openstack/openstack-helm
Code Issues Proposed changes
Helm charts for deploying OpenStack on Kubernetes
2,530 Commits 2 Branches 1 Tag 115 MiB
Smarty 65.4%
Shell 33.7%
Python 0.5%
Makefile 0.4%
482dbcac29
Go to file
Gage Hugo 482dbcac29 Scan templated python files with bandit 
This change adds a zuul check job to export any templated python
contained in the helm charts and scan it with bandit for any
potential security flaws.

This also adds two nosec comments on the instances of subprocess
used as they currently do not appear to be malicious, as well
as changing the endpoint_update python code to prevent sql
injection, which satisfies bandit code B608.

Change-Id: I2212d26514c3510353d16a4592893dd2e85cb369
2019-01-22 20:53:52 +00:00
barbican Enable network policy enforcement 2018-10-23 14:58:13 +00:00
ceilometer Upgrade rally to 1.3.0 2018-12-20 00:22:49 +00:00
cinder Merge "Fix for adding allowPrivilegeEscalation flag in container securityContext in the charts whereever needed" 2019-01-10 00:48:32 +00:00
congress Enable network policy enforcement 2018-10-23 14:58:13 +00:00
doc Merge "spelling errors" 2019-01-07 07:14:06 +00:00
glance Merge "Fix for adding allowPrivilegeEscalation flag in container securityContext in the charts whereever needed" 2019-01-10 00:48:32 +00:00
heat Merge "Fix for adding allowPrivilegeEscalation flag in container securityContext in the charts whereever needed" 2019-01-10 00:48:32 +00:00
horizon Merge "fix the url in doc" 2018-12-28 08:33:43 +00:00
ironic Enable network policy enforcement 2018-10-23 14:58:13 +00:00
keystone Scan templated python files with bandit 2019-01-22 20:53:52 +00:00
magnum Enable network policy enforcement 2018-10-23 14:58:13 +00:00
mistral Upgrade rally to 1.3.0 2018-12-20 00:22:49 +00:00
neutron Merge "Upgrade rally to 1.3.0" 2019-01-09 05:18:39 +00:00
nova Merge "[Nova] Add host interface for host_ip in hypervisor description" 2019-01-15 15:26:36 +00:00
rally Remove deprecated NovaImages.list_images test scenario 2019-01-09 22:11:12 -06:00
senlin Enable network policy enforcement 2018-10-23 14:58:13 +00:00
tempest Use unique names for tempest jobs 2018-12-04 16:57:14 +00:00
tests Revert "Update OSH Author copyrights to OSF" 2018-08-28 17:25:13 +00:00
tools Scan templated python files with bandit 2019-01-22 20:53:52 +00:00
zuul.d Scan templated python files with bandit 2019-01-22 20:53:52 +00:00
.gitignore Update .gitignore 2018-05-13 22:17:57 -05:00
.gitreview Add .gitreview to OpenStack-Helm 2017-04-11 07:03:45 -05:00
CONTRIBUTING.rst Updates Launchpad references to Storyboard 2018-06-09 20:00:11 -05:00
LICENSE Initial commit 2016-11-12 14:26:57 -05:00
Makefile Use the openstack-helm-lint job from central location 2018-10-15 09:21:42 +00:00
README.rst Add the project source code repository in README 2018-10-19 14:22:25 +00:00
setup.cfg Change openstack-dev to openstack-discuss 2018-12-04 17:59:51 +00:00
setup.py Beggining of docs conversion to OpenStack format 2017-04-27 17:04:17 +02:00
tox.ini Update docs building 2019-01-05 09:22:36 +00:00

README.rst

OpenStack-Helm

Mission

The goal of OpenStack-Helm is to provide a collection of Helm charts that simply, resiliently, and flexibly deploy OpenStack and related services on Kubernetes.

Communication

  • Join us on Slack - #openstack-helm
  • Join us on IRC: #openstack-helm on freenode
  • Community IRC Meetings: [Every Tuesday @ 3PM UTC], #openstack-meeting-5 on freenode
  • Meeting Agenda Items: Agenda

Storyboard

Bugs and enhancements are tracked via OpenStack-Helm's Storyboard.

Installation and Development

Please review our documentation. For quick installation, evaluation, and convenience, we have a kubeadm based all-in-one solution that runs in a Docker container. The Kubeadm-AIO set up can be found here.

This project is under active development. We encourage anyone interested in OpenStack-Helm to review our Installation documentation. Feel free to ask questions or check out our current Storyboard backlog.

To evaluate a multinode installation, follow the Bare Metal install guide.

Repository

Developers wishing to work on the OpenStack-Helm project should always base their work on the latest code, available from the OpenStack-Helm git repository.

OpenStack-Helm git repository