MuxAr-f z{eR|o+hfK5?~nJ3{=b9KaQNi^dyGf;|ISg6#33YW`w%D>soIerB``#!crH|I1y{QK ztYebSX0Y6B7I4rPhDZ#flb9hg6It@DUEs=X#&Web=mKj-_JMQIQ>DZ5Bo@ZAiv4H% zc)ZAO-_5fz+RjN(6`~{Dp?Mt>ap(~{Ifi*+{94R7k#$=5b`j528jA~d+|3&=daE>U zhF3BD-xg%kRhtt{*Jy@XF$3EcsOhTBQPVXxp!QvcqcA@axP)mvTj$5+y46ga1IOQy5h7WvQ@8 z-P5qF;=ab^jkmv2(px;MavJ9%(9^sOQYb_7%N}Ydfd(dP5 zt%AqR|1lW$4@>z!4xi5dKgv@&|9_U}saMycihK5Mn+-r{A%8Gnx(YT10P2Xbvror% zc#TP>AE1IV;#Mm!ZFJQR`UUKm0|Eja@m&f<@nTnn@`-9H@uKK-$r)s|YsC<9 z_p1Olo&P@=4vX@CfAA##ALZF9|09edOFw+dZ(+UHgMiZH^n?fr&MZU**-=2^JIt6! zQz=fiSkXW-gh<^3@ga%O@95y5K-@htcyosXgH^{c%zMj}J#r`u{N=rT-B)_gv<$lz6qO)?O5kGBz?>0{(5}v^*{SK83$zsI0)0 zmxzlfaX0pBgF+Ua-MRyy z`u?z{=RftOWtIm>zjD1lx@6V)D)rg&-Do(s$@i%1R%Cn3&xktBHa{b(JJa-xsN1^- z$`5G<*ln(i{>DpzOPIOLQf~4eJKSMc`dOXzg55ou!4uZWSi+-S1lQI1>tulzcW` zUr(dNTlc&G@y!1`PT`)`02}82Xn!~;+W&_KPv?Ih<+(-vzjMVP_niUQ36N1mp0A9l zuBMjxLZp*V-`V6i{d|JOO(1A>;&06Mwr?ve@cef%0l=m9eU z+Eb}PD!@!McfLhJz-HO~Hf0R#rjRf!E;v=Nz4`u3smc+o2YT~}iTIR)KHYM<*XQpm zO}nZzd!9spmDBDi^Ikq`t9;A(LR&1w^Lr*{XcaJfmF}x+a~>}rD`ldBYYOZ6RbZQo zo?5;F76CdXhOzJc(|`;CZF&K9RqMMXM9$$EaVT#`Hk}u-uDEM|KrsB7V20j{2%lZ> zEBGZ#>@=YHwQUY)ab2-I{mGP2&%?dRj)VEgJ3EL@EI+IaYh$f)j;Wc?Fbt4&|!bw$gRt)1Sh9nvOU zFTl)i*v-A+g_!&temQ8=*8^)zRXwTF^;pVZ?(nG+TXjIjwVj)M$`zxiK-UkU9jL4h z!(5@Y*-TNK+Xih$GSmj`Ws=4046;QVv^)H@xM{Z?WRxY#HfXOb+!O}8btDVRb3l9Z zEi%>4uBu%O|AyK|I28n|-@IxUWr7F5ZTG7h?pBps&0=r6+l_`!NYQjOsuD=vc+=Z% zgi}S#+H|v}(NGY2--6eOA+qE$U7S>tcRxG(r2ki(sm`}cB^#{*?Z>gwsM^gm@$hyE zAkTP1O?XnC`L;g@9Bp`NZE?8=o-Y#0?A*Z$I)6{e`~HJu9^)BD!V1uMDl9p*yS-@mmT^zZsKwEvZTak~wHP4Pd6hvTCC z-#>h^{~zTs`+ts!fI}3(g1Ib`eo{ngHv;P{Vm{5)mG|a*3onH;q3t*f_16>ru}e^z zP|Omt24BBUY6>zq2VcLoCCsxdie%EKf;ZBwlbT|}p^bu!V7BJ=Hu@qGB#|sWq8}+D z6VTT`RoHaDh2qtuWvK@guij$1LFwp1Md!1wEnP_Fmsm8(!X3+9VS5qBP;{{=bcb(tClJOsIY`^W6Vaw9$YNY?~cqCwh{vQku z3-`Yd`}^blC;k5zkJ10{QxtzXI|TtjoNX|SsB*JVqy1&d?=7@{$tl!%gqeKX!w4n- zqHYhcV^8+`JC{(q=68uvI<6qa$OfI|!YJw$WetS4hNwutQ3XFO`F>|lBl#~C^~1^k z{o?wsKk7f7|9F(g$baR|-XUm)2#Nz7&%qqC+_>2-ECKLVNVoYGyE}f5`(tQ` zt!+K22t5}$Y+)@*7$)H477*NpTLE5^02W7iIl&3avVWI^Xaa@@W3B`kS}NVv0as{k z>{aRBOnoNolUMJL_EgD#o$Bt+&c6ooe>^JL{|Ei2`2Rd&iX+Uh4w!;rsH3Dh;PlPK<}KALH_p-56b?Z!>98fkMdN-f7y9;A2awXPqAAa`c+EY>ks@gU3ieFFQ1xw z;FzzRHnkC7TN&e3^IvCS7WSXYb^1{D-)J-_t^W_6?*D$2$Jl=+$G05sEq%Tw&9{}z zx_Scpl7d&dY>x%RcQC#EIjxRv(DB)B<+0W68r0Wt8BM^iaz{rj+_eR`U@X0iMAYA9 zDs~fJ_FweX$2my@_oMtGY+d_2$P7nFcCyEoY0rEY4f{`z6{#B~S6JIaL4;9kZv4qe zG;wb8DIV1b2uzWh`lS;V)$Pq`e%9e1$@J2UQnzrlfkB1?7rwY>Py~z>4mdrErmIm~P-m`4d4fd>=>aiMXlm&XG9{ zVsUE6_mAWM_;-Ic>whz-59R+E9PS^M{6A0m{~qV5^8eUZK0T)YC%^q^i{+!=|6{Lc z@8AF9Gjkr;|C7^Z>l1%wSzdkCFE7%l&-s;ArH(2vPDk_CTOal-dM56E>d*9J^-xFs z3Yz}G5B%MF^}1R9-!b^7f&YJhSX%$}2T$ie9_6Wx|B=jlPk}$)N!JmZZ_2@U2fyBv zy?D!~YW}a%xOXY;l6>&|kAwcOU(EkFJUDoo|Bvxh*?;OP(#JIY#C4>W)wj(xr#I#* z%65{XSl(=U>x)ry5WsJsn8vO#LGuifJKe)-1MxK2YGiS&(pcLX9!%t??{TCuUH`kf zyPuxIQz!q`H0WJQHhr-5|KM;`wEu?tPxpU4%2Or(^>H9M^gt^CXi``dmediZ3?wt} z(z*rXP}GE;(?wj8O8@f=Z{A!mlG(rHPxK+Chgk8ewjXi9Z+g4+dY|4gv5)R6z3*f` zPrBy!^)!Xv)D8p|tbObPE! z{D!_&!+r(8j+HR%KmNRGd&_mfZn2N|Lj19Z_~Qcg2e+YqHJ2s??D){rVmG6Ri0Qst zUoM4|UMD1!ltJ<8dy*_=tb(-T)Fq){^Ua(EpRAVg7V_nI2rKHrj?>8<8eO`81chBw zP?J$2Bfr*gs^#!-#>luyO2HT0($O`W1UvAu5niDfQF=y_sc6V~(KOznv!RuTjHYO0 z|2=H}kN$WtEXDsl<^O%0=K=D66xWWOhq@i~xh-y*Ms`21itPS$c6xdA@#4pc%&1;a zD@{ahGjaPXn2tv%4t^hDPIdF&_@(dY0o*wM$K~_CPw_vG^Hll&e%51uFCIW8GV0}q zwGHC;?&Ub$(Z6S0cBSyh0w#{HZ}$N_d{&QkbHAze^9be^oR5r{dDs7?fK6q7so$3BP_xIE8Qm};XZNwMi1gk88!5! zjQqZoawjj}{MYf@kFVdnK7DiX^ZO4!onM}ueHxY6sSLkB`+t2uR72X03$$xYmCelj zhj7mz7FY(!^}PRY=BRm~r)2-BbpQ8p?q5Hf;y(`e4+`;rhyB6R`tMPm+WTK&;r3S; z=^*@fFum8iU-cyuh4cYRydw0M`@II9CBJT) z#G%lb0DC_->uS7<*XdSCiLN9@sRjNzFU!&h>}YVijuW#=hcr_m)$$*G zVTi;qI*Az~GZ-NHVE(^RDgJMK_!R&BD9={%|BYe^V0fZh31k$b=kkc~!d@*F&08`Xe|b}?EyYeo#KZ(X3Dv%OLAybWyFnbxx;W{r25lv?lo@@* z7z`GCarzpG{BJmkJyHyR>2N_-yoOx7G`Gp>D_y0yn}Bb`SJ9KNU%&Y+EWzseuWuT= z`vH*p`9By8$HU_JkAuNe{MVyATibsp>f*SEu>Q;yWA|bEDPUV#e)he1ceeYAm+bux ztUjA6Wt-3b+Q8zo5PY5zyo6+ZuI~DqyaID;4@6%9SlVzg7u3k=g>9DSFk{JE9ADit zSe5SjJii3KibaZqFLbjs0Pgpif$*SE9uH5U1}zkssnnXj7?G2*2v6J;P(YSz+B68Ci zW+WOtXK)&MMWMYFVJ->P71X&h4QCmK*My@_Q)NT773yu^o_lx1*fD2;e0^2{DtCn9 zFP%SgUZ{eyTUrVknUBAq@Es1r2wg)W1$5hwn>bYwPf z(O7Z%wFl8xjw5&vh>854VlJ1;7KvBFu6>nF5s48)G$3Ic?7BGRn=K8|F{s?N;e1)_ zE|CkvxU3q%;;<~eBeL9bFqX~6VOci>%R5lNy8TMRZ_!+t<^^%;8Ga!vm(B|#uQt)k z&#`4#0L4H$zlIikRO%*CO@q|e*lwx6#kHF!M9eD&^Eyfp%JrSHWGg&Uwv_+f`J+nS zrZyuG&G41!bIwhCQA?7HiCY#KS*Hn(8EspU$kh5^-|}~jrea@QZ^kxl#u{hUj6L$D zP2+mU+7_NPy}GtHzm3kUS7ybx4t1*apCkP&t;F=uvZ$0j)kr-SSvPf;s{+sg;!f#2 z0(R95#+=ZpkI9y^wDYCU(U?GY!oOwD1^07mE->Dw#;C|x&G5O4PX7uFGN7Rei@ zxxjAYF98x)TKgKyy(b^g3iAo;mAZHax;Z+PC<+o->DZz{*2@ zIbwP1;;L}ZAS@V5^I;X&f!o<^tsQE4Rk$^J=CGw%5c$m1PPs;^jDC-q>Rxy5Fh%Lw zelHfUjL8o{Pft;|Q z=jkfg&Q*Osu3ZHsP8irhzxYeGJMDs#Oe0(NI_fXAO%{oe_r`cs65?1Rg;xE=a%gMpXAda`()wjB+>g(0f0!7O%UG#M5S0@z##_b8XLMZiJ zv~c(JPo3F%%eyW%E?2i+k-;E9l)g(sWNwrcYY5Y8^W9#5en2q%nP7(A#{p`Kqf?em z=fu|mk%U0jit2&F(t!PEvjKsviEnbFRt?L11R zFlvM6wu8iC85wMuGiCnULDeeeJ12Z^Tg27+U)$jiz5m-kJRB7D|I_~OV?A5zf4!&j z5E@^xT&>o(*Q0mQ_{DYYR@%O0uYP|kmG87)*5dZpN=QWuhOPp!ytUl$B8j0TG_BE5 zyL`@eqN;U2+lcay-QC*QLdB647JyBLyZUhpqP(aSwN5O2uTzjE6XV9@mfUgZ+f7Nr zk|2rPq1XlOA1^M>&W(q*-a)I$E-$R2G*}=`rv+mvt#D~dOf+8<8-JU?@H-g6I6%bU zzy~6Vrrj*YycN`CvmT71zm;VQFI_X+SD_xL z4Ak_3mY=Gq;)m0OB$X1y1fiZ$mqAX>wvFvBbvw{S_-gEm{tkarN&+bQ&u89jsw~$cUZLvRJ@$tO!>&5Yz z6&;}8Pr$|TSQ;eV ztUm7UnojChRu}XuOXvH2AifD9<0WELsZV#SK63@QtE5zf0+x`8PqxWV6|=HOz@@&3=j;o<)N zlmF*29^wD_fLKOib=i_wathX!J|A_5gX{Nc?8_;x@GbX+nlNW#MonHxuWJ6?KM%Xk zJnYm>#6r})$;;z5ET>y_B!0!s4}Gu`q1c7BYfn>={9;EtWlj?*W`w6qBgo0C-BADA z{xkjG_Wx;{_y;Z-t0QCyqFjW?sLD+=b30t1nH$~CYqa%X?HY4I@XFVe`iY`IMzkrjaiNTjnHv1$LzNk%e|;m|-Q%x+RsJLrSPl|1lhAFnl4%<@)8bH~z}I zo(05nwR0e+?;=UAIK(JPuCf%gSA#ZanJZnLhTM*-;{(Tuf$iuzTd#i3Nmi0jGw&)aqT# zh2l)Gz88chbDcB}whB#WYs&S-RBR&o8}aTRRW_9R8}T)B=JU6?_N)1-q-eWpmF*<8 zGl<#aR+gU3jg~1jMk^EC0dqf_@l+MKR1Bx~4i?AOVv2&)^#FNZ5(O2LDK#m+9Fgb) ztm3arfIFQ|Yy0Fd5@;coX`4OUQV17GqDZ+~2#mv{C|$tQYzYqRKpTxj!FlTVO--o3 zq_Y#I<9dDy-*mXTB%|{!BT?yi#iZB!^J?!UvZ!SLM|j!` z5MjMb{@?SvWqy~>rug5%a8R`Whl8j5uaENh?0-aFn2GyUJV4ceVfM`+ruFCTdBoG|O$+<@}oG<)M>E43td;oaCA7Ez;iSVX&l z(jb09h+W{|C$yG?_!Y3^oDm$)^ZNxH#lj(8p>-WZf>)5CrXX(~BRl!i^U%)*{eK_n zpEl-y9~_KJ_kTa#|N1zO-v1#Otq|biv^Rrl$;%l4&u{=40+_0#Wf?(X_2y4OMq2@| z4Ro0&>UW2W&Sgf~YlPC{Bwbrxvs|m`_*sbshxI-c7Qdt5enM-xyRY|hH)51GW`d*b zo?fN|Q53U0`oCi@8TAiI&!U`kHbz?RFi7DJuFx7J&M?#y-qH!bJ5qwSg&k)zqx*fz zD5vNqN=c=)J*g~Z_q(IjElIP*R5nu-;27X9$N5)UOShckeG&TRr5o3tCup?W0Xru6 zwMf3MMK;R}+1)sA>|V}DvNX2|2(zxXXB&F-T%jbGi=2AenC6`Ji!t^M>)OG{ zC5+9i)I2AucWp|RWtu9aCJ~=|HNx%5IQ%_7e*13$xdCXo&K@%Ur#~K+^1qJym9m{iC_E8FXQUkz%Bv!J|%8P$2PPtCVRg}Q6OH-r{a5r+f797tT)A@=tTD;=b z3))=`oFu;b&JEGzKN1{+_8w^80(OP(v?&d??EY^cChO+ElT7Ol0$^kO->_eb|LZ^9 z|M@77ykjqll56l&Hbu%urf&R7q#rayakp~ndo!+G<)G~FG#&ZcJ+>=Z?RIthdZt={ z3g;FJhA*&U7-5={Bqf*|FS*}OgxeLf7jM-oJC9u6DS14$twauv=Upz4WF~RfzfI9{ zg~)NTOhv-KzYMyAmu-(XZX-pzZYl?b!4xs*H0fPxN`b#X!IdEfWwO2XcI3#ji*^co zz0JDhq~+VKr=W_GCz&rn>XU_e`=?I+s}lrw_5f~@|NXN6?_l_p|L0L2+x}DMmA5nf z^d1MFd^-P$;Gdc!zT&$&-&?tD;yJlui<#~*2hu%CQ!U@cE>BuG@w~E^k8Oc{&=-v<9+cbUY=*O8U6y=ownZ!Zyk$_IRF|AW?2-i!7mw%@CQmV^goM9A&^2kwymzbeYUYCw3*qN@y5WhY>=Vfs` z7Z>#Ic3USiK%@qcK-3-1RB?lNht*y1Qv@=~@uUC>G?Snz2`hS93;|64u!U z;i&A~g0H~ps3mdK-??QvlUx#1-&kPzHt-wR0D=+ znZy)Tz!hK5(bixogAC2GNC5UhK34^Nusb!!Y8ilF1tT1SVw*dErn~JbjC@kLQbF@^ zZA+f~f1uqJ|25}d+Fw979_2SBc`5j| zmj@yg_*|c_>;kK)ql_hU6eGfCUYbxgCy4$MffQ1Dosf`<^WzAGD6E4Wq7=m;iUTZ8 zrf4u-9REXjQ|ekJD8%$m4GIX2+FC+_VK}{0YYIlOy+)3ky7{jYKt8Phcevl*AC>&S z2T$>zkMaoX=1$YwulH7^9ITd+s6aU@83i%F5hqlkceS-LiioGmPO`)-U-8MB#RTX} z-s>>0z04>Rl;EqQYl0anVr4hyfHEtR%mRTmVA~+OTg)U3q(PXCgD*YOz;*{ zCKE`x?y?_Z0Onzi9?;TomV<0n%1>l!oM0R$g0`Y# z{+7Kh_%Jc!>6Uj$t=inJpsRGEJ0z8_O4O9E8xhj7Eu$QM6)i2mjma3nX_<`hG_C<5Sme(=mY+{Ow}2 zVStLxfd6|f!u$;(< zlxce7x!RtgWyM7&qK&c#(8>J}VakMiX-D6>W*z0)b+ZqM^Xd#OyRmbVn(dq`f4?ao zzPCl3>ZPnNJ5$_Wb!ix)72Zs~4MehlY@m-U`8%gj&N3eLX zh-j_`Rb1`2M7-Y}anhWpt!Zh9?Ixemr0}#^E2Jc>Mw+4qdNUElmZ`|KR&27O3$8v9 zwd-*3;w)%dsVNGL8RNH%yGc4x$pj^{src#9hQ5Jnl3+GkVqTcH7;EPifFin%x+;zG z2Gyhn*k_(OEi@QfXJAzTUOt>UGnK8Za6G@2va*5yz7>`3VFNMD5h{scO*I3kP6VsM z&M2CrLB*M;3VTIw`P(*gPvhKd-j&jxj&dlRQ+c=sYo6Ey?O^mde`4vUb-3T-sgp*tym6rU+T&bXB0+#W3mywZ-i%XBxyC8o)?QhY~D{ z*9FBWTp>WSG>y;_#SBJ2kR(efU)v--wIyc&FxOC_F&6W8}P`kNSG(z@QI?eK0JioxeSb;?VRDXCF7sG+oTc0Sdp- z2n_m%mAD1Ta*AUa86v&IFp4U8TdRGWn`xHj92X>U0GZ3;&Y)Z5voNihvt`}@?J{z0 z8;?%OGF0Iaxi->ySsgb1_VR%71#&32<}L{hRU8_iW3~8r*MCb1XWrz)^Ue2azvSe7hhzhFRAD1ABKlu#*!suIDk>K7Ofl~on4;3 zxw!o9Irs*{u%gGWZULZ}W3>^4kawV>;|-B;K~!O3NM6-_haX-wuD3;d zg}%B>P}`!ni)MZjywWMhWqy@{tSd^;q9|0iGgxUx%2!y)yszd8&ipQ_U9bbLa2%cp zpF*Au#w}xm+9{noeFX;n;fPC1BO|>~>{PO**RQ0>Um-=*V#P&2twmgYy*bFIph%;lhCN2=G3WGP_jz|hjH2t>ShWkXR0I;y(# za^s59ktm?e=UY36Q=zX^Q*Jl5Yzc;8+dwHVTYb~GHWT5#?Q|8C`J)ovk7paeEfUJkAX~T@zPl8$GenkH+>}Vq1*{4{ZqfFpx+Q6> zF{o`MN3*j0t>&paZt@28;|SvAg^q4}%mHkSXh~0Oz)jL>17e=U>WwhGc{=U+Z}s@& zKTX_2?~*SB(p&=ECK_}@{P+I;VIlwba4_ya-T(6_PwoBxY=OWu%8)#xF-wSevrMws zRtn%B$rP{!6iz~t#jPotB}AW-5{Jtp=`OChHO>m8av9D_%qLu9&Q5aKA3CGLxs_Ma z8s;6x+P!D4Y?F(wRqa)GiUztYZhRE#r>ik*kL&HoH;%7DK`9-2vzGgXE-8%Lz2iI}%~08siS2}Z@F7+VD5v}?jU`+)Net!_cXX?Kovxg$94M#F;$^l@ zt3Il?oa?y6XPQmjkLpDZpj5(x{gZK9^=!2N)ERI@ZhsD_-u@d54#tK2Ps9HH{!{+H zM|p1KnY0UT*FhWuGu-;fSqN}kJlSj=OslrzIJjdCOsWC7% ztp=U_%+I?+X52`Pmml67y}o>Z`u4vsKfHfm7_0W6?GIN}H>>ZI z!=6e_oPIiaeR6d9>E!(6ySHyHU%&Zua{T7J(9SBsVcwJ_TnkWMe>nN{=ELRj(b>^= zCvQ(KPD+qq6nStqa4!C*a-=T)r<|qH)f@53vrxI(1J76T4hLspV4_E!Ull&cKvn)_ zRa%O;8<*~y#&zuw^h<^b3PBsiD@>Aj$%Skl-zZXLiJih^29_|Tx(0w&(k{I_>IqTt zQ19kO5$JijxP|;uT-+?rb5qIit zM!YB%E2rR#Y9=qStYQ=tuSB4r%OuvB1jjkAKB@ldU(RH)*~uyH;p_s00u9Qm50$E_ zeI|1$(i8=FwiXTcB#2o;fKN&I?x8k6#NQ}hXTiM8+E^)mAts)m4N55Hr8~P)h#zokc9)wcL``iDAUCXbPOg%>14r$^`D{P^hY z8=!L>g+RpT$FoFsl9w#+!Eo)}0#2Ay{!#DRwM8CN5$Iboaep=2YNDte4weHlQMLK2 zitQl(-qG{hZyNnRozENnzl(&j6tZCPQ2yWk;NYOR|KHz#y8rWWo=4vQzj*)p{RD(4 zLJWa039b+UL9$E}isW07N;3`+!2iXU4nXf|0nC~N4;XHB9nR+UZ@$&dNQSoBKi&a! zO#>Ez&NZ0PE{+q1XY1|~e!0vjBA3^^TZq0o7>z3sPks>b;{9KP!Tyu{e~d@&|Ftd_ zB0ZXvtXN3l>ixfNtI-BvnuK=#KgVfjcIo65{KA?lzN_7~D4(q=r>L$m?0xyHyA=*b z&&f*BT=U(Vs)Jx|GXy6BU<4`Em#>swHs4mE!2*R@gouXayl4)GOS4mXH5V^o{oD?Q zURdkDYirwQi({H^2bmv^0(XkI3)6~TSa6P`j50*N$Aq$-i!$lG|Lw_mv_@xPn(m$hY22-Ev!k8tTX0Hv#<^i?Y^>3HaOJ@3ASn z``q4=zqW70`cno~o$Is6vAQNS_n#C$H`uqF6BwW~M6i$*NgRqwR*4@<1uFQTi(eBq zVHTftEA>*qY=!8lgJIdtO>0+YSjMap3ZIcWmH7!hk!u6*v{&nfoD}wg`+51Rb1Ktu z8|o9zSL*uiE3~FH&HM_o82Zd6D^Ivj^3mx!PpgUyG<&uB;|8%_?XTK43U=` zGWo578_HjA$qi*dcj1OIwBL*y%BbYr;6Zb1ZYaUHB{!IPWDCK<%y&NBdfGcs?l$Kg zP`}}Xckr-hyNlp0rn(Ja)5r!TF z!P=etI?VHd^nTucIDKH6P1lBd6vgcc^)|Oa^L84q9*!amsWbzvpLbt%#Yu?FHJx9- zw(Q?`hYn|AIW6X{{`>AwS&}AEGGCvk1i|n)i76uxs{s7UkN44Tgh-xh&-%F~>_32C z?BC^S;Qu4+j(31;+W$EmmG1vP7(Cto`6!Rr|2Y%+M~uTy-*e|U{2I9X#4fj$SI}fK zirn;0{^Re3y9dqLC-=%gS81mz4~xp6QlpSXNkl2Wdv&j^p-sY{NmdZ%s z1!Na3IQg!>%md@BCQ_2HBuHEbg9znCzgS<}KVDp%wMD#c`Te=?!^N>EFQY)z+X=Wh zJ}X75g(=)BXRC@<{nF z#u&)6R5*!2l+1C^OzNvJA#>h7C3p$RTHlMWR?9_UUs^<{4_#GVTzXi9sk3gi^X61) zCc8yj0a^9bs@*ND^hS9}6G2LIbY-y|w;dUbq`u1CqeeYy>ua$Jc+eu#_2i6vUvQSC87MinL)1TXI%c$>zQbo1TB$&xLE~lE5 ziPnl&0LyPQMS(9$bm-{V!dbdJ*0aC@&cNGxzKD`IH|-WMMbIx!ssEq7ckON)M;ZqE zvwsC%W#)7|uO*YBE|zzC_HpcV+B>;;Z703Y^fRXok&uKjMY0J_7J=qPnZYgP~5F3EQ3lic@ zc8q0Aqu9p1nnq~*uxju^mlxGN7VoMIP!m|{%1x`wbTN4=zo3B8J6omIm5wM{qJ*pz(jo~9kg3K0M>gxtpVy~ zbASKqfJ~3OEY2MR(1OO1mkl}nF1J#TVG}}6hh>KX`Nga}_%ypC9!mJhj?A0EYkJZZ zn>Ca|4|x`X;W?Gsf zx=>feth&V z3#m%>dX#E4tbLv(rxvD0>lkaFS4xr>-l}U*T}iO9plQCZDvL%uw=NvrXIU4Ax2)@? z`gGScZJDUAX9$n;*;D?1lmlpo{2vU*<8uCoGx(bS@mW6L|Jg17_wog0r@tltwPuK> zq_-;onMIZVY;kp)Try|dWyx;BkpkYR+N+K2wf|b*DzPgQ@J|)ZqKN8y$~cYY!03x? z?)We0EPTKlhLV)bNQ!WTip}XPOQd0hXSaWq(fn>(m))|*q+3Sf4PTJ-fii+58a#&C zzIt~qUG=4I%M^+>Z`LGDX;5280Mg{aiC}vPRF$e<#-K0L=>E*)#U6XiinYJPYH@<7 ze6Cb+4m<`zB}LTMcX@zkaVouv+Ys9MMx9ccr>^Rk`MX>#kxn~b{F#M_XFV1VDYSpA zw6{=)EEB%DplNY`>0b-wSBsjS32I3Kx~g~z^TWIhTt~L-)M(G!dtmh6;ios43OI*#s;n#{;m>!Tz|v&UPh)2(i^YW4^TbhZrCZc5}iLV>~P&^EKN)JAUP!9rauQeC-* zY=gXxIl^d-LmHq83Qytmx<<3u&vW>*AA@IsM@tx{nvaJ@4a!hRYvhE_=c zi--i2Gp$!b*of7BD5R07rPiZrt(oV_bHPl6ILkD#b@$KfPM$#k%)FyObdWwLHNwg@ zc+;Hdb`Nku-w8tE=oGEpgL@hUr${Ct9xMsR0p?inNqLK`akN=d0rf4jHJM0KXsQ1F zlmtvt6-<+qtZBTGaZ+)7ze-SN?RHQ{B2c1_CD_l21VA0lQvMW7uP|fkgk1la#xXDc zEXmP|r-4C!aIPSIhn^y7V;RkQ;{6PTu3j1)bcjBn>1YrT-?+>v?|&a)qVYC} z1h3LijYW3c`b&6veEjG2>7UpC_2+e0^>XTY&InxY8{PC`thBu=?tWF^#rmjR}BhPD;14Q6w2 z{|csl2@?FoehFoYCya5;8hD&h5`A@-8!?wPNXQ4D0RaWP4h8k-6Cxp1JTt5Seyv>;pbAy)q9=tu0_ zntt}!v@JWc5ccRD`tdRe2`9zAen*zy41KXFi>QApc4gpIXU_d0Ponm)|8#EmWkh+a zW1wC6AN^4!{=;*==6`&aPmTSj?Ykrnn7%t)XZNFQX>8B}uL;5^AR*q60Euzj)6A<> z3utWRV^-V5 zM*nut;7&SquPxkzIc(EpG=3cpynexI+^#-sw;gNWZS6GN7k9h+@OPkPrz>$QPkbCl z;yw^uF!-+T-+QbFqmv z@d>-MIodu=xApF}FOG#arpw}o`=nd_KhY!ic|UvDe<=xQd*g49{D0Re-~Z|koUifU zpXKvq*?+LqKF0I|0JT=11pRv%e9-&H+k82g9cEuJy#%A>^t-G+O2_Gx1_S=h80w=L zhX8h)0at9W!^o;aYhzZ`bh*u3+F|biG*eE?A4cAIQV`L`Fz*n|*@Qiw#;>-*<0$)E zf$gDQ!}|(MOQl*4W-}$&K)W&geO2F&>BFY*ik0-}9of{}2AzFXvi{RPwff(R(~uqi ztSVO0k1YSROaB{<`jz^BgRk|UKFLkd;xoCz}rHeE;T6C$Eq66l&yko}FEH z#J~UOs0v9oEz;6M7p~ACGm@qxxLBn$n%~GMlx?7sWj zi#sdXCJ%(p7yJ~t1wLJx#|2J_NPuQ&aYzMzfahElHR8%};-vx!f{) zA2D&+oQcieK^?hUKFJJrig$C8Uyx2*gFelKu>H73&j4s73h6W_ST9YW$~Ov7Yw9T0 zalj-F^!Oi(zavhY&qopmC4LC^mPI7u*<6tKJjJiXqJ60iO?_EO=?P@daq^yLdCGgt zlYv5JaA!yqOvn!EQYL3s5_hHT z-dh%iSB>JKVb8k`s$?u@+0M&^Z;U}ZEH}+mZk!~&`_+`B5#faOXndT#bSkqg^8v1O zS6iE_{ub@(q?9pIcM7P|9Ceo(TRM)kKcc`l1wT`xR^z#-K-Oi-|1Q{VaX|D1Q4QtT z#eL-zCtnuZ|@A5YORw)8GN<8#}8+w6ac&HPB)|C>GP|Bc*I{I@$Aj)q_D z|IhK+&;B=g178r7q{0}I!MjMYlF9~9%Lo4Jpr`5vcldf8$J{u{#(dG^agQ&EY>hhe zFrMNN#O4+TQ0yU-fO)L8u7J_YdNnV2&R*bnUTP(N`G9zQ110jamU$7FQxG1do&eBR z%RvlYK5A&i1a$EuQ!;eRKGEn)u)n1F8R$3YsZ_O0uaJEdL(dbjopj!SH^8RuN{72VhP8m-(>i7_W zU`9^^lBC4PoCK$6#Rw`+lDrhcya$&?j1wFjZdnIO-n_J}G8t;!S?-bjS^qHKce;`M zzRxBsVD*S2NQ8EP;mUF4O2PSAHQO>wm9c&F!7`Qm-2+sE&+je#cgTOGrGIMq?+m^2 z{STwz@N4|XXZbXc|9{Vn2*fy!0%3H^C1PFrY6a=$#=Q;J0E$}9q3kLi0}qWO6p$p0 zH?q*SmUN~$34tnX?H60@!n0tHZbvnP`O=2@?>)2oeYWj?#^V%n+CGv2?9%_eK}G)` zkG|Ib{w$y7`oAf^Z{!L=a6NsUEY?d1E>y_{uu(ay-V87c(dEVf+A3#DePtJ={7F3k zB;{>kW+g!LVWv*TE1s;(%Vx5us7m|H;qa9Ff;!z!u}QI5sD}F;>ikdVe>$BS4+B8C zIX`>(y!(&uZ%WWmso0)|mWOoE_g(cu7sdgKRU)Ow6=OUO%e~ivwh>%#Ug*pAWjDwi z72UPI0H_MB+~e*yYWmE~l=tTgoN|?P`zc4O+P9* z9!zPd4($yYtVdKSjsG|!YN_&FcOg<%oWd9ZSs0~xX>Vh@+C_;W3i1kHqvs@W21`fh}-Tz0&OAG$m~UIEYMI10L|m#*lgYqT_-?_UN}`uh27AI1NB3lc6V1bRGv zAG`g(W&clq^!5Dr^L(D5E6h1bBk-=u6@VTVBtp{_4FkcI671i@3C6(_1et>B=5L1B zf`lOwww;Xmq0#&Zr6k0ht_c*CH-5)aaPS00MBU-_G)c*fz9)e!Z1ukmdkAg{iz9eb zpo9{VqL4IeeOui{3JL^gg!kf7fw` zqfvSPd&95#-)H$eLFWq`%}E%~|2j?oc5ra;R}8TU-zjaYJL$Q-QRi=eJ;r}Kc=F^4 z`pNwLpHH(-ncFUv`X>gh9w1PRX(H;;`52nQ#u#)4tR1cO9?mjt>t+ zM*=gkTMzz%;CdT%bS~40QA$$jOFFQiJhY%ZY>V=si1Khd$}$rg1@eGfrc{S0ilgol z|0_<>)1RL7-O0&b$WX>sgdL0ahlhK^-fwPl*rUTk+gJ`PV>xI$mR@lz2j*A~+l}RT zzlqK09S`mFdKP-UHuQ4Bc-QNBy^|u*-Xjq0G+aQASU|F)i`ZwP9~=be8BK#{I3)-( zgypSobh_ek3YP*+S99piIdK~G=A1ZLZ{O4RqO+7N<26Bdae60}j980&oX%Im#F2E3 z8ZO?^mc`q*OlH6B;&qGj*f-|UX~zhhK{I-t!4`U53%zbzdYvM@u1W7Gn_z-DET=Gx zAJ9^0kymdoFOJ_{UVzID)JwLBe5vle5YJv*UP$u2Ni*`jiJg4MLjHbhw?e*Co^EF= z`P0=hf!KpY=)G#zyAWf}2vViPvSDHioRR?1L=D4!{3Ra-&o&H>Wf+`x!*J4b$3>p) z6vx3U?ek~X&(HpT`T7NtdL?=#c0G%i1d(XnUE`FYc*PkF2#ROoH^hkacECWm4H=E= z)DMKjyJjThgVsaQ&xb-n+BOz5`X1f>15Jsrr5=UtPuj3cchXD{iS}D) zuH%>TL2H_w63wnj^RTo&{5VaC&&8sU>;dj(E3*!ud$gazmC-#KY@xf3L&yg$=^j<) z+A--KRCr|=`}eiPioM{cL@WgHSn^UDQJ#4%)p+bTMfrHR*6|qG*1@RtIvADK!KkkwJ;s~TG#UY|m%;{{S>=!w(%>>WM&@OlewQf22p!L8O1<%0n%=HazyxG8d z4H=SWXGjB^;2E?QJcE+p85n}c?Rsuwn$-h1e+K&d4L54vVv0&+ZS=PlLW7bJ8W=*z zq+hRb=|8@E{qFMO^6ck#mp7NsUOxZ%;`zJF^XE6GsI!h~&`}<#C`K=?-Xh8nW{l2- zkp?5;Hr#5iom~%XB5KfDL=8$JYG8;c*U-Hi?Sk=1vt2Mg*|rNTB5KfDL=8$JYG8;c zx7#n<;mXcJOUgLDClF{sBgSzUg2Ay$<|z&ca6*)aM_B2xh=@UJ5#g0Y#J~^{1$qq5 zt&tW4Xku7Gd^)2(P;$PD5YNVvz1A$*E3stHV9Bmw_%vIL4UOON7US2mv1G3`OZG}E z*(x-3-d@6dMT9@Z>Ak!fO%mJ8 zH7?qN1x4P2W6ivNPRKve5rB0XEC zPZy{2EObc`-EiSJ_Jz~8ZI*uP&C)MzmVR-w^h*pNh<$m03h8-q%5f;Pm>Hcfu{@H3 z`x+@n2~HV-aCNc9WE&Wek=xAOHgfImw!UpA^;_>Gw=y73{eT!d>Gt-&kI>ES#pP=l zg3GJ#@sf&#QCJ5J_mpElPN+YBln+{x?esy(sPr=ZNXrFlGVM)P>Qg=UK~>$Fy8osu%^6qMP$X|C}t zz)y#244Sdu(b&#@9h-9Nv{r7NlH7I*%B?f0Ipq!GIapmX6-bacYDnT}8;KUN>a-TC zPD!jf1+nV1a~g~W4QU>1quC-=oz_y-DG3p$AXQts3rEf3cSQRwG+QJ{>)4G+uRku) ztR#pKAKm_>PH<`gDO3b}gi;d4YcUQ0ozrPZj#MElT?j*tM86?p>suL{K)ZG%#Dmr& zQIMqqk~tFX43LrAP=L8s0VWW%(cDsKPkQ}fiRO_>bIV=sG@NH=y!T1Yu;B^l(0&3c zh_{VrONC(4>kmrfIW)(!okB2ds00n|N{~R%MsrJrVAAV*C7K5Y%`Lqi!%?#}G#qW? z74-^$c+i^Weu-w!r1_-A0i&Zff~maCNH9-%^Npmp*`dmCWIa?7$l2&^sSQkeeYZq! zzn0#8=eVjL$)U*Xu3^LQouNH^M<8z-kCvLkq}O*!FA3 zv`WKo8SMHcPALwiNMB`VCFjIO&VFNN%QYC6NIEe|vK~fM4uoO)8jAX%vxQB&HkHn8 ztARzZUPKURjKg1fmk&m2}09x80Kf=W{^6M(e3&9wZyie3t%vid2RAy z(R%neC8(G&ygv8~@wH4n6g108675Zkrv$8F;MM>Fx2(XL>6L?lw*^>31AfpSZv)m4vwi_HHCF}x4XZF9 z34^q4vFzpxU*@Sr@k7tL=56Ys+e$smHh0NHa7`7lW)D5$%6gPhu_=&yo-*1-rDRCB zrV`76NU`S!>;_q?!#40{i824;((=4O0=8SZLCCNmMeM zO5urT$R{c9GF9R}j`X0&p=fsKJh10@Oe`m1lePz8lU~W~H86*wY+A^WX{AkQ12Ck~ zJ+Yd9Hm6m4pH&fG&&1d2u_&%h@1$9vop)jlw3}GYtR`)btR`jA(yt{@O^9OX+Xa~=pJUOu(RZZHSRGpNk z*Qq5?pHp2flaN5n3pisKT_z!&Q6CBnsl3@|vO1b1z2S+oXFqX1vCQpB+qpd{&h1HY zZruvkWwFX32b)J$Z=}&2(Fie;uBmTaDPy6ae)3M*PF^Y1_oO&^)dau{dw<1vyv)xL zWr2MmCKM&Cr>3tVV;Wl-lP&AFb<%Gs=Xbn)`gABdEL$@kT?S*l!Ux<%i?M4`cR*%Y_;~s+;&Y~krQy!D2U?6Q z`qZecJ~b-pQ=_6jRbCo2Qd(1z##3R_g?Ixa!0D32D|sOQK=3_D5!*0MmX`S4kwqCA zwN-{jMP+DIP=@TsLnY}mY$$z(R_QacXiuZI+S910J&g+5lWWb;D-k$orp|f;t2#Tf zXiuZI+EXb(e^k((>?Mdw1U5{K^X#c{ww(LcDfgv}`%!@lyY|8hjBtH+E01s1akyF% zKg4vIRYsO&UDp1$isdxS$M@{{__lQX*4g;Oq7gnSaAIQ|40fyS6@9!F;*HI08Cp#0 zVOx`WSTw1J1(UiajUK$dXq6zizo56lOBrtGH8dqXFePp4yrGHiNfSN8lvhMt{aDtY z9}U~a=njiQc-R}6V_6#`Esy2Tl0?$oFcrYFrveNuqIB3+l$MH23=5*v9+p~~Sf}AC zaki|IezP)rqJ7zSDgw67SCc} zpQ?NjSx!lcl9=&%O4u(UO5>QL1T*#!r-6-zdO_a0NJXhe#jqgA_dRm!kDF;K{jpV3 zv6ZA~U6GdrAigUg3zxS49JuV0=T~#hX{uhGe)G`2NyzCbZAi+8#xZmghKzs>bJGkm}p&M zVo)9jr*<6l&ZQBD8uQ9;LayGO%jp;2Ha}by2gV!-SysPY}1|Q@2j1_DZo# zgB{~>76f|wmD>UC`G$&^FJl}$!y%4*lA<#)E{gnSDq!F4DfMiDOm~Ef|$cmqzk)SC>ue<;zYVgjTF%SsF_;SA6X4o&lVNswT_DNN>Nds z85QMp`&R2*-Hvgbt0bpTIKt5(ZULPW#>EJY#@=`~7|GFScmmlk##C(2eCm4*x0JVS zOV#VxUhCK_uN0f*nXy^hhPt$+yoT$^+qRzSwOsFGW3!wRp#zgpr?jo)_1)5QE2L%N z8a~k0WniJ9{etu`LJ8vt$*c5Wgc_#X_U-AmUNNYvFhVVrXs_q?OQYi%qf-;}eo3p*{E0e#e>$f;g)8jZ_Y;fEc!f7HmG>PW3O@!%46g&Xc)+n z`W8R3XN#TkTEt1gX2RB=P=Y83$;F zsXR`@D;_5#T~fwC`ol;Jn^`pO&}z|mmH;lVZ2*_oD=DxOa~P`rYGK)}aVmIzN9pJ$=Vs6whtw@ptVWe_PS5)-|_E zCAYkusj}Jgc1m)yq5s^qhho_(Y_%@1RjRM$^-NU_vhnNDu&G6@wW5+zpEXVgl!zM6W%FBLvQk;Fzu+=GQU8bm1rKn$=lz|nE`blYBIH*)N zs9&5EI~w(q(!N|zc{H4T(5Sz@hSPJ4B~^;UVZ+0* z*>z59yUr=ub&g@zITIP+YeA)czc{Up8mDB`IEGQP1C{#eaaya~PEqA{43&F3CiN<> z(@y18ehIgzxj4DrD{win;!>};I&BqKr>M9(x#B9&7+KM%S6rR8ifgI|o3+7FF-J*ahUrc!ApC)a}n8a8XfRv)Qld8BNe4vM&V`{82aBkkEp5sm(S zXw*xZ)}@6?m4%#K(rib=#>ze>15YWu>Q zP6>N+16S%mM5}w5`}gkZwTc&H^4|9cf`T~umcxO;(+%N=C|+?C&(wv(R+8#C!ML?j zGcGDMDW*dPr?tMJq;vj5_e&XFHBWa9LHM#Vk(6c-SbcQO13-zEd-4@}Od!MCHgG z8@_dl(YUQ*G%hMe5O|i2Pe(K112&$ zpjefeMq87mA+sBrp9#^VxV9AaDI)JG)>ji4jU!U zOok_xYkh-N5>j6*9nFb+6+;NAcqNU_Hhea+xz92%*N2BnNiR~h*vBkz2 zx3zJ`MH^>avT>?|2^GhMAQhSrhOo*j%okam7Aaq6G$at{OmG0n;+b@Y!Dz+_hF)!L zjC2*9vDa~Q9mg;iIS(p_yKWtui31jn*j4O3Y z!;*=pIOT%&EPeR?gmp3RE@BlfA%{s2-mIX<#8%~4VOdXk+Yk%+s#74{E7~)TwPvTH zkrT%A&?PD(ekaW;k4$WZM-+lqs@qTaq)fDB!iyCGR*A|a$04{E3h`X(niQx3gMGfj zVYm^CMBWTGX_oLefqcJjzL<|3tK;kEXBV%Y_m;t@=)-XwXEYeV|BmC7|96M|{x|NR z?+!+Nr$2PQaooP+jK4w7r$DCsSuu{&Z=8?rt4!P<j8Hz5SmWsiVSho%TA(MS|94Mt2Xrm3OcLyX9UT09H6>|8IAN#g?r-0@aJ6yQxr3$`27f#__<*iS z5;Mx&5B( zc!{GG4v+s|c;iOA@#ntt0^T`x-0qu%L|rlc$A@S}Q^tD-U35bTkonV(^q$%vA0Bkk zd5+QrWqzCndFw#_(3{VX`8#%X`@@g7JQXjAE)hmQ0qbqTq$Bch>@VV&k;8*-w|j6F zhUl8k7n}*DiKJ^1pf0*CE^QV5`UUa!eLjl+FG#rTD&zRkg}_$+?>e4W;s0KLJp9W4 zKgUP#Fd0cJI7{~(EP;aqV_j2*l9VoSO2Z8>;Xp89P?C)0f8>T;xMnbD%_3_SuBDxNbkC4 zioh~qZwm^*OFiA>a!I@Z$nZFeon<&8c^v@o1;%sgOR1no<^%dW5#0TDlL+pvM^F4E z{lq4(uQK^=K?WRrK)3%u9}wfI;P@ZVUFYrXdFKv&KsSV=?D9@@OPA!|aYO`U!#K-t z_e39*Gg1Kg^*4Y3_keB?jyARS9779|LWY|#=fuNwgD59U)W%qjy0M=E|BvRls z@O{DjDqxvS7{d*w-RB> z?opU`)qov8F%UkiAC(?lj`snDl)(b}snhM^6<>6YI#C>v&Oh~vGzL=i2781?1mScJ z+mrRgqGdE7`E8Tk?uwDL8(@yR0Zn1B@`O^3!dO=9l3P)NFATBig4LV|R!1?U5s z#<7^pyBQ7{5tu($p0`yLRi`jt+B8y^=LOa-)^+;~(%(0TL~EMH5pbzBPO0dVsXO-a z?qJVZ!M~Ifkj(=Oyih-Kfa-c*5=c-FGz`T$lLje|m18ZNCgs60$ka-gW~p-Um9B2Q zDgBpl0Z^##64WfWo`5;!w*CDkk(@-z0ip8C{esa8%2Ar@&C?B(3s9x6u#i3AExoz< zLF^iP&pnycF1fS8P=T9X;|GACq3sFj8D?ZOsDURRbV(%M49cK;=*I<#&@|=?W8$#9 zm-Pt7IaLS=L}dA|Bqcr(wgj=Tt|DqT^3<}5+Vl66!FEySnrh<3FXa)q)s_+>?-Mx4 zqF`Z7iQI@0&v+I=cQp7pW%zCjbM4V+o)X6P*o!zqsF7s7eH!4B9rW>Kqo4sVk z@S1n>5U2MvnqSbgILOBxQ@9G4swD#E1`z;iPsRy}NT70YOoqlmv$~w2DCRORNv;Z< zB=Tjg;i&z*j8_p)@IvoWFrW-hAkW`liB={x5#ekR$CXXlLg;0na*4;&cqJA#{H(63 z&5D;$zJTp}6$g7t!y3FB@$?MCT@2lT-j1DTJ(YR63HgyYdDd4$KAyd|Cl^oBc*!vh zA7QCvpp2!G=|^Eam#Q^eP^jAv+I<+`)8@-WcT~|{GIb?GrCwR71=eKE8SuBSIRkpT zHJ9~NUUMeoM_O}PUk%q>_Fls^*Mmh-##^kl1oH)x3uF!{jG`OK>@0xpX^lt}px$1; z6o6hri~QAf679X@ONL3d;NM-n&Sc3KrTAx|b=`Fm9hS)MNd&*AAt|oNj@kj8Qz1={ zI{MhQbJ{sxC(*Hfx062-#&GAfBVd8a0Fp?*&*j4m46OJoWpiUy{+0fl$OsKRY;tA6 z*|5||vdSE?aDo66*pv=Y2Q(+!(ibJMC z7$VWDqE~cvqm%=`rjRw0e%U9y&LwPRt< z&ZBM;2i+(R$ng{1R~JV?7e}0S^)HG^hY5|yB`ihD>XJ>iF0LF%FIk1*RUA^kWE)@3 zUdQ}OntGKnKa*X^9U&l~M1d$lPt8*=1Nwa7r(%T6Qx`&Ye$|0Y;n5Fm_x zh*SD+@op$gD0HS?RB&=Lb?YKA-9Yw*QUca)v6$v<{fa4f(_qyY!1w65uCwYI8uZ+r zqnFTZGQ#c*Pfz-zAiyWH6XN)NXXs2Zo{|1=-1l8?+8;W7?4LOP!0nUClmvZu?9L`9 zqe*o^SFzITNLwOXmy&AqlpXF^PXEi|t!Z+Kilp%pT;CzhSz?AI-oE-NML zbd&46#*x82*<{D}N*H}BL42!l>J@QS>QgU|zOFmII5VCK`!O)Qo4QJVE!Y5aTmvtE z3mQOZYQ#(D7AiZ7123S7a&nxSP(9sj#m+!0KL6=mPM}`@*U3j?V?>iHYB=P{1=Fem?Wb# z#KLZsIuDaWt!A=w`jdRvIqg6_(#}x_7GLMI<92@g=TV0docasGvU$)>J1`Rqw%V}dZ8mi zc#Jyd;fisReos@zJBZG}pYu99{6L@&z&0v0{gLv;53*(5TSBNwOr%&-hWtw!-7~wg zajX;#nHDVzb18R*-I1K%snp1SydybwRqN}r;n;$Pu(YL?;ih9?o zxIV;V{`T9q=sa%#9}=yi7e-Rf5Ngw zpz%oYS)F+crl@#8bH<}p(fklaFwN;k8z?<=l|_qbmL^dY{7UpU5928gd$Uy-3Z{@5 zK3l{ji8xIO+(vpP6<=5is!&%KYs7xAn2;@yF3Qh6ybgs zFz7x|zJNcwSmJ$rm{F>kR?Rs7n5RsbE%TBNn|LK_Q)k?k$LP+&ChxK?EACJ=S7%`u zKWJw#_{_WfG?xN8GYAbwtKaUxIj5H6}aV z33H zGh<*Rch>PIaCuam@*^1)1ipE=s$Q&8d1o#&->yMG%D(UEdlI~&K@bwb-C2!koT&w| z*3)s6@n^IY@2XepyJ+O!$kt35)~t$X9$x4#FpauX%&0Ge3qb{rXA(R0f;vj)DJC;| zZ$1$+3^-weeWJOln4l%*)Q2dub5NNX=*-z{=i_cdgM`N$}%6!6vK)hiIm zk}bk24}@YJ#T*G?sIzYV_8oG2?x5@J(~*uVvq>DSImnf-w>GrSN*O3_NSQoWZqO?v zpYGi&wBEZ{^(8Npy+zqF+sb%09YCLTk})ZjE5%I13X-HIRUE9oxEcnn+V0Dnm-TE$ zE3q2tADGEhNZzH%7S0o-F0`5n9d^fzRyvZ&ADbFE^GaxT@U~QuWjieps{tGtnj_#GN8u)a3~%A|o&-X2s?KZB=V5h8 zIZ2l^k_$9W1Cs8}AyL=iZ6!;khvZFkcu2a6j^OeD zS?3^YaRlk7(OhUuR7^M5{lJowJ%@Bg{Ec6ZmHO?jq8H~a_2i0mSUR`U*KJxfZT;A| zI;47Ts~YuIX`LIwFM2j%FX2eq3DP$MI-=N=ip{>get9FBt{5=_HU$9}&*UKJpwg{} z&UwVD{m8ih$a>&>7Czt&tDLQtLR-tmS`l`GQ)d0*t`4i6R8E&+`Eq@_JamSEH}D)1 zjD0s4cry~XC&4su-SK!j9ua>!n)%*%*H}SI++go!|B8yoJ>7uKdkijFC5eC+WcnY zk5fYSj0DMo_l=%a5QGg|om*SRwHhMKY@mBmioJ?UN^<9#;NZuUa`GnfrEl#lZ<%?0 z^CU$Xbl#IXuhdCnwL?Msm%?%x2P9LlRiL;Wu1&m3vs-CY!g2b)nr&zK_Hm9?SJmCr zr!8I4KRdLJ#rAj`VcisCZm!;)XU*zCwqWGuY=TN?1FiDd&O=O>br#O$3_QvYI8tRn zpvqW;^ot1YZ$HWnAmzQ!o(u8{-UvhN)gUyBQ=e3fXDJxqnGW58Dyje-y8Th;pOH+R z0%cntCZyUVvvg=Rn8j3uS$xp$S%L%MNYB z5cX2IZb@l-qJ8 zr!;DjB3au*{dVa1fUNi82HCJkd>&`wY#7-l zAt39=m;|#2i(~8eNl~rE)UsSY_bRF5iu&NI#1sLAMl3Pwgb{vaTykRxErA0^&`ix6 zab&2Kzla|qc{K;z_FLPP)V%gy{5R12Gwy*Lzigo@96rg0sOj#@-WLYKU&8h<(D~%M z#OSNIS+WK4X|~LYrH`Z;tXTSo)DF}L*o2cJ>oNAD?rE#0Q0(uMFLY^>HZm<$!L51= zq6n|2dSVBU(1xYCx-j+{=0{_4|npHnzYi z`1I?~kg{AP?ZDBU@EF0XStahmZ9nXz_#5;U(6p*RNNjsc63|ucIf0IAQ!RLmIp1>vf~x9U+UCeK%R_|3$ZF8X8 zB1Tk6k76dX99V#B6uSX$wY*csl5h+{wThxvt~Sc4L)A*`+jwoxLrU=3Jg$>9)wvf++ID zOfF#NU2VnHW?d_F%Q%4->Dk`uB#PehE&rOzye`q9c>38aS zWu=4D@)a8Jd`5}9U4$S>gk9&8P-SwbSLNL6zWslsXMtO^hF#7OvBRo z_=;VZpw`h*4le23o?nUa%WnCX!w1cve0mgf<-N^L>ML`TEnwRSU6TOQeHLd1>2X(Q z2DY+1^A7h~pE;%WLHN8YH1GD2muPX!9&L@5!Pb)UNmi+1uC^h%QIB`5PzB|2*QWwn zS)IDGz1Aix5KsfWkqyyg>YyC81;uN4whcM9 zg4b;M1lePCMp{LrhiK%7D_w{HPvbRFM{0p)$JqC?)6bLybek$h*>R8_RW(PkP4 z8`-&@MdMgs)ux}(P{~kT&#^SCS8p#bl;iB}tFxQGcTW3-nYmJF{%;vc(d7ktDqc85 zBwBaZI7PaEOSma?Qt$7BsF16au4zc-+k2+Lgg(vCW2jY+Y5s>LdgI*EQi$X?Uu zz}Ioizt5cB`rZxj55A7Uk0^g@;tQ-vTGypV_9_pRm6+S%a?aX)TyZE}M8!n((-wy+ zbh1k`t}^~?Fw3B5@;zSCkk*tk5sE5J&`dvvt(70`%k-8k5Bc(HJvb8oj;x(*>J+sb zsD*IDv43CDQfQ*oGNT`({Smr?oRf}Y3sV67$mwF%Ig=Lx?X@p% z%=$evn#Ji-ioD9skU-mRiv{P&wrv5>+b&*Ns%Q(yC=SS#rJhkCAV#;7Az7MNyo_=1 z42L-KNeTktwQi@UKqcLOY#qd`T&aKu8S#RM!>zR0>NMTzfr(^k?yWEy7S#c`J1Xi} z3+gB&Yz1}XO0-tfv6B$<*azed<{^x8S^G;s)optEmU&YJxD##fj^zJ0;*Z<&t2>zP zySEotcReI6eer{``4jvQA&hR%uL_0r=7i@v6)K^M{qy$vB|L?FZ5%3XBZ}j6PWY~s zo0s)7+LxRw($QaF^)LXlG+s*mIWLr1mI6(E<(YQwWo zI{v;(05D7f)aOz9l^CKxF&wR(<>~7g{{t6>ZB-P{OY0e+!O3^n4XA!ovK70D!R|c^VfiCW@%77msEP+s_nHC9@6OWs z;44FUp{sZ0V`&5p$%~ug0Hv!)R<%@+3b(6B2r$jPd5V2i zL7!zi8xOlUp~phlhcOPinT3Cx#6frM9zV&7bshe*g42>PhUdfbhG{veqyD zY)HkS5~np6uWJ1c%cO|B<;NB;0*G*FS`Jm6PV+d4!+5^ANrX{+o)t{0qNgu>v%S&g z);B$NFl2JvH25w9_}#pQlRi-Ayf%Ql@z%P%{qN$&Qa6cw@+x@*`wK(@3Kw#$eZ8HYNA~8RXL58O%-`_ryCHo{(VVjVII5>|{0`%}&T{FmtDa@nG8T_opY$a7>(uJH^g)K!&qX ze=?cu#7v%o9GrzAx~B65XXskqFcP3Hh}+wAMb3dBke*ClG z&eT8VDP3=RK4TrQLB8v7@}3{V_mqU+br|1-ge?f+9d!J+gM%kep!RDQ_Okf; literal 0 HcmV?d00001 diff --git a/incubator/verysync/0.0.1/helm-values.md b/incubator/verysync/0.0.1/helm-values.md new file mode 100644 index 00000000000..2817733e6d4 --- /dev/null +++ b/incubator/verysync/0.0.1/helm-values.md @@ -0,0 +1,36 @@ +# Default Helm-Values + +TrueCharts is primarily build to supply TrueNAS SCALE Apps. +However, we also supply all Apps as standard Helm-Charts. In this document we aim to document the default values in our values.yaml file. + +Most of our Apps also consume our "common" Helm Chart. +If this is the case, this means that all values.yaml values are set to the common chart values.yaml by default. This values.yaml file will only contain values that deviate from the common chart. +You will, however, be able to use all values referenced in the common chart here, besides the values listed in this document. + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| env.PORT | string | `"{{ .Values.service.main.ports.main.port }}"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.repository | string | `"jonnyan404/verysync"` | | +| image.tag | string | `"2.13.0@sha256:a6f4fe60d6e95f8b925701cd1c3ec702ccfb39d8da58441ec6e7e9c749a0692c"` | | +| persistence.data.enabled | bool | `true` | | +| persistence.data.mountPath | string | `"/data"` | | +| service.bt-udp1.enabled | bool | `true` | | +| service.bt-udp1.ports.bt-udp1.enabled | bool | `true` | | +| service.bt-udp1.ports.bt-udp1.port | int | `22037` | | +| service.bt-udp1.ports.bt-udp1.protocol | string | `"UDP"` | | +| service.bt-udp1.ports.bt-udp1.targetPort | int | `22037` | | +| service.bt-udp2.enabled | bool | `true` | | +| service.bt-udp2.ports.bt-udp2.enabled | bool | `true` | | +| service.bt-udp2.ports.bt-udp2.port | int | `22027` | | +| service.bt-udp2.ports.bt-udp2.protocol | string | `"UDP"` | | +| service.bt-udp2.ports.bt-udp2.targetPort | int | `22027` | | +| service.data.enabled | bool | `true` | | +| service.data.ports.data.enabled | bool | `true` | | +| service.data.ports.data.port | int | `22330` | | +| service.data.ports.data.targetPort | int | `22330` | | +| service.main.ports.main.port | int | `10193` | | + +All Rights Reserved - The TrueCharts Project diff --git a/incubator/verysync/0.0.1/ix_values.yaml b/incubator/verysync/0.0.1/ix_values.yaml new file mode 100644 index 00000000000..3db6461d2c2 --- /dev/null +++ b/incubator/verysync/0.0.1/ix_values.yaml @@ -0,0 +1,41 @@ +image: + repository: jonnyan404/verysync + tag: 2.13.0@sha256:a6f4fe60d6e95f8b925701cd1c3ec702ccfb39d8da58441ec6e7e9c749a0692c + pullPolicy: IfNotPresent + +service: + main: + ports: + main: + port: 10193 + bt-udp1: + enabled: true + ports: + bt-udp1: + enabled: true + port: 22037 + targetPort: 22037 + protocol: UDP + bt-udp2: + enabled: true + ports: + bt-udp2: + enabled: true + port: 22027 + targetPort: 22027 + protocol: UDP + data: + enabled: true + ports: + data: + enabled: true + port: 22330 + targetPort: 22330 + +env: + PORT: "{{ .Values.service.main.ports.main.port }}" + +persistence: + data: + enabled: true + mountPath: "/data" diff --git a/incubator/verysync/0.0.1/questions.yaml b/incubator/verysync/0.0.1/questions.yaml new file mode 100644 index 00000000000..5a648e57476 --- /dev/null +++ b/incubator/verysync/0.0.1/questions.yaml @@ -0,0 +1,2787 @@ +groups: + - name: "Container Image" + description: "Image to be used for container" + - name: "Controller" + description: "Configure workload deployment" + - name: "Container Configuration" + description: "additional container configuration" + - name: "App Configuration" + description: "App specific config options" + - name: "Networking and Services" + description: "Configure Network and Services for container" + - name: "Storage and Persistence" + description: "Persist and share data that is separate from the container" + - name: "Ingress" + description: "Ingress Configuration" + - name: "Security and Permissions" + description: "Configure security context and permissions" + - name: "Resources and Devices" + description: "Specify resources/devices to be allocated to workload" + - name: "Middlewares" + description: "Traefik Middlewares" + - name: "Metrics" + description: "Metrics" + - name: "Addons" + description: "Addon Configuration" + - name: "Advanced" + description: "Advanced Configuration" +portals: + open: + protocols: + - "$kubernetes-resource_configmap_portal_protocol" + host: + - "$kubernetes-resource_configmap_portal_host" + ports: + - "$kubernetes-resource_configmap_portal_port" +questions: + - variable: portal + group: "Container Image" + label: "Configure Portal Button" + schema: + type: dict + hidden: true + attrs: + - variable: enabled + label: "Enable" + description: "enable the portal button" + schema: + hidden: true + editable: false + type: boolean + default: true + - variable: global + label: "global settings" + group: "Controller" + schema: + type: dict + hidden: true + attrs: + - variable: isSCALE + label: "flag this is SCALE" + schema: + type: boolean + default: true + hidden: true + - variable: controller + group: "Controller" + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: advanced + label: "Show Advanced Controller Settings" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: type + description: "Please specify type of workload to deploy" + label: "(Advanced) Controller Type" + schema: + type: string + default: "deployment" + required: true + enum: + - value: "deployment" + description: "Deployment" + - value: "statefulset" + description: "Statefulset" + - value: "daemonset" + description: "Daemonset" + - variable: replicas + description: "Number of desired pod replicas" + label: "Desired Replicas" + schema: + type: int + default: 1 + required: true + - variable: strategy + description: "Please specify type of workload to deploy" + label: "(Advanced) Update Strategy" + schema: + type: string + default: "Recreate" + required: true + enum: + - value: "Recreate" + description: "Recreate: Kill existing pods before creating new ones" + - value: "RollingUpdate" + description: "RollingUpdate: Create new pods and then kill old ones" + - value: "OnDelete" + description: "(Legacy) OnDelete: ignore .spec.template changes" + - variable: expert + label: "Show Expert Configuration Options" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: extraArgs + label: "Extra Args" + schema: + type: list + default: [] + items: + - variable: arg + label: "arg" + schema: + type: string + - variable: labelsList + label: "Controller Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: " Controller Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: TZ + label: "Timezone" + group: "Container Configuration" + schema: + type: string + default: "Etc/UTC" + $ref: + - "definitions/timezone" + + - variable: envList + label: "Image environment" + group: "Container Configuration" + schema: + type: list + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: expertpodconf + group: "Container Configuration" + label: "Show Expert Config" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: tty + label: "Enable TTY" + description: "Determines whether containers in a pod runs with TTY enabled. By default pod has it disabled." + group: "Workload Details" + schema: + type: boolean + default: false + - variable: stdin + label: "Enable STDIN" + description: "Determines whether containers in a pod runs with stdin enabled. By default pod has it disabled." + group: "Workload Details" + schema: + type: boolean + default: false + - variable: termination + group: "Container Configuration" + label: "Termination settings" + schema: + additional_attrs: true + type: dict + attrs: + - variable: gracePeriodSeconds + label: "Grace Period Seconds" + schema: + type: int + default: 10 + - variable: podLabelsList + group: "Container Configuration" + label: "Pod Labels" + schema: + type: list + default: [] + items: + - variable: podLabelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: podAnnotationsList + group: "Container Configuration" + label: "Pod Annotations" + schema: + type: list + default: [] + items: + - variable: podAnnotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: service + group: "Networking and Services" + label: "Configure Service(s)" + schema: + additional_attrs: true + type: dict + attrs: + - variable: main + label: "Main Service" + description: "The Primary service on which the healthcheck runs, often the webUI" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the service" + schema: + type: boolean + default: true + hidden: true + - variable: type + label: "Service Type" + description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer" + schema: + type: string + default: "Simple" + enum: + - value: "Simple" + description: "Simple" + - value: "ClusterIP" + description: "ClusterIP" + - value: "NodePort" + description: "NodePort (Advanced)" + - value: "LoadBalancer" + description: "LoadBalancer (Advanced)" + - variable: loadBalancerIP + label: "LoadBalancer IP" + description: "LoadBalancerIP" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: string + default: "" + - variable: externalIPs + label: "External IP's" + description: "External IP's" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: list + default: [] + items: + - variable: externalIP + label: "External IP" + schema: + type: string + - variable: ipFamilyPolicy + label: "IP Family Policy" + description: "(Advanced) Specify the ip policy" + schema: + show_if: [["type", "!=", "Simple"]] + type: string + default: "SingleStack" + enum: + - value: "SingleStack" + description: "SingleStack" + - value: "PreferDualStack" + description: "PreferDualStack" + - value: "RequireDualStack" + description: "RequireDualStack" + - variable: ipFamilies + label: "(advanced) IP families" + description: "(advanced) The ip families that should be used" + schema: + show_if: [["type", "!=", "Simple"]] + type: list + default: [] + items: + - variable: ipFamily + label: "IP family" + schema: + type: string + - variable: ports + label: "Service's Port(s) Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: main + label: "Main Service Port Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "Port" + description: "This port exposes the container port on the service" + schema: + type: int + default: 10193 + required: true + - variable: advanced + label: "Show Advanced settings" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: protocol + label: "Port Type" + schema: + type: string + default: "HTTP" + enum: + - value: HTTP + description: "HTTP" + - value: "HTTPS" + description: "HTTPS" + - value: TCP + description: "TCP" + - value: "UDP" + description: "UDP" + - variable: nodePort + label: "Node Port (Optional)" + description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer" + schema: + type: int + min: 9000 + max: 65535 + - variable: targetPort + label: "Target Port" + description: "The internal(!) port on the container the Application runs on" + schema: + type: int + default: 10193 + + + - variable: bt-udp1 + label: "bt-udp1 Service" + description: "The bt-udp service" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the service" + schema: + type: boolean + default: true + hidden: true + - variable: type + label: "Service Type" + description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer" + schema: + type: string + default: "Simple" + enum: + - value: "Simple" + description: "Simple" + - value: "ClusterIP" + description: "ClusterIP" + - value: "NodePort" + description: "NodePort (Advanced)" + - value: "LoadBalancer" + description: "LoadBalancer (Advanced)" + - variable: loadBalancerIP + label: "LoadBalancer IP" + description: "LoadBalancerIP" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: string + default: "" + - variable: externalIPs + label: "External IP's" + description: "External IP's" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: list + default: [] + items: + - variable: externalIP + label: "External IP" + schema: + type: string + - variable: ipFamilyPolicy + label: "IP Family Policy" + description: "(Advanced) Specify the ip policy" + schema: + show_if: [["type", "!=", "Simple"]] + type: string + default: "SingleStack" + enum: + - value: "SingleStack" + description: "SingleStack" + - value: "PreferDualStack" + description: "PreferDualStack" + - value: "RequireDualStack" + description: "RequireDualStack" + - variable: ipFamilies + label: "(advanced) IP families" + description: "(advanced) The ip families that should be used" + schema: + show_if: [["type", "!=", "Simple"]] + type: list + default: [] + items: + - variable: ipFamily + label: "IP family" + schema: + type: string + - variable: ports + label: "Service's Port(s) Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: bt-udp1 + label: "bt-udp1 Service Port Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "Port" + description: "This port exposes the container port on the service" + schema: + type: int + default: 22037 + required: true + - variable: advanced + label: "Show Advanced settings" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: protocol + label: "Port Type" + schema: + type: string + default: "UDP" + enum: + - value: HTTP + description: "HTTP" + - value: "HTTPS" + description: "HTTPS" + - value: TCP + description: "TCP" + - value: "UDP" + description: "UDP" + - variable: nodePort + label: "Node Port (Optional)" + description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer" + schema: + type: int + min: 9000 + max: 65535 + - variable: targetPort + label: "Target Port" + description: "The internal(!) port on the container the Application runs on" + schema: + type: int + default: 22037 + + + - variable: bt-udp2 + label: "bt-udp2 Service" + description: "The bt-udp service" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the service" + schema: + type: boolean + default: true + hidden: true + - variable: type + label: "Service Type" + description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer" + schema: + type: string + default: "Simple" + enum: + - value: "Simple" + description: "Simple" + - value: "ClusterIP" + description: "ClusterIP" + - value: "NodePort" + description: "NodePort (Advanced)" + - value: "LoadBalancer" + description: "LoadBalancer (Advanced)" + - variable: loadBalancerIP + label: "LoadBalancer IP" + description: "LoadBalancerIP" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: string + default: "" + - variable: externalIPs + label: "External IP's" + description: "External IP's" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: list + default: [] + items: + - variable: externalIP + label: "External IP" + schema: + type: string + - variable: ipFamilyPolicy + label: "IP Family Policy" + description: "(Advanced) Specify the ip policy" + schema: + show_if: [["type", "!=", "Simple"]] + type: string + default: "SingleStack" + enum: + - value: "SingleStack" + description: "SingleStack" + - value: "PreferDualStack" + description: "PreferDualStack" + - value: "RequireDualStack" + description: "RequireDualStack" + - variable: ipFamilies + label: "(advanced) IP families" + description: "(advanced) The ip families that should be used" + schema: + show_if: [["type", "!=", "Simple"]] + type: list + default: [] + items: + - variable: ipFamily + label: "IP family" + schema: + type: string + - variable: ports + label: "Service's Port(s) Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: bt-udp2 + label: "bt-udp2 Service Port Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "Port" + description: "This port exposes the container port on the service" + schema: + type: int + default: 22027 + required: true + - variable: advanced + label: "Show Advanced settings" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: protocol + label: "Port Type" + schema: + type: string + default: "UDP" + enum: + - value: HTTP + description: "HTTP" + - value: "HTTPS" + description: "HTTPS" + - value: TCP + description: "TCP" + - value: "UDP" + description: "UDP" + - variable: nodePort + label: "Node Port (Optional)" + description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer" + schema: + type: int + min: 9000 + max: 65535 + - variable: targetPort + label: "Target Port" + description: "The internal(!) port on the container the Application runs on" + schema: + type: int + default: 22027 + + + - variable: data + label: "data Service" + description: "The data service" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the service" + schema: + type: boolean + default: true + hidden: true + - variable: type + label: "Service Type" + description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer" + schema: + type: string + default: "Simple" + enum: + - value: "Simple" + description: "Simple" + - value: "ClusterIP" + description: "ClusterIP" + - value: "NodePort" + description: "NodePort (Advanced)" + - value: "LoadBalancer" + description: "LoadBalancer (Advanced)" + - variable: loadBalancerIP + label: "LoadBalancer IP" + description: "LoadBalancerIP" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: string + default: "" + - variable: externalIPs + label: "External IP's" + description: "External IP's" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: list + default: [] + items: + - variable: externalIP + label: "External IP" + schema: + type: string + - variable: ipFamilyPolicy + label: "IP Family Policy" + description: "(Advanced) Specify the ip policy" + schema: + show_if: [["type", "!=", "Simple"]] + type: string + default: "SingleStack" + enum: + - value: "SingleStack" + description: "SingleStack" + - value: "PreferDualStack" + description: "PreferDualStack" + - value: "RequireDualStack" + description: "RequireDualStack" + - variable: ipFamilies + label: "(advanced) IP families" + description: "(advanced) The ip families that should be used" + schema: + show_if: [["type", "!=", "Simple"]] + type: list + default: [] + items: + - variable: ipFamily + label: "IP family" + schema: + type: string + - variable: ports + label: "Service's Port(s) Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: data + label: "data Service Port Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "Port" + description: "This port exposes the container port on the service" + schema: + type: int + default: 22330 + required: true + - variable: advanced + label: "Show Advanced settings" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: protocol + label: "Port Type" + schema: + type: string + default: "TCP" + enum: + - value: HTTP + description: "HTTP" + - value: "HTTPS" + description: "HTTPS" + - value: TCP + description: "TCP" + - value: "UDP" + description: "UDP" + - variable: nodePort + label: "Node Port (Optional)" + description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer" + schema: + type: int + min: 9000 + max: 65535 + - variable: targetPort + label: "Target Port" + description: "The internal(!) port on the container the Application runs on" + schema: + type: int + default: 22330 + + - variable: serviceexpert + group: "Networking and Services" + label: "Show Expert Config" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: hostNetwork + group: "Networking and Services" + label: "Host-Networking (Complicated)" + schema: + type: boolean + default: false + + - variable: externalInterfaces + description: "Add External Interfaces" + label: "Add external Interfaces" + group: "Networking" + schema: + type: list + items: + - variable: interfaceConfiguration + description: "Interface Configuration" + label: "Interface Configuration" + schema: + type: dict + $ref: + - "normalize/interfaceConfiguration" + attrs: + - variable: hostInterface + description: "Please specify host interface" + label: "Host Interface" + schema: + type: string + required: true + $ref: + - "definitions/interface" + - variable: ipam + description: "Define how IP Address will be managed" + label: "IP Address Management" + schema: + type: dict + required: true + attrs: + - variable: type + description: "Specify type for IPAM" + label: "IPAM Type" + schema: + type: string + required: true + enum: + - value: "dhcp" + description: "Use DHCP" + - value: "static" + description: "Use static IP" + show_subquestions_if: "static" + subquestions: + - variable: staticIPConfigurations + label: "Static IP Addresses" + schema: + type: list + items: + - variable: staticIP + label: "Static IP" + schema: + type: ipaddr + cidr: true + - variable: staticRoutes + label: "Static Routes" + schema: + type: list + items: + - variable: staticRouteConfiguration + label: "Static Route Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: destination + label: "Destination" + schema: + type: ipaddr + cidr: true + required: true + - variable: gateway + label: "Gateway" + schema: + type: ipaddr + cidr: false + required: true + + - variable: dnsPolicy + group: "Networking and Services" + label: "dnsPolicy" + schema: + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "ClusterFirst" + description: "ClusterFirst" + - value: "ClusterFirstWithHostNet" + description: "ClusterFirstWithHostNet" + - value: "None" + description: "None" + + - variable: dnsConfig + label: "DNS Configuration" + group: "Networking and Services" + description: "Specify custom DNS configuration which will be applied to the pod" + schema: + additional_attrs: true + type: dict + attrs: + - variable: nameservers + label: "Nameservers" + schema: + default: [] + type: list + items: + - variable: nameserver + label: "Nameserver" + schema: + type: string + - variable: options + label: "options" + schema: + default: [] + type: list + items: + - variable: option + label: "Option Entry" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: searches + label: "Searches" + schema: + default: [] + type: list + items: + - variable: search + label: "Search Entry" + schema: + type: string + + - variable: serviceList + label: "Add Manual Custom Services" + group: "Networking and Services" + schema: + type: list + default: [] + items: + - variable: serviceListEntry + label: "Custom Service" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the service" + schema: + type: boolean + default: true + hidden: true + - variable: name + label: "Name" + schema: + type: string + default: "" + - variable: type + label: "Service Type" + description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer" + schema: + type: string + default: "Simple" + enum: + - value: "Simple" + description: "Simple" + - value: "NodePort" + description: "NodePort" + - value: "ClusterIP" + description: "ClusterIP" + - value: "LoadBalancer" + description: "LoadBalancer" + - variable: loadBalancerIP + label: "LoadBalancer IP" + description: "LoadBalancerIP" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: string + default: "" + - variable: externalIPs + label: "External IP's" + description: "External IP's" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: list + default: [] + items: + - variable: externalIP + label: "External IP" + schema: + type: string + - variable: portsList + label: "Additional Service Ports" + schema: + type: list + default: [] + items: + - variable: portsListEntry + label: "Custom ports" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the port" + schema: + type: boolean + default: true + hidden: true + - variable: name + label: "Port Name" + schema: + type: string + default: "" + - variable: protocol + label: "Port Type" + schema: + type: string + default: "TCP" + enum: + - value: HTTP + description: "HTTP" + - value: "HTTPS" + description: "HTTPS" + - value: TCP + description: "TCP" + - value: "UDP" + description: "UDP" + - variable: targetPort + label: "Target Port" + description: "This port exposes the container port on the service" + schema: + type: int + required: true + - variable: port + label: "Container Port" + schema: + type: int + required: true + - variable: nodePort + label: "Node Port (Optional)" + description: "This port gets exposed to the node. Only considered when service type is NodePort" + schema: + type: int + min: 9000 + max: 65535 + + - variable: persistence + label: "Integrated Persistent Storage" + description: "Integrated Persistent Storage" + group: "Storage and Persistence" + schema: + additional_attrs: true + type: dict + attrs: + - variable: data + label: "App Data Storage" + description: "Stores the Application Data." + schema: + additional_attrs: true + type: dict + attrs: + - variable: type + label: "Type of Storage" + description: "Sets the persistence type, Anything other than PVC could break rollback!" + schema: + type: string + default: "simplePVC" + enum: + - value: "simplePVC" + description: "PVC (simple)" + - value: "simpleHP" + description: "HostPath (simple)" + - value: "emptyDir" + description: "emptyDir" + - value: "pvc" + description: "pvc" + - value: "hostPath" + description: "hostPath" + - variable: setPermissionsSimple + label: "Automatic Permissions" + description: "Automatically set permissions on install" + schema: + show_if: [["type", "=", "simpleHP"]] + type: boolean + default: true + - variable: setPermissions + label: "Automatic Permissions" + description: "Automatically set permissions on install" + schema: + show_if: [["type", "=", "hostPath"]] + type: boolean + default: true + - variable: readOnly + label: "readOnly" + schema: + type: boolean + default: false + - variable: hostPathSimple + label: "hostPath" + description: "Path inside the container the storage is mounted" + schema: + show_if: [["type", "=", "simpleHP"]] + type: hostpath + - variable: hostPath + label: "hostPath" + description: "Path inside the container the storage is mounted" + schema: + show_if: [["type", "=", "hostPath"]] + type: hostpath + - variable: medium + label: "EmptyDir Medium" + schema: + show_if: [["type", "=", "emptyDir"]] + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "Memory" + description: "Memory" + - variable: size + label: "Size quotum of storage" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "999Gi" + - variable: hostPathType + label: "(Advanced) hostPath Type" + schema: + show_if: [["type", "=", "hostPath"]] + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "DirectoryOrCreate" + description: "DirectoryOrCreate" + - value: "Directory" + description: "Directory" + - value: "FileOrCreate" + description: "FileOrCreate" + - value: "File" + description: "File" + - value: "Socket" + description: "Socket" + - value: "CharDevice" + description: "CharDevice" + - value: "BlockDevice" + description: "BlockDevice" + - variable: storageClass + label: "(Advanced) storageClass" + description: "Warning: Anything other than SCALE-ZFS or empty will break rollback!" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "SCALE-ZFS" + - variable: accessMode + label: "(Advanced) Access Mode" + description: "Allow or disallow multiple PVC's writhing to the same PV" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "ReadWriteOnce" + enum: + - value: "ReadWriteOnce" + description: "ReadWriteOnce" + - value: "ReadOnlyMany" + description: "ReadOnlyMany" + - value: "ReadWriteMany" + description: "ReadWriteMany" + - variable: advanced + label: "Show Advanced Options" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: labelsList + label: "Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: "Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: persistenceList + label: "Additional app storage" + group: "Storage and Persistence" + schema: + type: list + default: [] + items: + - variable: persistenceListEntry + label: "Custom Storage" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the storage" + schema: + type: boolean + default: true + hidden: true + - variable: name + label: "Name (optional)" + description: "Not required, please set to config when mounting /config or temp when mounting /tmp" + schema: + type: string + - variable: type + label: "Type of Storage" + description: "Sets the persistence type, Anything other than PVC could break rollback!" + schema: + type: string + default: "simpleHP" + enum: + - value: "simplePVC" + description: "PVC (simple)" + - value: "simpleHP" + description: "HostPath (simple)" + - value: "emptyDir" + description: "emptyDir" + - value: "pvc" + description: "pvc" + - value: "hostPath" + description: "hostPath" + - variable: setPermissionsSimple + label: "Automatic Permissions" + description: "Automatically set permissions on install" + schema: + show_if: [["type", "=", "simpleHP"]] + type: boolean + default: true + - variable: setPermissions + label: "Automatic Permissions" + description: "Automatically set permissions on install" + schema: + show_if: [["type", "=", "hostPath"]] + type: boolean + default: true + - variable: readOnly + label: "readOnly" + schema: + type: boolean + default: false + - variable: hostPathSimple + label: "hostPath" + description: "Path inside the container the storage is mounted" + schema: + show_if: [["type", "=", "simpleHP"]] + type: hostpath + - variable: hostPath + label: "hostPath" + description: "Path inside the container the storage is mounted" + schema: + show_if: [["type", "=", "hostPath"]] + type: hostpath + - variable: mountPath + label: "mountPath" + description: "Path inside the container the storage is mounted" + schema: + type: string + default: "" + required: true + valid_chars: '^\/([a-zA-Z0-9._-]+(\s?[a-zA-Z0-9._-]+|\/?))+$' + - variable: medium + label: "EmptyDir Medium" + schema: + show_if: [["type", "=", "emptyDir"]] + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "Memory" + description: "Memory" + - variable: size + label: "Size quotum of storage" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "999Gi" + - variable: hostPathType + label: "(Advanced) hostPath Type" + schema: + show_if: [["type", "=", "hostPath"]] + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "DirectoryOrCreate" + description: "DirectoryOrCreate" + - value: "Directory" + description: "Directory" + - value: "FileOrCreate" + description: "FileOrCreate" + - value: "File" + description: "File" + - value: "Socket" + description: "Socket" + - value: "CharDevice" + description: "CharDevice" + - value: "BlockDevice" + description: "BlockDevice" + - variable: storageClass + label: "(Advanced) storageClass" + description: "Warning: Anything other than SCALE-ZFS or empty will break rollback!" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "SCALE-ZFS" + - variable: accessMode + label: "(Advanced) Access Mode" + description: "Allow or disallow multiple PVC's writhing to the same PV" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "ReadWriteOnce" + enum: + - value: "ReadWriteOnce" + description: "ReadWriteOnce" + - value: "ReadOnlyMany" + description: "ReadOnlyMany" + - value: "ReadWriteMany" + description: "ReadWriteMany" + - variable: advanced + label: "Show Advanced Options" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: labelsList + label: "Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: "Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: ingress + label: "" + group: "Ingress" + schema: + additional_attrs: true + type: dict + attrs: + - variable: main + label: "Main Ingress" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable Ingress" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: hosts + label: "Hosts" + schema: + type: list + default: [] + items: + - variable: hostEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: host + label: "HostName" + schema: + type: string + default: "" + required: true + - variable: paths + label: "Paths" + schema: + type: list + default: [] + items: + - variable: pathEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: path + label: "path" + schema: + type: string + required: true + default: "/" + - variable: pathType + label: "pathType" + schema: + type: string + required: true + default: "Prefix" + + - variable: tls + label: "TLS-Settings" + schema: + type: list + default: [] + items: + - variable: tlsEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: hosts + label: "Certificate Hosts" + schema: + type: list + default: [] + items: + - variable: host + label: "Host" + schema: + type: string + default: "" + required: true + - variable: scaleCert + label: "Select TrueNAS SCALE Certificate" + schema: + type: int + $ref: + - "definitions/certificate" + + - variable: entrypoint + label: "(Advanced) Traefik Entrypoint" + description: "Entrypoint used by Traefik when using Traefik as Ingress Provider" + schema: + type: string + default: "websecure" + required: true + - variable: middlewares + label: "Traefik Middlewares" + description: "Add previously created Traefik Middlewares to this Ingress" + schema: + type: list + default: [] + items: + - variable: name + label: "Name" + schema: + type: string + default: "" + required: true + + - variable: expert + label: "Show Expert Configuration Options" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: enableFixedMiddlewares + description: "These middlewares enforce a number of best practices." + label: "Enable Default Middlewares" + schema: + type: boolean + default: true + - variable: ingressClassName + label: "IngressClass Name" + schema: + type: string + default: "" + - variable: labelsList + label: "Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: "Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: ingressList + label: "Add Manual Custom Ingresses" + group: "Ingress" + schema: + type: list + default: [] + items: + - variable: ingressListEntry + label: "Custom Ingress" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable Ingress" + schema: + type: boolean + default: true + hidden: true + - variable: name + label: "Name" + schema: + type: string + default: "" + - variable: ingressClassName + label: "IngressClass Name" + schema: + type: string + default: "" + - variable: labelsList + label: "Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: "Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: hosts + label: "Hosts" + schema: + type: list + default: [] + items: + - variable: hostEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: host + label: "HostName" + schema: + type: string + default: "" + required: true + - variable: paths + label: "Paths" + schema: + type: list + default: [] + items: + - variable: pathEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: path + label: "path" + schema: + type: string + required: true + default: "/" + - variable: pathType + label: "pathType" + schema: + type: string + required: true + default: "Prefix" + - variable: service + label: "Linked Service" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Service Name" + schema: + type: string + default: "" + - variable: port + label: "Service Port" + schema: + type: int + - variable: tls + label: "TLS-Settings" + schema: + type: list + default: [] + items: + - variable: tlsEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: hosts + label: "Certificate Hosts" + schema: + type: list + default: [] + items: + - variable: host + label: "Host" + schema: + type: string + default: "" + required: true + - variable: scaleCert + label: "Select TrueNAS SCALE Certificate" + schema: + type: int + $ref: + - "definitions/certificate" + - variable: entrypoint + label: "Traefik Entrypoint" + description: "Entrypoint used by Traefik when using Traefik as Ingress Provider" + schema: + type: string + default: "websecure" + required: true + - variable: middlewares + label: "Traefik Middlewares" + description: "Add previously created Traefik Middlewares to this Ingress" + schema: + type: list + default: [] + items: + - variable: name + label: "Name" + schema: + type: string + default: "" + required: true + + - variable: security + label: "Container Security Settings" + group: "Security and Permissions" + schema: + type: dict + additional_attrs: true + attrs: + - variable: editsecurity + label: "Change PUID / UMASK values" + description: "By enabling this you override default set values." + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: PUID + label: "Process User ID - PUID" + description: "When supported by the container, this sets the User ID running the Application Process. Not supported by all Apps" + schema: + type: int + default: 568 + - variable: UMASK + label: "UMASK" + description: "When supported by the container, this sets the UMASK for tha App. Not supported by all Apps" + schema: + type: string + default: "002" + + - variable: advancedSecurity + label: "Show Advanced Security Settings" + group: "Security and Permissions" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: securityContext + label: "Security Context" + schema: + additional_attrs: true + type: dict + attrs: + - variable: privileged + label: "Privileged mode" + schema: + type: boolean + default: false + - variable: readOnlyRootFilesystem + label: "ReadOnly Root Filesystem" + schema: + type: boolean + default: true + - variable: allowPrivilegeEscalation + label: "Allow Privilege Escalation" + schema: + type: boolean + default: false + - variable: runAsNonRoot + label: "runAsNonRoot" + schema: + type: boolean + default: false + - variable: capabilities + label: "Capabilities" + schema: + additional_attrs: true + type: dict + attrs: + - variable: drop + label: "Drop Capability" + schema: + type: list + default: [] + items: + - variable: dropEntry + label: "" + schema: + type: string + - variable: add + label: "Add Capability" + schema: + type: list + default: [] + items: + - variable: addEntry + label: "" + schema: + type: string + + - variable: podSecurityContext + group: "Security and Permissions" + label: "Pod Security Context" + schema: + additional_attrs: true + type: dict + attrs: + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" + schema: + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: The groupID this App of the user running the application" + schema: + type: int + default: 0 + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + - variable: fsGroupChangePolicy + label: "When should we take ownership?" + schema: + type: string + default: "OnRootMismatch" + enum: + - value: "OnRootMismatch" + description: "OnRootMismatch" + - value: "Always" + description: "Always" + - variable: supplementalGroups + label: "supplemental Groups" + schema: + type: list + default: [] + items: + - variable: supplementalGroupsEntry + label: "supplemental Group" + schema: + type: int + + + - variable: advancedresources + label: "Set Custom Resource Limits/Requests (Advanced)" + group: "Resources and Devices" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: resources + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: limits + label: "Advanced Limit Resource Consumption" + schema: + additional_attrs: true + type: dict + attrs: + - variable: cpu + label: "CPU" + description: "1000m means 1 hyperthread. Detailed info: https://truecharts.org/manual/indepth/validation/" + schema: + type: string + default: "4000m" + valid_chars: '^(?!^0(\.0|m|)$)([0-9]+)(\.[0-9]|m?)$' + - variable: memory + label: "RAM" + description: "1Gi means 1 Gibibyte RAM. Detailed info: https://truecharts.org/manual/indepth/validation/" + schema: + type: string + default: "8Gi" + valid_chars: '^(?!^0(e[0-9]|[EPTGMK]i?|)$)([0-9]+)(|[EPTGMK]i?|e[0-9]+)$' + - variable: requests + label: "Minimum Resources Required (request)" + schema: + additional_attrs: true + type: dict + attrs: + - variable: cpu + label: "CPU" + description: "1000m means 1 hyperthread. Detailed info: https://truecharts.org/manual/indepth/validation/" + schema: + type: string + default: "10m" + valid_chars: '^(?!^0(\.0|m|)$)([0-9]+)(\.[0-9]|m?)$' + - variable: memory + label: "RAM" + description: "1Gi means 1 Gibibyte RAM. Detailed info: https://truecharts.org/manual/indepth/validation/" + schema: + type: string + default: "50Mi" + valid_chars: '^(?!^0(e[0-9]|[EPTGMK]i?|)$)([0-9]+)(|[EPTGMK]i?|e[0-9]+)$' + + - variable: deviceList + label: "Mount USB devices" + group: "Resources and Devices" + schema: + type: list + default: [] + items: + - variable: deviceListEntry + label: "Device" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the storage" + schema: + type: boolean + default: true + - variable: type + label: "(Advanced) Type of Storage" + description: "Sets the persistence type" + schema: + type: string + default: "hostPath" + hidden: true + - variable: readOnly + label: "readOnly" + schema: + type: boolean + default: false + - variable: hostPath + label: "Host Device Path" + description: "Path to the device on the host system" + schema: + type: path + - variable: mountPath + label: "Container Device Path" + description: "Path inside the container the device is mounted" + schema: + type: string + default: "/dev/ttyACM0" + + # Specify GPU configuration + - variable: scaleGPU + label: "GPU Configuration" + group: "Resources and Devices" + schema: + type: dict + $ref: + - "definitions/gpuConfiguration" + attrs: [] + + - variable: autoscaling + group: "Advanced" + label: "(Advanced) Horizontal Pod Autoscaler" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: target + label: "Target" + description: "deployment name, defaults to main deployment" + schema: + type: string + default: "" + - variable: minReplicas + label: "Minimum Replicas" + schema: + type: int + default: 1 + - variable: maxReplicas + label: "Maximum Replicas" + schema: + type: int + default: 5 + - variable: targetCPUUtilizationPercentage + label: "Target CPU Utilization Percentage" + schema: + type: int + default: 80 + - variable: targetMemoryUtilizationPercentage + label: "Target Memory Utilization Percentage" + schema: + type: int + default: 80 + - variable: networkPolicy + group: "Advanced" + label: "(Advanced) Network Policy" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: policyType + label: "Policy Type" + schema: + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "ingress" + description: "Ingress" + - value: "egress" + description: "Egress" + - value: "ingress-egress" + description: "Ingress and Egress" + - variable: egress + label: "Egress" + schema: + type: list + default: [] + items: + - variable: egressEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: to + label: "To" + schema: + type: list + default: [] + items: + - variable: toEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: ipBlock + label: "ipBlock" + schema: + additional_attrs: true + type: dict + attrs: + - variable: cidr + label: "cidr" + schema: + type: string + default: "" + - variable: except + label: "except" + schema: + type: list + default: [] + items: + - variable: exceptint + label: "" + schema: + type: int + - variable: namespaceSelector + label: "namespaceSelector" + schema: + additional_attrs: true + type: dict + attrs: + - variable: matchExpressions + label: "matchExpressions" + schema: + type: list + default: [] + items: + - variable: expressionEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: key + label: "Key" + schema: + type: string + - variable: operator + label: "operator" + schema: + type: string + default: "TCP" + enum: + - value: "In" + description: "In" + - value: "NotIn" + description: "NotIn" + - value: "Exists " + description: "Exists " + - value: "DoesNotExist " + description: "DoesNotExist " + - variable: values + label: "values" + schema: + type: list + default: [] + items: + - variable: value + label: "" + schema: + type: string + - variable: podSelector + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: matchExpressions + label: "matchExpressions" + schema: + type: list + default: [] + items: + - variable: expressionEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: key + label: "Key" + schema: + type: string + - variable: operator + label: "operator" + schema: + type: string + default: "TCP" + enum: + - value: "In" + description: "In" + - value: "NotIn" + description: "NotIn" + - value: "Exists " + description: "Exists " + - value: "DoesNotExist " + description: "DoesNotExist " + - variable: values + label: "values" + schema: + type: list + default: [] + items: + - variable: value + label: "" + schema: + type: string + - variable: ports + label: "Ports" + schema: + type: list + default: [] + items: + - variable: portsEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "port" + schema: + type: int + - variable: endPort + label: "port" + schema: + type: int + - variable: protocol + label: "Protocol" + schema: + type: string + default: "TCP" + enum: + - value: "TCP" + description: "TCP" + - value: "UDP" + description: "UDP" + - value: "SCTP" + description: "SCTP" + - variable: ingress + label: "Ingress" + schema: + type: list + default: [] + items: + - variable: ingressEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: from + label: "From" + schema: + type: list + default: [] + items: + - variable: fromEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: ipBlock + label: "ipBlock" + schema: + additional_attrs: true + type: dict + attrs: + - variable: cidr + label: "cidr" + schema: + type: string + default: "" + - variable: except + label: "except" + schema: + type: list + default: [] + items: + - variable: exceptint + label: "" + schema: + type: int + - variable: namespaceSelector + label: "namespaceSelector" + schema: + additional_attrs: true + type: dict + attrs: + - variable: matchExpressions + label: "matchExpressions" + schema: + type: list + default: [] + items: + - variable: expressionEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: key + label: "Key" + schema: + type: string + - variable: operator + label: "operator" + schema: + type: string + default: "TCP" + enum: + - value: "In" + description: "In" + - value: "NotIn" + description: "NotIn" + - value: "Exists " + description: "Exists " + - value: "DoesNotExist " + description: "DoesNotExist " + - variable: values + label: "values" + schema: + type: list + default: [] + items: + - variable: value + label: "" + schema: + type: string + - variable: podSelector + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: matchExpressions + label: "matchExpressions" + schema: + type: list + default: [] + items: + - variable: expressionEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: key + label: "Key" + schema: + type: string + - variable: operator + label: "operator" + schema: + type: string + default: "TCP" + enum: + - value: "In" + description: "In" + - value: "NotIn" + description: "NotIn" + - value: "Exists " + description: "Exists " + - value: "DoesNotExist " + description: "DoesNotExist " + - variable: values + label: "values" + schema: + type: list + default: [] + items: + - variable: value + label: "" + schema: + type: string + - variable: ports + label: "Ports" + schema: + type: list + default: [] + items: + - variable: portsEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "port" + schema: + type: int + - variable: endPort + label: "port" + schema: + type: int + - variable: protocol + label: "Protocol" + schema: + type: string + default: "TCP" + enum: + - value: "TCP" + description: "TCP" + - value: "UDP" + description: "UDP" + - value: "SCTP" + description: "SCTP" + + + - variable: addons + group: "Addons" + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: vpn + label: "VPN" + schema: + additional_attrs: true + type: dict + attrs: + - variable: type + label: "Type" + schema: + type: string + default: "disabled" + enum: + - value: "disabled" + description: "disabled" + - value: "openvpn" + description: "OpenVPN" + - value: "wireguard" + description: "Wireguard" + - variable: openvpn + label: "OpenVPN Settings" + schema: + type: dict + show_if: [["type", "=", "openvpn"]] + attrs: + - variable: username + label: "authentication username" + description: "authentication username, optional" + schema: + type: string + default: "" + - variable: password + label: "authentication password" + description: "authentication credentials" + schema: + type: string + default: "" + required: true + - variable: killSwitch + label: "Enable killswitch" + schema: + type: boolean + show_if: [["type", "!=", "disabled"]] + default: true + - variable: excludedNetworks_IPv4 + label: "Killswitch Excluded IPv4 networks" + description: "list of killswitch excluded ipv4 addresses" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: networkv4 + label: "IPv4 Network" + schema: + type: string + required: true + - variable: excludedNetworks_IPv6 + label: "Killswitch Excluded IPv6 networks" + description: "list of killswitch excluded ipv4 addresses" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: networkv6 + label: "IPv6 Network" + schema: + type: string + required: true + + - variable: configFile + label: "VPN Config File Location" + schema: + type: dict + show_if: [["type", "!=", "disabled"]] + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: true + hidden: true + - variable: type + label: "type" + schema: + type: string + default: "hostPath" + hidden: true + - variable: hostPathType + label: "hostPathType" + schema: + type: string + default: "File" + hidden: true + - variable: noMount + label: "noMount" + schema: + type: boolean + default: true + hidden: true + - variable: hostPath + label: "Full path to file" + description: "path to your local VPN config file for example: /mnt/tank/vpn.conf or /mnt/tank/vpn.ovpn" + schema: + type: string + default: "" + required: true + - variable: envList + label: "VPN environment Variables" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: value + label: "Value" + schema: + type: string + required: true + + - variable: codeserver + label: "Codeserver" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: git + label: "Git Settings" + schema: + additional_attrs: true + type: dict + attrs: + - variable: deployKey + description: "Raw SSH private key" + label: "deployKey" + schema: + type: string + - variable: deployKeyBase64 + description: "Base64-encoded SSH private key. When both variables are set, the raw SSH key takes precedence" + label: "deployKeyBase64" + schema: + type: string + - variable: service + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: type + label: "Service Type" + description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer" + schema: + type: string + default: "NodePort" + enum: + - value: "NodePort" + description: "NodePort" + - value: "ClusterIP" + description: "ClusterIP" + - value: "LoadBalancer" + description: "LoadBalancer" + - variable: loadBalancerIP + label: "LoadBalancer IP" + description: "LoadBalancerIP" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: string + default: "" + - variable: externalIPs + label: "External IP's" + description: "External IP's" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: list + default: [] + items: + - variable: externalIP + label: "External IP" + schema: + type: string + - variable: ports + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: codeserver + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: nodePort + description: "leave empty to disable" + label: "nodePort" + schema: + type: int + default: 36107 + - variable: envList + label: "Codeserver environment Variables" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: value + label: "Value" + schema: + type: string + required: true + + + - variable: promtail + label: "Promtail" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: loki + label: "Loki URL" + schema: + type: string + required: true + - variable: logs + label: "Log Paths" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: path + label: "Path" + schema: + type: string + required: true + - variable: args + label: "Promtail ecommand line arguments" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: arg + label: "Arg" + schema: + type: string + required: true + - variable: envList + label: "Promtail environment Variables" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: value + label: "Value" + schema: + type: string + required: true + + + + + - variable: netshoot + label: "Netshoot" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: envList + label: "Netshoot environment Variables" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: value + label: "Value" + schema: + type: string + required: true diff --git a/incubator/verysync/0.0.1/security.md b/incubator/verysync/0.0.1/security.md new file mode 100644 index 00000000000..05084df2a3e --- /dev/null +++ b/incubator/verysync/0.0.1/security.md @@ -0,0 +1,138 @@ +--- +hide: + - toc +--- + +# Security Overview + + + +## Helm-Chart + +##### Scan Results + +#### Chart Object: verysync/templates/common.yaml + + + +| Type | Misconfiguration ID | Check | Severity | Explaination | Links | +|:----------------|:------------------:|:-----------:|:------------------:|-----------------------------------------|-----------------------------------------| +| Kubernetes Security Check | KSV001 | Process can elevate its own privileges | MEDIUM |
Expand... A program inside the container can elevate its own privileges and run as root, which might give the program control over the container and node.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.allowPrivilegeEscalation' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv001
| +| Kubernetes Security Check | KSV003 | Default capabilities not dropped | LOW |
Expand... The container should drop all default capabilities and add only those that are needed for its execution.


Container 'RELEASE-NAME-verysync' of Deployment 'RELEASE-NAME-verysync' should add 'ALL' to 'securityContext.capabilities.drop'
|
Expand...https://kubesec.io/basics/containers-securitycontext-capabilities-drop-index-all/
https://avd.aquasec.com/appshield/ksv003
| +| Kubernetes Security Check | KSV003 | Default capabilities not dropped | LOW |
Expand... The container should drop all default capabilities and add only those that are needed for its execution.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should add 'ALL' to 'securityContext.capabilities.drop'
|
Expand...https://kubesec.io/basics/containers-securitycontext-capabilities-drop-index-all/
https://avd.aquasec.com/appshield/ksv003
| +| Kubernetes Security Check | KSV011 | CPU not limited | LOW |
Expand... Enforcing CPU limits prevents DoS via resource exhaustion.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'resources.limits.cpu'
|
Expand...https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits
https://avd.aquasec.com/appshield/ksv011
| +| Kubernetes Security Check | KSV012 | Runs as root user | MEDIUM |
Expand... 'runAsNonRoot' forces the running image to run as a non-root user to ensure least privileges.


Container 'autopermissions' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.runAsNonRoot' to true
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv012
| +| Kubernetes Security Check | KSV012 | Runs as root user | MEDIUM |
Expand... 'runAsNonRoot' forces the running image to run as a non-root user to ensure least privileges.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.runAsNonRoot' to true
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv012
| +| Kubernetes Security Check | KSV014 | Root file system is not read-only | LOW |
Expand... An immutable root file system prevents applications from writing to their local disk. This can limit intrusions, as attackers will not be able to tamper with the file system or write foreign executables to disk.


Container 'autopermissions' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.readOnlyRootFilesystem' to true
|
Expand...https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/
https://avd.aquasec.com/appshield/ksv014
| +| Kubernetes Security Check | KSV014 | Root file system is not read-only | LOW |
Expand... An immutable root file system prevents applications from writing to their local disk. This can limit intrusions, as attackers will not be able to tamper with the file system or write foreign executables to disk.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.readOnlyRootFilesystem' to true
|
Expand...https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/
https://avd.aquasec.com/appshield/ksv014
| +| Kubernetes Security Check | KSV015 | CPU requests not specified | LOW |
Expand... When containers have resource requests specified, the scheduler can make better decisions about which nodes to place pods on, and how to deal with resource contention.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'resources.requests.cpu'
|
Expand...https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits
https://avd.aquasec.com/appshield/ksv015
| +| Kubernetes Security Check | KSV016 | Memory requests not specified | LOW |
Expand... When containers have memory requests specified, the scheduler can make better decisions about which nodes to place pods on, and how to deal with resource contention.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'resources.requests.memory'
|
Expand...https://kubesec.io/basics/containers-resources-limits-memory/
https://avd.aquasec.com/appshield/ksv016
| +| Kubernetes Security Check | KSV017 | Privileged container | HIGH |
Expand... Privileged containers share namespaces with the host system and do not offer any security. They should be used exclusively for system containers that require high privileges.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.privileged' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#baseline
https://avd.aquasec.com/appshield/ksv017
| +| Kubernetes Security Check | KSV018 | Memory not limited | LOW |
Expand... Enforcing memory limits prevents DoS via resource exhaustion.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'resources.limits.memory'
|
Expand...https://kubesec.io/basics/containers-resources-limits-memory/
https://avd.aquasec.com/appshield/ksv018
| +| Kubernetes Security Check | KSV020 | Runs with low user ID | MEDIUM |
Expand... Force the container to run with user ID > 10000 to avoid conflicts with the host’s user table.


Container 'RELEASE-NAME-verysync' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.runAsUser' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv020
| +| Kubernetes Security Check | KSV020 | Runs with low user ID | MEDIUM |
Expand... Force the container to run with user ID > 10000 to avoid conflicts with the host’s user table.


Container 'autopermissions' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.runAsUser' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv020
| +| Kubernetes Security Check | KSV020 | Runs with low user ID | MEDIUM |
Expand... Force the container to run with user ID > 10000 to avoid conflicts with the host’s user table.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.runAsUser' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv020
| +| Kubernetes Security Check | KSV021 | Runs with low group ID | MEDIUM |
Expand... Force the container to run with group ID > 10000 to avoid conflicts with the host’s user table.


Container 'RELEASE-NAME-verysync' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.runAsGroup' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv021
| +| Kubernetes Security Check | KSV021 | Runs with low group ID | MEDIUM |
Expand... Force the container to run with group ID > 10000 to avoid conflicts with the host’s user table.


Container 'autopermissions' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.runAsGroup' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv021
| +| Kubernetes Security Check | KSV021 | Runs with low group ID | MEDIUM |
Expand... Force the container to run with group ID > 10000 to avoid conflicts with the host’s user table.


Container 'hostpatch' of Deployment 'RELEASE-NAME-verysync' should set 'securityContext.runAsGroup' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv021
| +| Kubernetes Security Check | KSV023 | hostPath volumes mounted | MEDIUM |
Expand... HostPath volumes must be forbidden.


Deployment 'RELEASE-NAME-verysync' should not set 'spec.template.volumes.hostPath'
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#baseline
https://avd.aquasec.com/appshield/ksv023
| +| Kubernetes Security Check | KSV029 | A root primary or supplementary GID set | LOW |
Expand... Containers should be forbidden from running with a root primary or supplementary GID.


Deployment 'RELEASE-NAME-verysync' should set 'spec.securityContext.runAsGroup', 'spec.securityContext.supplementalGroups[*]' and 'spec.securityContext.fsGroup' to integer greater than 0
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv029
| + +## Containers + +##### Detected Containers + + tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c + tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c + jonnyan404/verysync:2.13.0@sha256:a6f4fe60d6e95f8b925701cd1c3ec702ccfb39d8da58441ec6e7e9c749a0692c + +##### Scan Results + + +#### Container: tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c (alpine 3.14.2) + + +**alpine** + + +| Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | +|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| busybox | CVE-2021-42378 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42379 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42380 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42381 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42382 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42383 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
| +| busybox | CVE-2021-42384 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42385 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42386 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42374 | MEDIUM | 1.33.1-r3 | 1.33.1-r4 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42375 | MEDIUM | 1.33.1-r3 | 1.33.1-r5 |
Expand...https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
| +| libcrypto1.1 | CVE-2022-0778 | HIGH | 1.1.1l-r0 | 1.1.1n-r0 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://linux.oracle.com/cve/CVE-2022-0778.html
https://linux.oracle.com/errata/ELSA-2022-9237.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
https://ubuntu.com/security/notices/USN-5328-1
https://ubuntu.com/security/notices/USN-5328-2
https://www.debian.org/security/2022/dsa-5103
https://www.openssl.org/news/secadv/20220315.txt
| +| libssl1.1 | CVE-2022-0778 | HIGH | 1.1.1l-r0 | 1.1.1n-r0 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://linux.oracle.com/cve/CVE-2022-0778.html
https://linux.oracle.com/errata/ELSA-2022-9237.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
https://ubuntu.com/security/notices/USN-5328-1
https://ubuntu.com/security/notices/USN-5328-2
https://www.debian.org/security/2022/dsa-5103
https://www.openssl.org/news/secadv/20220315.txt
| +| ssl_client | CVE-2021-42378 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42379 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42380 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42381 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42382 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42383 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
| +| ssl_client | CVE-2021-42384 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42385 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42386 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42374 | MEDIUM | 1.33.1-r3 | 1.33.1-r4 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42375 | MEDIUM | 1.33.1-r3 | 1.33.1-r5 |
Expand...https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
| + + +#### Container: tccr.io/truecharts/alpine:v3.14.2@sha256:4095394abbae907e94b1f2fd2e2de6c4f201a5b9704573243ca8eb16db8cdb7c (alpine 3.14.2) + + +**alpine** + + +| Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | +|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| busybox | CVE-2021-42378 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42379 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42380 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42381 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42382 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42383 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
| +| busybox | CVE-2021-42384 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42385 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42386 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42374 | MEDIUM | 1.33.1-r3 | 1.33.1-r4 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| busybox | CVE-2021-42375 | MEDIUM | 1.33.1-r3 | 1.33.1-r5 |
Expand...https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
| +| libcrypto1.1 | CVE-2022-0778 | HIGH | 1.1.1l-r0 | 1.1.1n-r0 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://linux.oracle.com/cve/CVE-2022-0778.html
https://linux.oracle.com/errata/ELSA-2022-9237.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
https://ubuntu.com/security/notices/USN-5328-1
https://ubuntu.com/security/notices/USN-5328-2
https://www.debian.org/security/2022/dsa-5103
https://www.openssl.org/news/secadv/20220315.txt
| +| libssl1.1 | CVE-2022-0778 | HIGH | 1.1.1l-r0 | 1.1.1n-r0 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://linux.oracle.com/cve/CVE-2022-0778.html
https://linux.oracle.com/errata/ELSA-2022-9237.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
https://ubuntu.com/security/notices/USN-5328-1
https://ubuntu.com/security/notices/USN-5328-2
https://www.debian.org/security/2022/dsa-5103
https://www.openssl.org/news/secadv/20220315.txt
| +| ssl_client | CVE-2021-42378 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42378
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42379 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42379
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42380 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42380
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42381 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42381
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42382 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42382
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42383 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
| +| ssl_client | CVE-2021-42384 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42384
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42385 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42385
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42386 | HIGH | 1.33.1-r3 | 1.33.1-r6 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42386
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42374 | MEDIUM | 1.33.1-r3 | 1.33.1-r4 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-42374
https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
https://ubuntu.com/security/notices/USN-5179-1
| +| ssl_client | CVE-2021-42375 | MEDIUM | 1.33.1-r3 | 1.33.1-r5 |
Expand...https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
https://security.netapp.com/advisory/ntap-20211223-0002/
| + + +#### Container: jonnyan404/verysync:2.13.0@sha256:a6f4fe60d6e95f8b925701cd1c3ec702ccfb39d8da58441ec6e7e9c749a0692c (alpine 3.15.0) + + +**alpine** + + +| Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | +|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| libcrypto1.1 | CVE-2022-0778 | HIGH | 1.1.1l-r7 | 1.1.1n-r0 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://linux.oracle.com/cve/CVE-2022-0778.html
https://linux.oracle.com/errata/ELSA-2022-9237.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
https://ubuntu.com/security/notices/USN-5328-1
https://ubuntu.com/security/notices/USN-5328-2
https://www.debian.org/security/2022/dsa-5103
https://www.openssl.org/news/secadv/20220315.txt
| +| libretls | CVE-2022-0778 | HIGH | 3.3.4-r2 | 3.3.4-r3 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://linux.oracle.com/cve/CVE-2022-0778.html
https://linux.oracle.com/errata/ELSA-2022-9237.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
https://ubuntu.com/security/notices/USN-5328-1
https://ubuntu.com/security/notices/USN-5328-2
https://www.debian.org/security/2022/dsa-5103
https://www.openssl.org/news/secadv/20220315.txt
| +| libssl1.1 | CVE-2022-0778 | HIGH | 1.1.1l-r7 | 1.1.1n-r0 |
Expand...https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://linux.oracle.com/cve/CVE-2022-0778.html
https://linux.oracle.com/errata/ELSA-2022-9237.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
https://ubuntu.com/security/notices/USN-5328-1
https://ubuntu.com/security/notices/USN-5328-2
https://www.debian.org/security/2022/dsa-5103
https://www.openssl.org/news/secadv/20220315.txt
| + +**gobinary** + + +| Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | +|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| github.com/mholt/archiver | CVE-2019-10743 | MEDIUM | v3.1.1+incompatible | 3.3.2 |
Expand...https://github.com/advisories/GHSA-h74j-692g-48mq
https://github.com/mholt/archiver/commit/8217ed3a206c0473b4ec1aff51375b398838073a
https://github.com/mholt/archiver/pull/169
https://github.com/mholt/archiver/pull/203
https://github.com/snyk/zip-slip-vulnerability
https://nvd.nist.gov/vuln/detail/CVE-2019-10743
https://snyk.io/research/zip-slip-vulnerability
https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMHOLTARCHIVERCMDARC-174728
https://snyk.io/vuln/SNYK-GOLANG-GITHUBCOMMHOLTARCHIVERCMDARC-174728,
| + diff --git a/incubator/verysync/0.0.1/templates/common.yaml b/incubator/verysync/0.0.1/templates/common.yaml new file mode 100644 index 00000000000..a6613c2ce21 --- /dev/null +++ b/incubator/verysync/0.0.1/templates/common.yaml @@ -0,0 +1 @@ +{{ include "common.all" . }} diff --git a/incubator/verysync/0.0.1/values.yaml b/incubator/verysync/0.0.1/values.yaml new file mode 100644 index 00000000000..e69de29bb2d diff --git a/incubator/verysync/item.yaml b/incubator/verysync/item.yaml new file mode 100644 index 00000000000..54c9c9ecace --- /dev/null +++ b/incubator/verysync/item.yaml @@ -0,0 +1,4 @@ +icon_url: https://truecharts.org/_static/img/appicons/verysync.png +categories: +- media +