image: repository: ghcr.io/analogj/scrutiny pullPolicy: IfNotPresent tag: v0.8.0-omnibus@sha256:426c4a3174d1e72db7cffcc668e3657f993f34cc36df2a8a427f01f1600dc8ea service: main: ports: main: targetPort: 8080 port: 10151 persistence: varrun: enabled: true config: enabled: true mountPath: "/opt/scrutiny/config" influxdb: enabled: true mountPath: "/opt/scrutiny/influxdb" udev: enabled: true type: hostPath hostPath: "/run/udev" mountPath: "/run/udev" readOnly: true portal: open: enabled: true securityContext: container: runAsNonRoot: false readOnlyRootFilesystem: false privileged: true allowPrivilegeEscalation: true capabilities: # RawIO is for HDDs # SYS_ADMIN is for NVMEs add: - SYS_RAWIO - SYS_ADMIN runAsUser: 0 runAsGroup: 0 workload: main: podSpec: containers: main: probes: liveness: path: "/api/health" readiness: path: "/api/health" startup: path: "/api/health" env: COLLECTOR_CRON_SCHEDULE: "0 0 * * *" COLLECTOR_HOST_ID: "TrueNAS"