From 2896e0dafe404773986d683553027e59f5f67389 Mon Sep 17 00:00:00 2001 From: Jonathan Leech-Pepin Date: Mon, 20 Apr 2026 17:52:37 -0400 Subject: [PATCH] Update a bunch of images --- .../ai/openwebui/extra/gatus-endpoints.yaml | 2 +- namespaces/ai/openwebui/kustomization.yaml | 2 +- namespaces/apps/linkwarden/kustomization.yaml | 5 +++++ .../apps/linkwarden/patches/deployment.yaml | 3 ++- namespaces/apps/paperless/kustomization.yaml | 7 ++++++- .../apps/paperless/patches/deployment.yaml | 4 ++-- .../apps/syncthing/patches/statefulset.yaml | 2 +- namespaces/auth/authentik/patches/chart.yaml | 2 +- namespaces/kube-system/kustomization.yaml | 14 ++++++++++++++ namespaces/kustomization.yaml | 1 + namespaces/longhorn/longhorn/patches/chart.yaml | 2 +- namespaces/monitoring/gatus/kustomization.yaml | 4 ++++ .../monitoring/gatus/patches/deployment.yaml | 6 +++++- restore/pgdump.yaml | 17 +++++++++++++++++ 14 files changed, 61 insertions(+), 10 deletions(-) create mode 100644 namespaces/kube-system/kustomization.yaml create mode 100644 restore/pgdump.yaml diff --git a/namespaces/ai/openwebui/extra/gatus-endpoints.yaml b/namespaces/ai/openwebui/extra/gatus-endpoints.yaml index 0069e4d..be6b4e2 100644 --- a/namespaces/ai/openwebui/extra/gatus-endpoints.yaml +++ b/namespaces/ai/openwebui/extra/gatus-endpoints.yaml @@ -8,7 +8,7 @@ data: owui-internal-gatus-endpoints.yaml: | endpoints: - name: Open WebUI - url: http://open-webui.ai.svc.cluster.local/ + url: http://open-webui-chart.ai.svc.cluster.local/ group: Internal/AI interval: 5m alerts: diff --git a/namespaces/ai/openwebui/kustomization.yaml b/namespaces/ai/openwebui/kustomization.yaml index 07f3a58..22bd89f 100644 --- a/namespaces/ai/openwebui/kustomization.yaml +++ b/namespaces/ai/openwebui/kustomization.yaml @@ -91,7 +91,7 @@ replacements: labels: - includeSelectors: true pairs: - app.kubernetes.io/appName: open-webui + app.kubernetes.io/appName: open-webui-chart - pairs: app.kubernetes.io/appNamespace: ai - pairs: diff --git a/namespaces/apps/linkwarden/kustomization.yaml b/namespaces/apps/linkwarden/kustomization.yaml index 2fe15c3..0e00bc5 100644 --- a/namespaces/apps/linkwarden/kustomization.yaml +++ b/namespaces/apps/linkwarden/kustomization.yaml @@ -1,6 +1,11 @@ apiVersion: kustomize.config.k8s.io/v1beta1 kind: Kustomization +images: + - name: image + newName: ghcr.io/linkwarden/linkwarden + newTag: v2.14.0 + transformers: - |- apiVersion: builtin diff --git a/namespaces/apps/linkwarden/patches/deployment.yaml b/namespaces/apps/linkwarden/patches/deployment.yaml index 51d784c..102eff6 100644 --- a/namespaces/apps/linkwarden/patches/deployment.yaml +++ b/namespaces/apps/linkwarden/patches/deployment.yaml @@ -7,7 +7,8 @@ spec: spec: containers: - name: linkwarden - image: ghcr.io/linkwarden/linkwarden:v2.9.1 + image: image + imagePullPolicy: IfNotPresent envFrom: - configMapRef: name: linkwarden-config diff --git a/namespaces/apps/paperless/kustomization.yaml b/namespaces/apps/paperless/kustomization.yaml index 1d5b65a..dc8f8ae 100644 --- a/namespaces/apps/paperless/kustomization.yaml +++ b/namespaces/apps/paperless/kustomization.yaml @@ -1,6 +1,11 @@ apiVersion: kustomize.config.k8s.io/v1beta1 kind: Kustomization +images: + - name: image + newName: ghcr.io/paperless-ngx/paperless-ngx + newTag: 2.20.14 + transformers: - |- apiVersion: builtin @@ -106,7 +111,7 @@ configMapGenerator: - PAPERLESS_FILENAME_DATE_ORDER=MDY - PAPERLESS_FILENAME_FORMAT="{{created_year}}/{{created_month}}/{{created_day}}/{{title}}" - PAPERLESS_PORT="8000" - - PAPERLESS_BIND_ADDR="[::]" + - PAPERLESS_BIND_ADDR="::" - PAPERLESS_CONSUMER_POLLING="30" # Setup SMTP - PAPERLESS_EMAIL_HOST=blizzard.mxrouting.net diff --git a/namespaces/apps/paperless/patches/deployment.yaml b/namespaces/apps/paperless/patches/deployment.yaml index 919df2b..ad28fcf 100644 --- a/namespaces/apps/paperless/patches/deployment.yaml +++ b/namespaces/apps/paperless/patches/deployment.yaml @@ -14,10 +14,10 @@ spec: - key: kubernetes.io/hostname operator: In values: - - arthur + - blackstaff containers: - name: paperless - image: ghcr.io/paperless-ngx/paperless-ngx:2.14.7 + image: image imagePullPolicy: IfNotPresent volumeMounts: - name: consume-volume diff --git a/namespaces/apps/syncthing/patches/statefulset.yaml b/namespaces/apps/syncthing/patches/statefulset.yaml index 93665fe..dfcfc8d 100644 --- a/namespaces/apps/syncthing/patches/statefulset.yaml +++ b/namespaces/apps/syncthing/patches/statefulset.yaml @@ -8,7 +8,7 @@ spec: restartPolicy: Always containers: - name: syncthing - image: syncthing/syncthing:1.29 + image: syncthing/syncthing:2.0.10 ports: - name: syncthing containerPort: 8384 diff --git a/namespaces/auth/authentik/patches/chart.yaml b/namespaces/auth/authentik/patches/chart.yaml index c0ed694..d0dca2a 100644 --- a/namespaces/auth/authentik/patches/chart.yaml +++ b/namespaces/auth/authentik/patches/chart.yaml @@ -5,7 +5,7 @@ metadata: spec: chart: authentik repo: https://charts.goauthentik.io - version: 2025.6.4 + version: 2025.12.3 targetNamespace: auth createNamespace: true valuesContent: |- diff --git a/namespaces/kube-system/kustomization.yaml b/namespaces/kube-system/kustomization.yaml new file mode 100644 index 0000000..9b853eb --- /dev/null +++ b/namespaces/kube-system/kustomization.yaml @@ -0,0 +1,14 @@ +apiVersion: kustomize.config.k8s.io/v1beta1 +kind: Kustomization + +configMapGenerator: + - name: coredns-custom + namespace: kube-system + options: + disableNameSuffixHash: true + literals: + - | + tailnet.server=leechpepin.tailnet:53 { + forward . 100.100.100.100 + cache 30 + } diff --git a/namespaces/kustomization.yaml b/namespaces/kustomization.yaml index f5a8806..539fe95 100644 --- a/namespaces/kustomization.yaml +++ b/namespaces/kustomization.yaml @@ -2,6 +2,7 @@ apiVersion: kustomize.config.k8s.io/v1beta1 kind: Kustomization resources: + - kube-system - cert-manager/post-crd - ai/ - apps/ diff --git a/namespaces/longhorn/longhorn/patches/chart.yaml b/namespaces/longhorn/longhorn/patches/chart.yaml index 8b40270..f8d71b6 100644 --- a/namespaces/longhorn/longhorn/patches/chart.yaml +++ b/namespaces/longhorn/longhorn/patches/chart.yaml @@ -8,7 +8,7 @@ metadata: generation: 1 name: longhorn-install spec: - version: v1.7.2 + version: v1.10.2 chart: longhorn repo: https://charts.longhorn.io failurePolicy: abort diff --git a/namespaces/monitoring/gatus/kustomization.yaml b/namespaces/monitoring/gatus/kustomization.yaml index 5fa11d3..2386d2e 100644 --- a/namespaces/monitoring/gatus/kustomization.yaml +++ b/namespaces/monitoring/gatus/kustomization.yaml @@ -1,6 +1,10 @@ apiVersion: kustomize.config.k8s.io/v1beta1 kind: Kustomization +images: + - name: image + newName: twinproduction/gatus + newTag: v5.35.0 transformers: - |- apiVersion: builtin diff --git a/namespaces/monitoring/gatus/patches/deployment.yaml b/namespaces/monitoring/gatus/patches/deployment.yaml index 6d7f2b2..2af73b8 100644 --- a/namespaces/monitoring/gatus/patches/deployment.yaml +++ b/namespaces/monitoring/gatus/patches/deployment.yaml @@ -23,8 +23,12 @@ spec: - "true" containers: - name: gatus - image: twinproduction/gatus:v5.17.0 + image: image imagePullPolicy: IfNotPresent + securityContext: + capabilities: + add: + - NET_RAW ports: - containerPort: 8080 name: gatus diff --git a/restore/pgdump.yaml b/restore/pgdump.yaml new file mode 100644 index 0000000..68e8148 --- /dev/null +++ b/restore/pgdump.yaml @@ -0,0 +1,17 @@ +apiVersion: v1 +kind: Pod +metadata: + name: pvc-inspector + namespace: core +spec: + containers: + - name: inspector + image: busybox + command: ["sleep", "3600"] + volumeMounts: + - name: my-volume + mountPath: /data + volumes: + - name: my-volume + persistentVolumeClaim: + claimName: backup-pvc