From 48e6d07be84adf74061ada8cbc6d097674d8553d Mon Sep 17 00:00:00 2001 From: TrueCharts-Bot Date: Sun, 3 Apr 2022 15:26:42 +0000 Subject: [PATCH] Commit new App releases for TrueCharts Signed-off-by: TrueCharts-Bot --- stable/zigbee2mqtt/3.0.0/CHANGELOG.md | 99 + stable/zigbee2mqtt/3.0.0/CONFIG.md | 7 + stable/zigbee2mqtt/3.0.0/Chart.lock | 6 + stable/zigbee2mqtt/3.0.0/Chart.yaml | 27 + stable/zigbee2mqtt/3.0.0/README.md | 37 + stable/zigbee2mqtt/3.0.0/SKIPINSTALL | 0 stable/zigbee2mqtt/3.0.0/app-readme.md | 3 + .../zigbee2mqtt/3.0.0/charts/common-9.2.6.tgz | Bin 0 -> 44100 bytes stable/zigbee2mqtt/3.0.0/helm-values.md | 58 + stable/zigbee2mqtt/3.0.0/ix_values.yaml | 106 + stable/zigbee2mqtt/3.0.0/questions.yaml | 2489 +++++++++++++++++ stable/zigbee2mqtt/3.0.0/security.md | 109 + .../zigbee2mqtt/3.0.0/templates/common.yaml | 5 + stable/zigbee2mqtt/3.0.0/values.yaml | 0 14 files changed, 2946 insertions(+) create mode 100644 stable/zigbee2mqtt/3.0.0/CHANGELOG.md create mode 100644 stable/zigbee2mqtt/3.0.0/CONFIG.md create mode 100644 stable/zigbee2mqtt/3.0.0/Chart.lock create mode 100644 stable/zigbee2mqtt/3.0.0/Chart.yaml create mode 100644 stable/zigbee2mqtt/3.0.0/README.md create mode 100644 stable/zigbee2mqtt/3.0.0/SKIPINSTALL create mode 100644 stable/zigbee2mqtt/3.0.0/app-readme.md create mode 100644 stable/zigbee2mqtt/3.0.0/charts/common-9.2.6.tgz create mode 100644 stable/zigbee2mqtt/3.0.0/helm-values.md create mode 100644 stable/zigbee2mqtt/3.0.0/ix_values.yaml create mode 100644 stable/zigbee2mqtt/3.0.0/questions.yaml create mode 100644 stable/zigbee2mqtt/3.0.0/security.md create mode 100644 stable/zigbee2mqtt/3.0.0/templates/common.yaml create mode 100644 stable/zigbee2mqtt/3.0.0/values.yaml diff --git a/stable/zigbee2mqtt/3.0.0/CHANGELOG.md b/stable/zigbee2mqtt/3.0.0/CHANGELOG.md new file mode 100644 index 0000000000..c1baaa75f4 --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/CHANGELOG.md @@ -0,0 +1,99 @@ +# Changelog
+ + + +### [zigbee2mqtt-3.0.0](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.14...zigbee2mqtt-3.0.0) (2022-04-03) + +#### Feat + +* allow use of custom config file BREAKING CHANGE ([#2395](https://github.com/truecharts/apps/issues/2395)) + + + + +### [zigbee2mqtt-3.0.0](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.14...zigbee2mqtt-3.0.0) (2022-04-03) + +#### Feat + +* allow use of custom config file BREAKING CHANGE ([#2395](https://github.com/truecharts/apps/issues/2395)) + + + + +### [zigbee2mqtt-2.0.14](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.13...zigbee2mqtt-2.0.14) (2022-04-02) + +#### Fix + +* wrong default on dropdown ([#2391](https://github.com/truecharts/apps/issues/2391)) + + + + +### [zigbee2mqtt-2.0.13](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.12...zigbee2mqtt-2.0.13) (2022-03-31) + +#### Chore + +* update helm general non-major helm releases ([#2361](https://github.com/truecharts/apps/issues/2361)) + + + + +### [zigbee2mqtt-2.0.12](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.11...zigbee2mqtt-2.0.12) (2022-03-30) + +#### Chore + +* update helm general non-major helm releases ([#2354](https://github.com/truecharts/apps/issues/2354)) + + + + +### [zigbee2mqtt-2.0.11](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.10...zigbee2mqtt-2.0.11) (2022-03-26) + +#### Chore + +* bump all apps to trigger ci + + + + +### [zigbee2mqtt-2.0.8](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.7...zigbee2mqtt-2.0.8) (2022-03-20) + +#### Fix + +* create an initial file ([#2233](https://github.com/truecharts/apps/issues/2233)) + + + + +### [zigbee2mqtt-2.0.7](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.6...zigbee2mqtt-2.0.7) (2022-03-20) + +#### Fix + +* Remove configmap and provide questions for basic setup to get up and running ([#2225](https://github.com/truecharts/apps/issues/2225)) + + + + +### [zigbee2mqtt-2.0.6](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.5...zigbee2mqtt-2.0.6) (2022-03-19) + +#### Fix + +* Add more basic options in gui ([#2215](https://github.com/truecharts/apps/issues/2215)) + + + + +### [zigbee2mqtt-2.0.5](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.4...zigbee2mqtt-2.0.5) (2022-03-18) + +#### Fix + +* Expose gui option to set usbdevice path ([#2213](https://github.com/truecharts/apps/issues/2213)) + + + + +### [zigbee2mqtt-2.0.2](https://github.com/truecharts/apps/compare/zigbee2mqtt-2.0.1...zigbee2mqtt-2.0.2) (2022-03-07) + +#### Chore + +* update helm general non-major helm releases ([#2111](https://github.com/truecharts/apps/issues/2111)) diff --git a/stable/zigbee2mqtt/3.0.0/CONFIG.md b/stable/zigbee2mqtt/3.0.0/CONFIG.md new file mode 100644 index 0000000000..c147b7c819 --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/CONFIG.md @@ -0,0 +1,7 @@ +# Configuration Options + +##### Connecting to other apps +If you need to connect this App to other Apps on TrueNAS SCALE, please refer to our [Linking Apps Internally](https://truecharts.org/manual/Quick-Start%20Guides/06-linking-apps/) quick-start guide. + +##### Available config options +In the future this page is going to contain an automated list of options available in the installation/edit UI. diff --git a/stable/zigbee2mqtt/3.0.0/Chart.lock b/stable/zigbee2mqtt/3.0.0/Chart.lock new file mode 100644 index 0000000000..7600b55c4c --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/Chart.lock @@ -0,0 +1,6 @@ +dependencies: +- name: common + repository: https://library-charts.truecharts.org + version: 9.2.6 +digest: sha256:a567b53fc3d0d618567f328d9fbb09695895b8e15d6ca178bf4a198c58080cac +generated: "2022-04-03T15:22:09.036399679Z" diff --git a/stable/zigbee2mqtt/3.0.0/Chart.yaml b/stable/zigbee2mqtt/3.0.0/Chart.yaml new file mode 100644 index 0000000000..4468040027 --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/Chart.yaml @@ -0,0 +1,27 @@ +apiVersion: v2 +appVersion: "1.24.0" +dependencies: +- name: common + repository: https://library-charts.truecharts.org + version: 9.2.6 +description: Bridges events and allows you to control your Zigbee devices via MQTT +home: https://github.com/truecharts/apps/tree/master/charts/stable/zigbee2mqtt +icon: https://truecharts.org/_static/img/appicons/zigbee2mqtt.png +keywords: +- zigbee +- mqtt +- home-assistant +kubeVersion: '>=1.16.0-0' +maintainers: +- email: info@truecharts.org + name: TrueCharts + url: https://truecharts.org +name: zigbee2mqtt +sources: +- https://github.com/Koenkk/zigbee2mqtt +version: 3.0.0 +annotations: + truecharts.org/catagories: | + - media + truecharts.org/SCALE-support: "true" + truecharts.org/grade: U diff --git a/stable/zigbee2mqtt/3.0.0/README.md b/stable/zigbee2mqtt/3.0.0/README.md new file mode 100644 index 0000000000..6818886758 --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/README.md @@ -0,0 +1,37 @@ +# Introduction + +Bridges events and allows you to control your Zigbee devices via MQTT + +TrueCharts are designed to be installed as TrueNAS SCALE app only. We can not guarantee this charts works as a stand-alone helm installation. +**This chart is not maintained by the upstream project and any issues with the chart should be raised [here](https://github.com/truecharts/apps/issues/new/choose)** + +## Source Code + +* + +## Requirements + +Kubernetes: `>=1.16.0-0` + +## Dependencies + +| Repository | Name | Version | +|------------|------|---------| +| https://library-charts.truecharts.org | common | 9.2.6 | + +## Installing the Chart + +To install this App on TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/manual/Quick-Start%20Guides/02-Installing-an-App/). + +## Upgrading, Rolling Back and Uninstalling the Chart + +To upgrade, rollback or delete this App from TrueNAS SCALE check our [Quick-Start Guide](https://truecharts.org/manual/Quick-Start%20Guides/04-Upgrade-rollback-delete-an-App/). + +## Support + +- Please check our [quick-start guides](https://truecharts.org/manual/Quick-Start%20Guides/01-Adding-TrueCharts/) first. +- See the [Wiki](https://truecharts.org) +- Check our [Discord](https://discord.gg/tVsPTHWTtr) +- Open a [issue](https://github.com/truecharts/apps/issues/new/choose) +--- +All Rights Reserved - The TrueCharts Project diff --git a/stable/zigbee2mqtt/3.0.0/SKIPINSTALL b/stable/zigbee2mqtt/3.0.0/SKIPINSTALL new file mode 100644 index 0000000000..e69de29bb2 diff --git a/stable/zigbee2mqtt/3.0.0/app-readme.md b/stable/zigbee2mqtt/3.0.0/app-readme.md new file mode 100644 index 0000000000..26fb71a58e --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/app-readme.md @@ -0,0 +1,3 @@ +Bridges events and allows you to control your Zigbee devices via MQTT + +This App is supplied by TrueCharts, for more information please visit https://truecharts.org diff --git a/stable/zigbee2mqtt/3.0.0/charts/common-9.2.6.tgz b/stable/zigbee2mqtt/3.0.0/charts/common-9.2.6.tgz new file mode 100644 index 0000000000000000000000000000000000000000..9810b352e2b0740682253f9c9c8cf90e50aef07f GIT binary patch literal 44100 zcmV);K!(2`iwG0|00000|0w_~VMtOiV@ORlOnEsqVl!4SWK%V1T2nbTPgYhoO;>Dc zVQyr3R8em|NM&qo0PMYccjGpaC_aDdQ{bw5ZtPs^X<4?l)AL)$-AR1X51+QXv%9l% z+z<*iwzfO2a({oQ{DPXZ)JQGO+vF?T0zkwBqPC{z^+g+h=lmr2|^T|mORYq*U5 zbpKDk-|vq{Bk^y)-!J~#AMf}7G#CwsgZ+Mgzd!y{e=r=44*vxD4}eSQ$tZ*5PyIW$ zRqWg!wF+(vEP_y3Qc+~G79vrl;(fTGKA)T~3AaAVI(U^9`i&h7yX0Ed-GF|=V zuP+AO!MNM+^uK8>A&wcuF(LvOT0$I60FGzLf98O@37NM5h#~KAi^kS0P}(^00>GGidjO|6EI%{q>B?OW`cJxm z!-Mf;8tlV^@pKprjt}5yIttK1Fg~13`@yh(Jlj9&?~f0L12hfy2jg%ygookyXgV4m zOpk-n(R9Dx7=tv6B9JB#4%RIoew~XS6L2HaJ^g{+oxGmLhFhO%( zv6}8V?1m&aFdIO#3B4M0``uxGIOrb_Muy&p5RGO>{lU@x(ZLZ4$NPuJ)A8(Rb~v6L zq1k9Qn2rud)8TM9J?bAEqWw49MHjo?A zS(o1o%c1hHJL(QKc?X9B)ISP?FdT&Apnp7_&5lRM!Tw=@Mzhi3!FYO%P=ByLoE?Qn zqw)UW_-H(Xa5&sQ7!RSJoeOPmMco)Nx=0eXEp>IhYU&!u4XLZkZ-!MZEDrhy;r?j9 zkHW)X5RUd|C>$Jx({M02Je(emQ7|3Pg8jqsV6Z<8MuTvF6vE+tKN$6gaCCHV(4g&V z>YhY5a7`6mgCs;0krg7_QZ}zyOt=on7N!SP^#MzaI{=jfhQ}z}A072!AED9y>=4ezM}rv(55mzb7!D2& z24gs#4T8}C!4Qp)_m8H-ad;FQ2gBg-;Anqi)7y#Ngt9q7^q1`guc=uhdUNPag|Dg6 z1fHwr9QK{W_m2)o=xB<<0qP&l4&ZEr(80k$zkfVKvoRVS z4bb7J4@di>{b{4-w<7ft5)8xXwscn2s)?-OHl(mBz7dj3+kW@3yRT_GM#qC=)JKDZ zelQ#d$D_kx7#@$0j)P%%5FCsTM}rU@A08i|urCacqyGNU(f(jIJ{TR0hThrZw!Ix; zlX#xog0Qk$4Ph1Bri7KnH$rjthw`{8i^;9%Sj`uhkS_QywqqvQSI zFg%>@_eX~ZGdM%TDI6Y$!~Ss}jiCxb?3$QfoSwXXH32gi zQPgS$Nz6zRMTi)$eggSc{AuHIcMK-r%h!tDMR1CuZNSP3ckRq7PB0(pVGi(jG$F;oVTgO|Ww z3Q}+|0MFxu@Tr3-|EBThQ;XOj_zSE1IgJY~E#YU7#c&02#HXI9W&Pd;49&<~0uX-{ zs#-%^sGCBbD_&nNVI1zzT?0q!R6Y%aBetaq ziK*;?0m+=!)aIY9swZJ6Yv9<37{C$@DHC%F@Zq1XHMDN)88|1Hn-bC5(_!?P5qRRZ z!};J;BLOb)68$rYQS0)5Cg8*6sZ~hoI}Use1WhC3SATnQAzNw54@J#1M=_Gdh*p&f zfHYK=FtwGHRCEf0q2M`W3y@Jh)(aFZ!HU~U(+E*fGKFk00pIk#Db?exEfUK1B+qCxlJFcs#ZUTCWzIZ!QBULuCb632*wn+4*8&S#CB9=s|bSxmtVW(#n6`QMtGx-G`m#&)_LILbmC z=K#e|7o?c0;KzjEe{x6>I8Q=wlCgvaFhZnYf&V4MRKWUc3#u|W7Gkk91sEiA#3r1P za$TXUf+ddM8|4h13H`i;pWS!;zJYRj{^0||5&owb>vKc`6f-W(dBLN++#9q^$hx+u z?DeVC-4u}(4iF52B#T+)YC{z}k;Mw@4Qvet)DVFJ3Fsopq7Y0Gkmf?z0_ra_3<{dX z%Uo8%Fw`Qm0MldAX&9FaWtuBdRm6rRAfw7GIh%nvVL}RXt3z2cm-&TuOoWkWq{jEF%?QjvK?TWfn z(yyz^*E~4TC4l^Sc7AGmyQrxIKnJw79oO#;hW*}fRH*zu$ry60gorX6Lm5fZ?svui z^$cF(nL~zd;CkY~HwyJx#*3L;wZ>=PWgKtiTE| z!x8GXB(lasaDH-e@$0iw%)8)HX|~*YdIm1m zF@vAAk7?3+22OT?UT!=C-|foQUQWO_U%r6udn7ou`<83UuV24uJp-qvNJ|X~idWy0 zWNCf_(Cv0xC|)TE_Y8d0NXh;yl5)j8BgxXJU_Q&`5`kCxS&#}4iGsEYCLl!1WKX*C zWMPhggb8kN6oDy{g*q@?;+P|HnMQ`1m#^NOzdpHqb@lP&^@mpz(Dw9G)@;|{F7V#5 z7B#y9qnF7|d;>`cPR`GGWiFm|pwD$SMI=TH(JoGUVG__DgY=sAaLn~VCxi@kU@8nq zJ~};XSUY-HJLq$oP}E72u!G}SLYA^D@8w61nivV)*SGIpzPfsQ^5&JEWHXGS@I9L4 zlTN%j7YjH(5xQ{_B2I-?OAo7FUC8C)8<>jvvbK&^;$J#Tn0C~{qoXEVsi=Hyigm!L zT>qs6Cj_%K2qH-3LOpjWFs@1kcTc5TnFb3KX56^f^-g)Ux1tH~4A3=YXxZU?=>!Ce zg`!?9NEe2h^v)X8Koz*Q%ufRr-dyv+?SwF%Ba&palOs|E9ew5likT3%f`=($j2kcd zh4!`lyg;#DV<(iol^Pl>;WYx3+Xg~dAqK*jYGs*#Ps$|u9uvy=l=)HC{nWC66xU$6 z?rz)F+W^m;wlS3zg?wvQwB)PBE%0v3AS$S5SJxhzRIPAdzP-?Np?hWrMce9em@ukj z7FfbHAc!W>3W1nLNphW~08^St%Z{&f!B1wYaj02J1ujxman?8DPih^>nxd7K6kuxE z+#a;mvOsPdYt>5;B*6mNmVh+0ddkQWXuFOVuaFjuu2nsk&wu+HL9@UAeWylf1W6pA zl+m89*HOkCj_3Si%!P?1M`%YC>^+l;2gmacTOj>?PPa|8Vwlm-mdzCqPjumRZr7Yp{$@OHN^4XaWw#M=bz8yg9k}X#)EFp|*Ts z%*~*TB4I6Y_SSVzlbE5;tQ)`-PH}`8U#BJ+qc}9n!yi7J@j-XpU~)R2TGcojAxTm- zd@!`#gt_r8{B^2zpqe)}__=hDT)5Z?Uv(CrP)-xwOY!0dl4PlVGjo5^EKMWCSpi1k zgJvvM?sUN=jGjC1;`d3y-e9_fELd!Z^^)5Mxto)gu}=wJ;Rwxb&j&#;d>2P+-tPA} zLQPnCaZ@cQjEFNP^`jEu84A`xgsM7b3RtVEOJToR z?j>a%aP0N~qyWYM$C#NCd)!dO@tn_JyhH#pfMd#F6oDj;*4>u+Wjwa@o?AnF>3~8k zw)ir+qo6oltgX5&wb$dtKySRlcr9AW3yGy8$05WbHXD*Pzzi*E7rf$4I;FM8X8~6T zU@mxXVsMRwfqc0@MHu{(>}#lfdouo!got#(k0`PXJP_pbos-i>vZ5!JA2ev(Az!7s ze$`=_!}8*KPLe4qZTfdQO+>l0|8!kx)fs%P_Yq#9m@j(y#Kht+${=A`+DUoyw6|Lq zqBzy7tWF2KR-i!Y!JC)yLjgeJU~PrH%D28F2W(3&3*7y0X9H6%&_3}`pSb24 zoG#K{*Gx_AwQO;7%b{9VfjXNhGcrN}U&MaWloTVeC()E`ERras8lno5(9*~YyNYvw zz77br;LkWRp$ufC>;V4-9S@419bGG;y;sP{97ql}=-1woV}%)jJ& zts%s>;&n64{LF4XKM1!Q=uhmv4ZFK!yJvp)1OL4-{DssBTeG{;C4Oe7Hqd)!bp`v0 z(YIlAn`rmU=04E(!Q@3|9;)}xo=MO562X`P%)o-%$zTaT<7KwwSRH)3-+wVU=<`(} zuPfMyV+pbpOr@h0GchZue@0bLoN>R^k`^m;VszZ4hZtMPz|8^&(sw+=d}<`t8+S4C z4Fwihutb!?x$#Yc8-f`_aaT7d?Zi4Wks#p+3y}4(15@1NtNti~VTT}^WF$be$4$u9 zp!duyh&qE^zP?ge2v4687-w;a1HQ;uBsa}FlJ5v>2YXl*zxau-9zO~9(WmcW6is1p zeVM#Y=JZ|sijahS`i;n-qnuRZFO`@CILaSU5hQwd z=qqS$PXo)$pjayzU!#t+$h`04yDpup@K?j-}F|dt4ofO$-)v zyWL$&IE!5&t|68(;1R}Ppuy}}E?%+kl*G|G|14@ja*aa1-c=|_(CSACYbRDp`kb@b z41bp3wQiF`hp9sdHvrlL(r6*Iohvng3FDLd=Y?2R-4m{O)mO8>dx4i}gmzvhFr2~& z#sMO`dw~D^PW{}|p5wFgJ@7UO(YXxo(u&-Cm0l!ov~opkZ)J3^>cBZkR=m>{!D3PY zEa6(XdC)HzCQ=l7<6Ard$G1f5R$<50T~eTGdJ{SE86`Do!BS3S5rPM-4JsuXHklN> zT23IV$JUtwoT@GVuFXa9JVF-?2G@JwT!`A28I076_p&qQjev{O@8J?hYwcyVK(t)@ z45whmi((--pdAt=JVZGfXXmTY9{=yyZUT#q0`PY)?WFg%0nsd(DyVd8fy#B1B~Tj; zi8k|c(YjH*rh1lE$kz=rR?uRDfVJS|RHqdvSm|72H}3ljcGElpB*69dTCH+l42 z9D+Gwx!f1gD4dl(ynije3N4XuSXsT72u}p`LYIu2Hka@sh*5O4u=bO?xsEyzy_Nw0 z3k0kkEAgf4j_#)%^d~-I>bMmO)#An)2BYC{Y>rAu53sf3!7*hBh9H?)?eNl{QqhDM zjV>Qy70$sa6soDGgF&bqI$N2FMOKb`j&+eAoa4VrtEngkZB*G>P>hn+evU?^Hl^;m ze`vM}Ib^Yc&O4aTG>z$`WEQI6C@#D=TZO_`UoFApXG?G?;05dNZ+~xDtyUVVs!S7W zH7|NMb5+5qHdl2hS#xt$lfV(DCR(pnmg>0pJKC!z6wfb9bt?~UuNvak8LTH6OClU! z+q9GMc(zdF%)JMu30vf$VU!~vuz(Kbm0_2$1Y;8-29`JsqZ>$& zJ%Zok&nSGuzaa6cL>V!gl9{Y6%V?>_2t+e{ZGX8wqB2+^g#pqb*c@SVRzg9Rkhw#HWVHLaH~{Z_wA^5&mb995++R}D8Rulq3cQ&D6dA497_uWxH>IBgyEU+uNxr)#F?~HM3}RC=CZ$uhW9aX(ZEePuTaJ*Tw{8F zQ1Nx@j1-J*vBLX+WH=gEa}s+FXPIO%<4X3!#djb?@;t(w?05^?vMn!Ls5Ir9_4J{T zE41##&_qZ#SZP>gZ@bixAie>KI8Ri))-dOMIeP^r2zJAI!yxEeahTfj#l4Js=kkoP7ow=;x7^*n5iV&_G zAG1lRg1Ae#I=lX2tCDtWH~-UBphZjruCSZqJ+ESpd$lyh3163E&Oe?izW*0=x0_B! zW_A_&TV>~!2g%xVDQ(YAI6I~hI{$dOr~dr$e2;U)9ze^KtzTlYrxe~^KIQg=vJxo) zIKzoZ18YAfUD?a3SwaGn#UT|bLU>;+(*KO3NSHoi-4w4)ULT^|0CG9U;k-2mbPfEU zg{OigQd!Bki6qLFNUzx3Ep1I;`wYaV-d{L6SIO*(Ezp&${?|`?s;D}bz)OD9`9`Tw zYPU4am^(}4`!^gT*`Pp9p0WYYfQsxaZ*Sn44L09q5YH2 z;uy@5C`3fYpUB^>F~v9q7vQRg=H2Br+Suo1}@*dd^v`6@)kYX zc(%ba&|9uw+Won(6S3&3m+MrxOeugMSfJoqAN65mtz2;~t{N*oP}W{`m;@qKt8#`X zM0-D78k^iT=|pP2bKV`g>Y zGUwqc&XWZ@OPzeQhV88Fgg>x<-|FwfdHG)o-?a3@%aQn~K&B`Vp58n7BeiUien zcfi>}HCsXx^9pEhw{%jDhJEXk+1z+h6>n5zF%etGG)%@k`FP9^+EjN0O zhTM7M9Fh-{s4qXfRo%+-p#6dQ_o3O>JK`#+X7g~X{Bh03S{B|s(5m%@qg;ggG{RK^ zD$E6x34<0iTH1Rv7Cjx&ad>#>m33;gWZXr0u*Ca3j_?|-Cm^GUm>p+eqVbmN&YUD! z+FPzWrbuhUwwHCui{i380^pMsV};`ouW*>bh>y&*zBNH)TcQlc0qV9Sg~bM%PS#0P zzC{tOB2p*X-Xs22ytFrh+Rjc;TYQ(hH^P1L>=}4RfY>?&5vI&a6+eZ+b(WS|v0j_4 zIJQ6+^6xF$AO3*lFK3@KSRj~o)Vq!d?^RTP%lSg?!f}EJNlY1mSR^*zN{Pv|j5wZm z&`Jj2^dO~p9*Y!9aT225vsm1LCl9Xfw)n3L=NPNScND;xI61VoaFQvbw@%vE1U21S z2gYFs#te7#o86ZF%Y!6K(j-de>x-06$WG!3ii+yf8ulXFO(4+&*hh!1&Tk!6f#U_B4c9VyNH9yhwU#? zQvbD(MvOt}Ad1xKHhK?ZCSZ#3$>9nbm_`a|qPcy35@AS@33*di8;Tjh@@)^XpeG|) zIknQ1i~X~69Re*2>BOP;k}wj6VMig*VTs^D#Db2%p~EGf__G5g=DppP)ekeSIJL4d z54wYXUrGUksgz_L(AL4ML9%S?cQ-dTUFW@ z_!)tWX5y+4f`VkZL~$qrj;xe4c@`m6Qy#fUK!o5*IqO7j63+4gPBO|N2a5z-F@ju& zbY(^p7|{ganCk*@nry)ZK9x~~6p$?DOK2-4sLC!JVa6iFK^sK&0L_90Z~P68F(2Np z4h#ts6C0xYVO7gw*;h%$SrSFbjYyjR3`AU9>;V}5Bcn_np@9^{h|6?H)-s>9N`o$! z7bIGPDG`TG;EW*xzR79)O;@Cc<0B&VZjfdZFzWaFOSQqU6t~tL{eVSoEjfx-(Ltf$ zLH`ZTvnr~~&{YJcio&3Pq7@=A;!~r;7r{CKqYQU3x${C1#G?Y8YNIS+7@7>`wJn?2 z&X4DBRr6hN#u_vY)MZ-YR2`0I$)55EBpCyLOESV2`BYBkNl(n)?)4GvK-O6#OEEio zNk%$(wtamken;P7ugKARW-e^*tkT%;7_u^tw*XkB_Ax};R_6T_x77J=s8dl~d*;IH zgaG@pXmdNADrlektG`rSma9IQt{TkOo^tarL@~oqhE1w;xZ1D78@q6lcZgZnfx89< zH)NF$N~cv|u{t0h(hjyp@O#CWgd1!6OK-I$3m6d0@J-pX-8n9H($#|S$?$N)UEqmWU&%3UPo z`}+JL(wP6R%TZ8Y z%X?Q3;7Z-znObtEa(cB}9^Ihiu17oA*G)^QEbKlRSttYZe}7uTLb{30$nOy^Cl4f9 z9G5AP%PgE>zV}WHhkmudV>h%vn$Sn>xZPA}^*0F_FjTt#HvOQTaMp0#YIyaRx&J3Pe70*)eg`qH)i3IxsWx zr32z5wxmE20qaX!#nAVFWf5V*Mbk;{#Z=F=QA$8>rRZ$w=UN5cT>xQkew8-qtw`3_Pv z9(7R6DHs-Ocjc89BD+F9&$!VjLgdBTPPKWB_$vJxQO-vJH{o<@BCB=TS`mj=I@n$L z1=WP)Z~VQHS0+Q20s9Vh5!QbyJTv`U=NyZE=_< zp2!bR6ct2wqega-S)71<#Bg?j(a$y~a9=mMueCl-m4YrKV_R&Ouq_Uo)AgJV-u2{gBq3~aBNbW5wq0KJt>WNJU2 zMPyOfXAk9Oigj#MGT4XruX(RuC)Zef;LPC$TU?ra5`uT;=FF(H08}j(w(3Qc=p%t9 zU4$}nc!l1#U0%SuURNErE~4pgH!otu=pvD4F!j73Nyb?~ypGM)PU4=W8_X8M<~UEn zdz%{?hq}38@O+46gaLk^lfwYL)#Na>AJ)h4>{&}?;->l5n@mJ5&fjsPOg70emUu9`)+Y~*^%YJ7f@`p1B>Vca`6@ex8K+ zP3v8jMz?IE-|zRwqmlTx-|rXy9qx}0{xld3hlBlof4@KeQ-9bW4#$52{d?}K_sJ-O z*Vu0*wDqbpzGF@E86CjzkY3XI-M3wv0C9wfQ4OeHJl;_2d!%yhZ9gS zqgqSEpo|34!INLU{=bt!tMZiWTG!8%Q8 zZ#7VxS{&OiUn=^a$42oLo1y{$7Vf@*l9UC%8ux`wYXM-1kBV0EiJB*ktxIoy7d~{KE%^Bm7UHUCt2+xM4R(nj9VF&3Ui((6#-pe&(xb zb-!+!nK!b5lNBOxj;uyDPHkN0g#K6e%rmlEDR_Ugkpv`u}L zSpVCeZ8H?~m$)WcDJ&0Mf|hDeL7OqP(D?fG!iM-q7A@uZZw^M>n-thE{|CdteqsI} z?2iUd^Zzj(G5_C-nOw*WX(oeCU#Ejj)Mdq06WH)i)ijoOEm$csq1A>n^9YRR2t4N% z_Q3P}#Lnb}F%t5Zu5pu>E-e+5$!`isNF1ouMCa?*mMPu)Rwf&>HsS0{YNhO!^8AS) zP~M>06)Cpcbs*(9DlD%!UcB)VzHPf=TT;pCqmfB1FFeqGCk9x8YlEE-2aJ!R8NOnZ zy9E*!1*6!Cvd5$ip4ZxCmRa@(6rKMPPg(w(JeQ9p|A)hI(f&KwANQZ+|6@G0{vR&X zTn~_NR0;;UFlXvKULUoEw2j-xuwC2hTv2Wc>7p_9Oyx3Ai`sA2O z?CQu$mi#wdM%A#4Y_#|PD-2MpNLQcZ@uFFWq@8lt!lN2b3rp=>B1mSu{1H=@khRL} zV=dvW_Iza}U~|8qKw=45uy}0^P2J#hb=}vVu^LP8ny(dji(vpLk-MrnAIZC%3~rN0 z?w~ugPm}PZO!FGL7l2s~9G7?RK%%1}8byp>7g)IovL$rwtAxFFL(U~>5_$&l$w+vx z$D{vE`s@2L05<6V{n6n;QU4zt4xjY@V?4Lf|As;C*8nhJn^*v*@RJGfFJJ-?-}a4D zQ*GTCG@esNAVc#tU(f1AdHX$*4A}MoF*WSHMHq)*Cq@>$9LR3zOA0=-?Y9X75Uj*`I#ZpkQyJuAO`x4W)7^I7#BPbsz|@yqDtBGJe6i4Kz>dU5 z92DIWf(Gc9x}NSN1axUe<_L7N7_K0W;50&p1Wp4Jk4a%w%G+PU&mZ#la`0>H2p6Kn z#)fsl-!y>Y*$&I8{bY z@r7FNKd3U|6!X-({_}fy8+!irkqXQ2uU{3s{+f9!eE#aQiEyA1Gi;0oLr24 z-UH8BWDP-)gsd#$@eFj$-Fo&%)h}lYW%2^-0Bwl;_M^zE+_u{BlC8)Hh_J3as%P!}c)L_* zg!%V}T1r;2jKrlZZ^hfNRl2tgaw?yGx#)SWWXGA2QhbHM33Cha)Y(oxyZGAHCj_o7k*WTb<4nA0ROHbVrBbJod!BjA{?ym#R{yq{|5c>U{tXG#>0cr zll}J?kMRF}SMu?_wVA-=&Rjrq7)(k2P@m8e`IV}jdy1)20k3Uln-zuXvYnQX$`L4? zehyNOb1*;Q+r2&#$75Fm$1!*ZN8ffnMZLUClkmcFCDeA-DqG>S+fZKC;JB;BaHZ$Y z5`z&n-jkA><8Dq4TW4?VI{!yxezCoB=$Fmqb7NK1%)ihH_*+|PfcD?*?ly&tY5>2| zaBl-xq1>r!Kx4iK^0t~O$%?6DEtHTsxSm@An`?CdOLD$YwOC^F-t$=65aRfh^8u&R z(uW*loPHN2!FA<_Zh%7q3X8aO3SP)t>P#@YDsH7ez#);Yz-mZ#JLq$OQfF-;-?&~a z)%WU3o#x(0|8lMT#$XQ#ZH}MuxAr-f{eR|o+hfK5?~nJ3{=b9K;NZ#s_ZW}x|6QOUi9<-% z_90L%Qne#LN??dc@m#3b3a)hdS;r)u&0x9NEa0He43QW{XE8%$Ci2f)yTFy(jOA)= z&;{0v>;vbZr%E*CN!g2M75mTj@pzFrzMJPcw4IZnDnv)PL-RT&;?N^@at!m7^R<|9 zBI|_f?IND5G!|FaxSKa#^j2xy46kBhy)DS5t2QT^uF(v&Vs5i7P}5bLqo!+YK<&E> zM`3;l+Dnbp-( zR#=NLs>G_iY2E5C zObaFmj7Ji->(ALbpHQfI4sKl{lSy`f0Spd{Esk-EdB5?zu)v; z4+2V)(-R^jII|ELWJdvs?=WK`O{F;5VnqYV5F&NM!uupbzoUbL0&(}q;Fmib7_4ex z>+^mkXUt~Q+QSI)4LP|j`W{6HQq+B`UzbdeD&lHf z^D-W~4l6C0KVIZ;S^vwG@qJnV8}xtwpg%6^|MB?nN&i2_qx3%l7oKbKl@hO3)!K{V zQN~7QOTfR4oR+7h-=*-E43!m_@)B_oC2pO5snDyN_Wx?j7vKCBg7)#we-20eqWyo+ z-+!9_kMflKKl%pUTl#y9Tet22sJ@x2>G@B69hl_-(yv_ak1kntzDj+zd^Z}-ZSp

drJhBkK0L$vodu?F9cx@>zH7Eb{zBF~1brVz8 zo%XxXEV=2hUkxu75BqIk#?oOwgTn)z^|MefHCcDmPuH`L`V~m}+a2{YJ$O3lcblhD z|3kUZx(_p8ll^~K+W#4khEMsw9_6v@e|vqs^*X=}B`Evu+!9?0al^X7aS?de4_Z5y zRA*@+v0H^neD}LnJkEqdBPE}W*Vof1@zy;rKs@t5k5jm(HNb}XKiVG-iuV8E=;{3L zqdd3B|97DnU#-4qgr#nqt-wm09O zDOEXw^+3NoVj@1JpxS_!az;C3YIn{Mt4Lw73Y^xj0^6#S#MNInG^*|LL@M ze0=-^Zu?sCg<(o)(mm7$JHQu{#0RoHkCG{j+TeL9lJ#H375|$&CHr3n$M>wm61^+y z?89wV1e@&t;h>QJaX1(bpU(e0$|LQ6ZThoB-|AL4ER)17eeIi`!aaavl@~xzl}^ogqJXN;<7i)B?^|$^rd%G#Q5%!;}>;H zl&aym7q*CR*OZppYetf#P?63t6bq)~-!%SUtEXk;+M>~pO{5aQl4G^^EjUxS%T0|m zO4dK2wc7MmURShC+1ly7+97Sy^#aWNhTYs7UWm!h;g^F(eLb+oRMnFzU5};wAD zTwt?;1anKIUA0l^J2~K`iLRqadA$douLL2>eZTf}cx89e?;29cTr?z$3qj86T+ccj zv#r%2P)kX|k|2pD;PUjm1<9P+d{PaXmlT^nWTPxPK>lsIxwy7G~IcE7Xu4%dN zAVuR*)6y3vW;ka_v#yhy0(uEI0X>o=tk7-hHV#V^hY)xN5~| z4%=_LW!SQ`x*F;KJ01zxp#KMh!@~XV!~Xuk_(}gi#$)vVyA;JA&)>XjVq}BPa$ywpin0d6 zTSHW&->8D0mVCdnr;+@Ziu&Q?|9)}(*WW*UI{)z~kCFe%oxMZQ3=tFuIG%$!X1Q^* zTUZ1F9J9pQK#^|qEp~VO9{0!45L?@NQW1JCa@fLJlrT)d$t@tb3%3HiCIKvt@^XR` zlx6=W3DE=$55`;xFtk*vAML4<|2oy(ot=LT3|tIzSLzin{)xy70|{oER^%WrF+9{>SN;S@)hVI439 z!%#;_b->$Kmsck*-<-W|ZQ&oZl2QH}=l75`=D)qTw1 zuRO(Wb?8?qaj!q{%XHyEqP~1;?tx>za@y2Jd~IcnSIvK&g<05tD%a^l*?*(apg8|W zqo@17ALTLjpULqp$9qekuSxT5C9|%cz`ms5l`h*;0r3q?Z+}j!qZ@R5wp)2@b-M=j zHC#p$@T=U>5es*10WKIzuObokca@6W#N+-^UwxdDG;lx4FT&Qf&x6cxgk&dsY?=1V zchRu_^jML)QF4v7JrqP3#pcGJj6@UXHlN~Ajex)usi|K&VNu=QoaSd8{*g?t%qVpW zM;jPqIB?;Mdj>_oSmA&}lmswZB$S!A#bYmkH|A@HKUY^NWQ(gSwbtN2#DbyX2*JOZ z3!{a3Cx?D5A=ph#5LejAc+NHo2-5Fg>K`Mod zRKs)wN6McFg5kS3T2I7Hb$5=;X%LH3JHCG$|Hr@kvswR}L47Fy&){(Xu;l-F%K!H` zPnG}2zVhiY{XhBbPg^V>{r(?&MSK7LAD@}?!2X|{Hd~+gGt2VovwnGzMt#n&tSWU> zfpI#Tzux+=U(qvh_fvnSAFGEt>Q~V84}Re9)~nae^8b#(KMnl<`@_=uuit+<|M4hK zZTyd9-g^rC@lLvq*nCqCzB~B!p6tb2K2`I7mBzg*ahK$S=YJgZhy7yy$KgT$Y5qUP zQ)U0Dt4JTy^b^;ST2|jS*PMPaS5dZ;6vgsp(_3GRnu7p-1I09Ug9(~vklg7WRvUrtL6 z`LB-y$)N{Y2|$y=qOhcnFl8W_d6(8L7>A-J^qel@l2rPiXL$4Gf|1PrC4Zt1F+IeJ zU$y;+3x3nvt=IeXj){GAU+H}(^Lf%Wzptl}{D0W|5BrDXV*Jlwu>TbQ{U}fA{O4V_ ze?3w%-~Ck|eVf1P(}ulYr&N=zU#G&|l09q@_^sbu{P)Gxn|CiiyneOCt}&=m4Jzb6El{BV=cPD;B->PB10AR;T81^53UbVgDx?s21$9p0E*hBnr zf%=2nP`{c>69RU8=xMQ=QAEUa->ol~LP~EE5=zRTc=bI=mNHgB+HvZVP_X%C&Vo-? z%Xkad)&C&^Sa{JCb@Jiz$BE3SUQjDdL~b*2`zx4^M<@<{A7M^)^WXTT@8|*CIRD4x z^S@8=KacZN`Tu^_V}CCmKqWHj<%YEl;`i?5INi~|XIyrr@W=utj<0X`0X%$GpBta) zy4UeAXCnMoLas5UQ;!7Dd^rejazLat&uU`Gv>FWhkAz?|-_uIy?V3 zDzQ@;eu4J?`hKW}v>O*_*O)4snfVXlo}Wl^N>2ifd{?i9~7 zyn(5%orAJUmF}4Bx`!BYdrIAi-}T>fVIRr2zjw=LBHWf=)ZF#&2|RQz=T{)yD_VB- z`>y@kcOpa6#<_S!=r8ws4LnPJ-8P9sp)mpWes0#)co(nJt&+$a?$g!a?(q^`NsLkp z{B>TIr4iWC;C3A+W|aphJ z#S*~qM70vgD30gyzVOqN*RQ}2AI>(5|1!_z5#fcsS}dBkWH$c%s#IHwos5Wy349W& zeSJi`L5#aW9L%~n>8%EBC9{+neZm+F7JPB~5{dk8IEg({41ex$K~}tmT)Z^5$?7Xz zrMR1bZ^T#8ldoUD`7JEL>iMs48oT=ekox&Q7!1e5;`xt*!BhO#qdZ&Ne`o6AxQDR* z%oStzVf!gyTUvhhy?A%F`-+$B{SK@?n<{0S&;HuL;6-!oX1?)oCX1ip$zii9t8vorwi_nLw5pimwUPoV}a z6q%{in!Xs3ld=d;+!W-=8{*!GsV)>U5LwZ2Hqpz^v1M3>7JO9dCQ(g;)YsTwl}|x&a78v#kUT1s`Z~E{Vc7- z^w6@Xls(l*Jr-Fvb(gCG&;jC3={(P=1;kWV_fF@G1VkP?mU3!6cd6|WC$>z@VbTCb z=oIPOECDE8H&YOA_Wu{w5p5R98>hLzZsX4Z5?5OL8q2*W@6ihL3G0=*cm}#TI+Z92 z5?JL7G5mtnGot1P$)bE8PmRFJLw-48dF$e;aL*tt7)$eE71x2=*=(&HYI#+-HG1Z- zrCAX9%+yY~MyiZ{kD2OTckVDn>DqoT7B7s@Ft5x?Aui)%V`Nnoznv9^2PcPfCCyX4 zQ7vdL68w4@-{y5A7Yg5b?Mrbx-Q<=c>n4Ck4Jg7_Wz#iARs35ew{`TFCWAkoUW|v06nf+ zJN=E7HmKfLTj8lK!UC1PS~nKR2@86ju7d4c)%WAtRZ!xDfgSXVzht}9E;z|FvSqKM z{!-gykqCKjj7KFQjx|zf)n6=!##eiCq2^_|Vw{106{nlC>68%DHbD&Hc*|XVtBb0> zUL7q^wCvJFPltYWQW0R>o`7qFQr|@jcVGY1nXR|H>tf?_b?X%w3<5;yns&($dI*KqAVdIyxdyIQT$J*f#c)jA8@<4 zA}tY0fs%r$4R(NZc3U!|olo0&luTjN2G4B=iN!K9*fM9z{I`RuRm^uz_};dNtM$LO z!ykJ8w|{szDC+;G{oluWw$}f8Pvs#rzGAsrt#7YK@1pUG>)Nffeal|`{#GjAX}_$+ z?XQ)PiWUrA1!8$?x#2|;LrZ8{qoa2Dob5za>wdNotSk>1_l{Be>R>|TWcc?ZE zMpZW`qFmyh%;fF2vP|KnYi9c@)B}})nqJWIQx#SGaGH>$Qlgk3)N|@G$l3X}vE8L^ zr`a^Zbn!M}d~vfr2}3TWHA_@|b*NhpqONhAeh-&8THE~VzH_&|JjLrNr)pr0O#Zt# ze4EH7?1I9E3s(wz);@+~X*m7muk5=e#U_E{j_%q%X?g3Q>#y$SFD<3_+&&iTv}V+^ z`%$E8;sVkwB$Rer?9W$xyr}$od3tU|2k7?`aCv&(^11Ny5_#u6$QJj(ybzo=@(Q`N z<)P1xFm)Xz@iqy?_5fF_(rYDkt3WPRA9r_6C-p0<3;LC%^Zh;$--M9y5;3aOr@K|3 zxdPl(QYu0LOUT40+vKN;S>k?H(xm!)N0n5uN2uD4HLbm_H*2dlT{c((l}7oiIFx|~ z_idJ!NJFzJMf%_>G$PZSxmU(!S-Knc*0N?xX;UX}WYa#GlM9ohzPZNwSKR#22RjjpU0A#J zG!@A&cC=IGZ6d{t@RVr;IeE1k>VMmRrvKaiKW!8Lz$IgKge*anix3%Axrt_OhYK`w zquY6nwjQiqV=hRZC=gWP@IsMr8v=5ruj@MwI0N$5?2n%O|Bv$cB)CcZAjiL*yS%Mr9`YL~r)g14 zW0^x=?)iLBo%{LmPP2T`$El?6KSZBPhsbt>6f3?}a?FAv!UVZ2f6kXRS2%6weN>$r zjrOg6tK}Q7B7C=2dB_&xeJ_8f8ZLk`+x4Ok&ia|ZDcZAN>;Tp|DTbYDCg86x)5x}L zxlJp2_yX+YVUfJh^UCl}QQi-u@U6HMDwK9fS`m4skuL>X<|KUqcBJ-^g?43_VI|DE zC6%2+N~li%F&t+wd?Co?`sK4X{>rL&*z#W=h(&p?UejTdqjRvH()O7Sh3jY)^(4b#-(j`fNj)KK7j1 zQ6ivROlEShd*s-O1%z$^r-r@M>Rrr*;!Lo<7lbBroiq-%3QcEg%Js!mY$Ev^@$Mg0 zHkA4s@ilYq^S8P7tNE&=XuE2a?Ig7`h}q*-mY&RwmMJwxD-+xSb3dE$R28^X45#)E z7RT0Nih|Vj0C`>#1r?JiH7ULvk>~@g;;&19JDpBz`{XbZXd#wqn?2i72p37BNV!@F zjKh;CUBI{55**lpHX4b7^VIR1noxg9XD3X@_52jR>2P&PM(0~bqSEn-Nw4?k)#T4B z8Jnk3kc~?46437ERBz>FQOW*~@U#~o!g^QyzZZAQ{4SqO@xO!NplJUO`%n2_ALa4c z|A;UrdAp8wF(+vn2fG+);-Ll@4Asj+flbI5R{$Bds8~^ zwd;+mQb8xBH5+G3xPmy6N7}iHQMagfjLOuQ{crqd`oD1-v^$-S(6n1$KJeT*Vb=Nb z1(Xk`*&7#IsU^7!@5bh^h#IxSBH9g<2JsU@>;eZrp|vE$uYe^NjNo{l-!I@O77p3DamJt+IZ~hcyv=#8$K$m%i{$HCWV6hW-Hr3c?&XXmOLLomFzaf2wxLJQ z6-t6RZjX4r$f>7|Y0hcC7-QeCt{seA!r078&2yr9*QR7yrl~?|67jiLBix>h!{77c zxBnK98-SMU>>=ZS`r~0K|ND6Gl>hfp9&yLksXV7;AEl5dH2@4qVkP^my!glBl$(TH zM+pqOG)3wFcO#c;!STE?ov%ov#VcMP(e7&CB=OaEZipuTk>D7#_dxp=uq%A0O=+-Y z_kRO1SvUWkWLkF+02|}~hW*m~KYY6X^HCmo$6gdAH{hpiijJZspYX zW?Z|@LD}JHI`Xx9YFDz_?dtaROtk0N3{fxke(wIK#&vc2_o69jkm z0B(~1{j&e>VDOax=TRQp{!{0bw=@0p9tWR%I{%5_pPD1S;=4NETe)rGIk{qsneHhE z(mhF2E#Jj1Pg*$fyt0yoma9~y)+obS!Whm`*qN$JCG}p=MVgCP7DqXfnM~ip*`QK9*@DFi6_ELl-r7+V#ZxL)sK>`b)+8sU!vpFC*fD2uJ)iZm zL4I;#Id&`0jpVBmp&o?XGp%TdPFRSiX|Z2UvN!rYL|JMSvztBo=T|s>@-VVHAb( z$Wersn4wT!myRjenXbhUzkGYa%i?%0F6iCuw$5gNNDUx?s5_jg;s)^!tGnQ*2xOGw zNdXkdD{SjoCJz#_*e0%xEAm|LB8T96bz{dp@mdL7ncqr93OuKKx0&zc@o-(eSg*1@ z2klsfD~U#8T6TPaTjFQV367)?)?nI)o}gR)w) znF!QOv{;eP8#n7x+U)-BkTNx_`a)4W=85|ly+cdMYrZc@n- z>zW)z<~&71K$Q*?=Y(vMA`-1Z069}=Ceb=Gi5W?v2oaHLWfOy#(wFPh<4CdYBUR;8 z++5Z%=?C!TeZ}$HThNb+Eqrp@B*P}chmKDQpMSl0b1#b|U z%Xttb0gRLiRDlwD>7cSb%5O^YQt)jr4@4;NxjtXn1y)lh8B69UMugA2G@)!x5d9?r zDWvo!At4p##}NuqSO+^qDT+fB2Uwg;(O|kb{)h0U)U`@bi0Pdg6c8G|4-+$TW{gHWQ^d{OU1mV zmr1>!UFv#^Y)fg_gmtT1YDW6JzMql(_|&!AbWC6cf4dlM7@#7z7r#^u%fs-#7yh>6 z&~zqv8>|~Dt7t8=SmiP$zXT$uv$(KCUM8a`EGIG|Wtx5|Ukr#DT2@?iBibl? zfSueQ5vEMI7kBind)86DT{ruL$XCG7vKu=$>DkWN^7k+0n;sL zw8ERow}D6&kPY;aC4c7>%2~#vKCR1&3^31W-&|kXHX%-F=PCe zaW_dvDw&{UHWfcT+R!&pO%lvTOUw)N7Gv$)0#QWQQCFo=-k_S)0Q<}{r-cSX>kO<4 zz|4nJXC||i6^`e(QdTzb-?yUDJ!~L`IYK2dtf^)I)rnwL*cnB0G^{xDRAH~^Eq~i) z?rEHx&AW12_a$yCAm5*;RSo#WY(?9*5V2Mx+lyB{Q3|5fdHvu+dvD^j4DVhu=?J&RT7fF)U-&2m}$RMzfV zfJ?ip9y_;M-V`B=oW2TlyBJ2_ptiWZ=Ujt$MFSX#=}>}Y@w%WGg)0PTmZlL}qL{(x z2a;qd1uOw#?{XnC`{;AJt_qsr&nQ$CCNBV27vNxgWc6Dx*W4|Ue+|*!P5B#fQ6lfu+zf>W z$aajJ7xYnI4;>iv!LSd8KD@_kOe8=o*oftjb2DCa?v!&WtoSBwCt`lGUzfECoQ@ z(@hxN!k^;ak61lU+pxq?wKL?!6tEo4a!bS8vc#|fPYgFP#qh3NF|6VQ$LJ~CUnD`5 z7L9e>p^O|+rr^aFw-S`pbM+6yLoj2>5;7dXC|ZkFPEXFS-oCoL`tI!Q%d3l5??0ZM zzACHhQ<$EFp-15c8D+_`^0SbAm0!bk43{{l{H~jRNs_d#?TYWZ@ruuR>;3{Y7M*kO z5r$z!k6+vZKrzQ|BM2eyKt;zJBH@Cl!orZes{0N&l_{CaLC20%uN}!!z|w)CrCAY(c<;)Fq6~CYb?N2C6{RClK%39Eb`GaP zU#X_tZfw~S48yj8QeL+Drg6z#ttAgDUS*1Y0Xp0nFVhH}e>`n_Q3Y)#!oAz+Dk$?u zCA=TcH-K9tl$}Gia5KDjDPre{EU~yLlU@i|6@c8L?M-z{(pY0q+enUPW%*mpQ+M3t z4f>}M#LG(^-S(IR*cj20p4fn!q}2w*Jc;!iVff`Ki1Xj-@yCCfxQE^qUkIeR1h`E! z=!W?J{r$s2{`cWv+<&_N=}{hW&gF7}X`bR#TnP=&%@U%|$%*6wk#rZ=+!|;FQn?IgC1w<^F=r>a><^t$;oQnAX$|v+ zW9{BEShmSU*Q)laJ4FLs7B@Z$_0!duwZ}DgJ0tm*65 zR!5~bFOawe0A9km%KxBx4x<#u=#0Pb5|kzsvxKa{*RPX`LJXSwyPY9Xw{B$d3H?A3 znSj1{k#9&$>lOe6QE^eaxk*}h!Zh;ctL@Wi zct15~TNsD3$qs1ura11=MO**w1m;f^EE4d|iQ`WR5<*bG_=wxGwcGvXKfZh^-}?f? zkbhpK`f|4KafA%tiOY%;ChvpsR8a@}FcrnyK-{YwERvfTbl!u5@zLa9d<1%{H16pZ z{sRPyWfJo5^Z$3_egnV$3S^&TnHj|TGRsvOt1Qub;?(&%$@sv>yq|BszgUgH$?0qQ z|A|gYQp%Kgd9Q*&lDtfX>WnUhK2&2}hVu1m zJ^mXSHofCKAk9$OlZowweDEPw3@E4kDvc#vHAxKS6L)m0e4VbGtQ;t(&EjRoPOCnu zx18(P#AljK-H+-;4xm)RgZ-0nTlH+T|5OeDL~ef$sNVh?3=YPH{9nWV{_rXPXCy}-kskbG4q2lmxCBnOhZ|S zW9O52Q_;6#KuxusyoC)~Y9+!m6s!a7M>9X~4w-QyHI{3*C8Cs1F{5*>k8kpC6Kiy~ z2X0MI4|r>4`&?`&UQHZBiyN7f!rCuo0E&5 zHiHnwYGGVmyt=$2obw-QdQ-D7uK@SM`*$DC>nMB+koN)2CwPln3g46sySK0Z`|AC>cZIQP58D24MRl|OPC4wU z)WqA5XD`oAu0Eb!oPGED)z!;aAJ0x-T@>0`B{~^%FFj>A78z{Iz2f*`R?rX z+2vUY5{x1b&IZoq|5T3D<^Pnkbh>&YUU?QO*L&dkO5Wk&EDTKa$n)#M2N|f!zpP42 z5qIO#UDLR(9fE$zFhL<`qj-f$5-+)s&Ep$Isx+}vn9RTurc~De&`R2-cSk)TDjw>6 z`JxE)yjV?M94^eLg`@nurl4Sw3rJYpKTt$tG z#4g_VE#F#~w#x<#AO*M%V(~ig(hEJeJk;DRLi1QH&+Ry9A2C^Kdj7l?yL^hMK`%hA zUjF(-hMq2Hy=P4UYi?PWx!db{b?HkHC8rli9sy%U3#Xw(?6!zIbvGkk z6pNKp@Ti)}ODwAx1;r~7DCjbYbtb`a&Z|$VzxtOmS!{N4ihDS_0HHvG^6EpSDr=w1 zT$(gR0iLZzgFOjimJr}m625!L%@6T6idUM~%iGE7qq|)J6a!jJ)B)yI&OZ+K2u8@@c1nOWjsBa;HmNuRyEFMaa=_*58Ky2&ZuowxtK5bmc+r2~mNWU6qy1zxWb1 zP5I)49E$Bo&Vec2X0VM6#20>ajm^?TRgVS>A);+PejuFsJ;Z-nDCsJhmdxw`Ah}YPQuxQ9B$g2V|mZ^H&wy zLH@m?=eOT9`h7Z|H~N1U31ul{!Q!F(zx~0%L2>`TzyEaq>*G9+y#Igs?&Z4)2vLL> z0$~zdBLaeCnI;s;w<48l93X)Ii!U93-qQk@H3=Rt-0C`<&FkNMtDBJwZMA>A1L&Ft zECQVyFr!@@Ck)Tl-6i~dl~F{lZg{s4eQ_`x4Udk@HfI|Vk`O=<6T8f+T6-7#-~YQ2 zq`nV=zBm{R8$wijt)D@U)4G>YBDy4pxTA--04qv@YYxjTRRQw$;Jo^=<7|Q2NVja$ zfPd&@lyvk5Pd#rP{_^)J@||a+{7;kct{DI~?Em#g{bK&t!@*$uB>x}dk^6tG%Y{gf zCM7EtQn-5muiI+00hlJCo&V2q+L>Lt3t^KBYpVFJcH5$SwyK<>yvDHiJ+df+y(|kL~{BRVwQ^Z}ER`kMxa~froA@V&Yl>Lm^;zwDsu)q5Xw}g$YT5p_!ZEEFmYq>ZehPFkJQoE!dF9co#obc zMh?Y|I0ogYps{72Ht%dP{C71G)=0l%f4*+)zd(=LQd&TXRDR#x1$Q%p+SA7iPZm z>DJTUfpWJw?|}LZC%l7)J=61YH=4WfH8?4c-FP ze4+xYodNFN{|MH`6Vzdz52W|=_QUA|(`>pn+$kw;lBl=29h|q*cnxzBVMwJhYW=+X z+AmH*WG;*S`n6^MzB_a{6N`E=clFz?M8^? z3ID90Tf+VWc;_DeY2g1O?2dPUY})@h92M_>Jv`_?-T(S1kJ$e?7x_nw!%yFH=s5fu zxckH|x0P4WWHO4}^iKZc?}fW3&DkgS%1BpTrYaAM%AiuC3Pnjr3ziB?81fzvm55Hg zleIfldb7%)lvf9$&%Abz@HML3K-1xWR!XifI?agbht*lpi{~auOp!qD!3ryYJ@w3DXu zL?04M1Q*uAW!G5es z7zs()v=^bg=ojN@=ewJm%Z`ZGt^R&p_u%GCw3ksJ>emx+b9PyYRw$B24DF9r}#+zFXkA?Tq;Zw5R(NC_v891 zOeoK{PcyuN*+%(KwVi4+`-=Lm9`w}f;?heSrmnixDY{donamzd0c5X@M_-F&;c<9ayNUlKM)ziu%6qK^*U7JCRKh_td8Nc5 z|GQMaKu)a5{$!(ybhWxOd()3Q9YdY=K;=bs&LkF7DP2x=DGROHS3t{WG(}-ulxV*s zW361eBG%Jd0;P#J<-CoO$eS)V$eW;FO07DlZ*E?9DvfJK&g{M5_;tNlS7JLL3gN#U z-I5V+{a7VlOF*L!OVrs<_=9>pJ4?pW7l@s7>SoPut+k0%L{I$ruA?bSWe$BMP0s~@ zhD*d1o&tnG)(OEm+JXiarq?9A-A={UAuY|hp`O(AmXCo@XA}XoFYlzLIrMZl+`6Tt zp^Df57@wmUZt`O+V;cE3?$tB`+lN(y=PKtqLpRF|(IttaDr~#Oo`4x%A+lypl*`Ze z1e%sl^K6)<$Mq2Rv?J>Od>r||Q~xs~r&?-(JM_PP;0^8iPu^hsMgRL0A7P@tm9Eh( z9suV(pUwbv+uYy(Iv~^6EsJv#0kouX6lFtBzA3EKW3dTEPlvWc0sUfD9(=0JMp?p7 zc4XcRU(=JW*sP(HdML6G44tc#MqlVTrSjWP6J&zubUTOA7hqLcu_~+- zDKD~mdI=>1>r!16v+7E3#{q%?Lubay2Krl5D3XATq;Me|y|SVG>kg#)J|5`IdQ_{N?fZU=ges;LJO)gomZCkRNaHN1Ys`hGQ`!0N?ZH49`*=T;Vt;??M zG3nY!yk<+3-D8S?M1v7A+m~<8q^sWQ)~1lRd3}en3`ezv1Voy=a3Z)~5~@noFJsV` zYjl66@?wuYX2sdxVYN6xVxKEjoCA-6kfn&a`nCsnPBQ6L+=kH3H|mtqB6U^2%-$Ai ziFDe9{Lef@Jnyl5NTK~>*4_dgv`X3L9B1YIrGG7zUoC5TCa4vP@VeqDEDrN>a2?sQ zQ=>g^?}6ffqnCJv?NhzlPV&Ze{fMu+?TJNhjYo4(9Z8Z^_lq3OJT;iiMrVm%3iYrOpcg&Yo3G3*(nRfr?4CmFWBc zP=1%|vta)QiLo4O z;#fv*)p+a1wC)DbUuAEp*3padHMxSO#Txe)}2_e;2n4yRo4@IS&G=@0gJhHaetJkk@e!e`tzW(9$)%nNhUXNx* z2lTu``2o**OB8E($w88Kq7+8h=wLtrLdh9KF?s{u0Azg%i+S zbCN-K+4e51u)DArC^;#ViBPTGphXxB5bg!Z1|U|>Rg1vEI6a&=1gvh z-*x|d*C}$hgfibzAUZ(D$?T9U-R=QQ@mo#^Nlw6>e{hRAi;+p_2P?#21R3PKMcyKA zgtk~N0Da4N4I8Ur#)7J7mS*SFB>W9YY#w!w`Z&XR4PmZnA_rw~jeUXj)>#ZXVpVbwjTU5! zKKRQ26#ej>Thq@To3>?V4#FP2!;q}f7%^1t>vv@N&CutYvW)u2Vpj%UZOyIE?z4~m zCrfI4JpbQtSdIT1e#!s%B%l5Ke{uyplK-z%p{36MryA7x|Ky`>{y()?xBLIhM%(;< zuV1}*{ZRj(?5m0YPxX3!dUN{h^!mBkb1kv*|D0DzV*WFoc(UAMH0x#Saq%ZB#;KMA7V|5qbfKB@oDlm!p+{~3UOFaMts#gF6vQ^0om z|Ex}Tx$J6iEWv5y|8wE^@%(>v)b8;AISG4^|4)G}8HDO5Axz5_p{bSZZxNQ?+RF)8 zbph^y=>MiP{)T01^m|~;V%h>@7SrDc)my~H-~OUgTrU{ z_}leA(Pj6jpFQk9UE8;{18|rBuRp5z|N7%E^}jyJXD|O>QQi4*T!58o(T%OV0zwB= zJ%|SU8Yg1$bc-LcXtdpxXtyi8iJ!d#PC42-wb#ycgx?LMi=Q#g5R5jU`v%m~ZTy)F zlHYy<-K9()krVpcZ~tZZ(!hTSH(KXE$dC3%{WRkLEggV6`2WZsjV%7(_lIBN|31m* z^YZ_d1Vd{Vpd}pkln$TL5%?HB!2R5R>EdHJ{|phj%m1ek*cY1ma~s&2&Ud)(9Ozb{ z*_}54TZeaR$6!8YwM|^~Z}$xDq*M3W!aZ2PHtkR2*Wn=Omn_ij>ce(BwD#S-yl>rv zRKm(Mh|e4Ix^TyRN8KIx_&d4=0qjIq?KG#3cXAk>7LlJIo{O?i!+xKky-ye8i;(tEL=kv1v#Zr5S=`R4(TKy9A z?`80d-XCuB7hran{n6|~7_BGY#;mUC za+|rl!`>CpOqD?XFbc-gk~Uxr^9~&#pRmWXo77f#9Fu7)usw_v@xB7n(ln8S+02wM z&~6NWUjyPHeYng9zLFljBbTwzptCRf+<)4qR{vWw9Mj{U)m?G;f!Dw6JpUQ>EBAj5 zzTE%vX+EO<_Z?oH$Qp1sMx2{}v*N=NF42iB1}Sc`I=Dh?oh1MQO6CkCBtob9W446+uU~hH`%#{XJF+^@POm!r-+y$}4Jj@y($Pa# zT%nKVD9ccEzRqy6xR$rz<79EMNJ#$k^YPLza5pUkfy3zyH|rx}vh zY?~+cBAMscUqP>QK`Q@{l&jJtI{_Do@v|h;OcpXLNcZI9G9=!QD4JH1;^o(kYIFAp zFP7{C_$5AV&Epbg(SzoZ1NgY}D0|?q=+boiPosH@<_*eLd2Z1kXfC(R-UB8spEJJM zJD?+X%SV|(^CkdQS6vmZ6n&ZnA@}1NJp-UoC{UL<6zio4RQW~;YRx@rbsR7ykskkJ z{&&J~^Z7_gWbwn0tWuJogynOA-m?sT&ll}WZD=Yz&we7RXEOAj<#mepm?r~;+~CfU zD4CEQ&?_F~Z7WC^uLznBK^4*VthpFzec_l z|L>26Bkzm-|0zEE+5aYQU`qtjj2lBTcpE5IQrQ4%`H25I;HfP9-w|K02w}#dIb_Qo zBR#f6vNh-|VlsoV5Sv>VK)Hup0v56Qx&nSL@6`z8FJ549VYTAFd;pAGiz~A8mc=Cy zCqj5wJqbWtEeAe$#i)Tb<mV(fTiYs^ zq0XJut| zl{&Gm4}6M#0iABA+^BL5vBKvY(D`TQpPf$inm-Nc`t0=O^X@;sy|y3%!$($zSOkRN z_g(c$SB#>#>JBI^upA+BSjE5r-c7uHPg`Dl)_6f)*(G#!1<~@#)B)hlYoK&o&KEU) zicnxqohDu_QYS41y}RG2=`%O8-k&XD##GWcsO{iE^R=aKMZLW~Yg^S1#EzlZ_G;aF zPfXzd%?io|9&w1vj0EDr@{XJK`sXXXJpNk>pCNGEL_-dv2Ek$D@nD# zfr~Bf|0_b+wmn`8%~a9F5wYz7{s1zxK<~fBNd!9G?4SRP{@0&A&?W2-Md(nS@7rZ2&6(a;C(CBh~+)rEF;Mx-hd2o^f^W-y7ms+TVBrE9b_o$sFqQ~L7xWFN)c{62R3 zf9><%{^-m3@2B}Z0hf?5lqJHuDpvrwU!nxe);NwhS4v@cD^4&Do&b?4NY`mfGDZPi zqBsWJHj*(vI9VKl48@S)J0vcZHhzambnpZuXaNOVdzxlwj^Cq57B>4IhduB*i8p{G z;!TbcNKpo2oS@!8@BI4bYeq73@C2NRB@5o3U4sZ`^q{xE>{$FO(Ld0!;O)U*dTho2CK+BF{N?{Ycmm$SOyt8| zoIj@ry)+~LLLoco;RwNF**qivI_TZekVNSCkHA3H{y+Qf^wo>!FJHgtt)fToW9$C+ zy`dl2`5*n@Oa8~F`8)wil(c;Fhaz%^h&>jCRq0~VMAHfTOz z4$S*5%=@h|_btr(wV129JB=b>UeL`aQknD{xQf+W?T1V;SN$z><+~{MTT|>=6#LsK zW}B37wO?Px$Bhg{=6)CyWcpjk^ju_mZONQkRC*6uk&@)$v>D06>EU7f)joBM$$m)G z49TQCBvW%lJZs*6fS7?f$pB6;lhpS|&8Y8>+!H==&^BpH+o(+2q?WdJ3>!ufSZA@& z1<9I$Ut$0$pk##rOj8gMLPsq58I7pL;b|xrk}XflUCXZLzH!cUSKo7;1P)S8ZID@FCf{`ISHxe zEzfWkJ%btITm_0liww`!T=nDpceY-L-n_|vqEPqdO}s;kr)OwI?htrKvUk#qCfcZl z* zxXiP?@;C(6K7V%g{Pgb^uU-J@IRW4ET`%+%l-zaiU`7F1Gm0Yw$ejNMD3bnsF%Wy| z-1$KGUj0BwylX~6K4?7@hOH?fZ5s=2X5ah+%n(i%;9ebf$TORW+ciq9;fqGGN6aY5 zD=bhj&&Wy+UWQf>i&Li4G^KK^yk>IG^Bi(d66PAKR?Jeo>04t}u*-h8KWW1*{b@5n z#M^J7xsG4T2d!!LESi0j=ApGdLXu@DWPDLb_5egNH;Z)$x<~sdTshsN!4|sfID~xA zlI~Guu050PL4{YwB)qL9mhXiyLwq6d$C8(FGcZ4wQ{&Od#Nq9o<1uorgHh{sFtXOc zsJssP_IR99aoldbOi7jj6N1>F;p7MI$sf5Uf7E*Nho*fbA(_Pb6+Iz}09-Q? z>PhGYNX-v_WL?K{K>H4z8P-YHxB+dY|S4Brprr0GRL#= ziH@Xs&~Ob6riZnRI1$nn!x-R%Fg)KV`$Z0HGr=<%x&_am)-5L=v>w>9;29X6xxS%| zHyhZXAwvq>3~AsJJcHJPXJ84QfgyPOZs0ejSv?RDR)YS1!;RW^n4%I{7yWI8(7+Nx z149Uz^y@V){m1WKy}dZUIQ{wU#r4Irm(PDbfByF3?D_Qx=-d$;b(BXcA>hU38-OW* zl;Q<9(!_}P4Y!)_X4eCkh#IsOQ3Fdv4Ga)j~$CGBeU_9Bj3mhV9&{{+dED<#@ zM3mp{+jh9Jv%m^d25*rFCBzA3Fph=6u}&8mjF3ETDgpqV^f*MsptXnyEDcf7^;4O}caXw8xX zizNpomfUa7k_FAfW(Mwf=r(Wz7aI;*v*EyE!$FA+`_pzb4;s=u*haI1(FUyD=)nB~15c8EFc2BZfdHJg( zwwY_3w-*)^dM_Mn<^{W4{_&0kSg+v%^xWD_-?i!btv6lY+I0Q$rmKvh%)gE|e8I0% zAS%#xVYbMFa~07I7mnv%IDOY<>9^i2eQUGy%bTTdF@T7K@&HvNpp%Tjm}@a}yjVeb zBqeU7#tft|qevuV@iivfhyfYx8N{XsWaPWuZGG2H>bKrWeq}(s`T;R^(#_3(AA#$e z^NUwv2re$ag)7V#Mrj>1+*6+WIHCUhQ9fu%wr55bNk}%?wWxTtQ9JTMYgEb_s%Hf5 z_-&nkqe(Nz&1m9w+;}c!)@!ZIdX_Tlm6X}GG>^y4XdaKZ(CkoVz1GUCXDPE@NtxZ7 z<{ICE_~}rMK{NI{8oSxA=TdIH*2=AC$!)Ks+?gw-XJT{(%Ph9r)*k?0Vs zUTd-HSz^^IiB+$i(_l1cNb_JD%?_#RwU(-$B}BZERBh=l95svI;qAB3?2sU>V>hO~ z{@9{fNf0hRy8UUL;M4+=s|fH2WGEqbd>jOHhG#K4Ql%PosV6xS{f3OK?__Ko?b?yx z4_c2zNtSX*=18de7)Q`Wb4#H;?e&Ki%_EcMmb=_*IM3dA?~|Ni!xPY< z`vjB|?;6jR3c`@LNIKo1P$Fv5J%8Ob4!I_+Uo}v%>#qxmR^tHsM#7C zj<)fNdIf+#Xian9qB$^Wp42#Cbks&PllS#;<|*%Xlk_$_R2hz(hbkO77riaDfoZSr zTlDs8>1~(7!1W_J6uI3sY#6>XbcgS7lZ>A9reWymq5p>YJ=lNV6&66_C{-^D6}w(1tLe*Ho#fP|A;||1$~72UBuz|`oQDyW17R_J4MqLX+rp-OmrCci zR_T08rSnad&a>Gx%QmX42m};~JF8Hk-7Ye+PQ?V~7w>KW%OFmi1iADzzqP*RTl$(m zswK!hd3@FelV+Q4Fxj^0TuRiQnr|JEmJ;QgN|Zai$Rcvw%xygwJKfgP`Ydkw;6Yo_ zUY>(igf>$T2d?ZUfq|(im3}u6t0p9g&~zBb#o4$Sq|OMqIXkf0pU8sYy(nmph7UiOy_1udPOP{%kW}>G97@g z^9fy3&@3m3w>K>w3s}Rzt-)Zr4Olb1axe(C0BdN#5BlS6z#3xKFJY$Us>Hv=DvVG{ zMPU-Y>=w&V=BXv*zUN%?F7>co7JI(AEfc{vRm7S-^oT3#QAWk3K( z#@Slov;=ygZu;H8>HT>OF6$uBrJS|a%`DYyXb{-9&plv#4>wdrSVFEz!xd7=Y$}C^ z%t44U)}`ta7n0~fkwek!(0Sm_@t8VJ!lrEx!lpgT?KLom!Zs~r$h6WXv;i37v_02TxV4EY>sdTiZ-ttKKCiPC|j6J>0q8$Qv^5oQUR5fjTQZ=!s*Q+H^ zpHp3|(in-D7vYSdc$LO@jzdvGPvy-%ll4C(=?zbu1NVvZ#4)#%wsSiv&+Vi;an&zOOe)1-5C(latos=i9ngEz%AFe4QtKu9{ULnK9 zgrbD@)burEOk*cwasd-7?9^rbwodxBa(>6#r%#8Xi)CxZqsw5d?_mm-Fo|L{p-QBP zF=&`I7Pzy|NJ8~#P zqqfS>sH_Z)O3IM?c*v4I!-mpl=#)MqhxRmTt38d%+S90{J^9WIJ&V9WGj%o?IMvya zLwg#v)t;;b{ZUDKa+e^o2yB=d7r0a7TsilxQ|_&d`%#Gt`|iRE6fu2vE01sPNW5O5 zFot-Q*Z!AfUGBoK70YRuj~}@6@m=Zot+VlmWg~o4;>5-{80=QtEBbgVh8vgJGIW^K z!?q^%uxwHfOD1(q8oluPf^`bS4L5n+OFw96N(RD|bglD-CVC)E^c+)G5pnfnS$}>s zY#XCHEDPabZ)A>TZH%-$mOo8XNq56kfWVy!Fm#C0VOvpZ6`2^8M5#M0)tXqZ;VSXA ztdf4SGJCwe?Yotc5%T6F;XILTWj3nH>BGswHN^E&zI9OxtER=UB;}3M)Le_FM6gd) zz6h;mC<7^>Y>^@QOAInX7)T+d_auv4G}H_7)3meusgVPY^Q&6q-evV|$s3;oum zDy&Ks!;;Xi84Qsr7e$z1lE4_i7(+^tl>5SkkQW_Vmc~YoLo=b!pE&)tt{M}qOH2&x zaqw!#LGN6gFma2D@|&Q`w`X$t`M1q?m*s&m2SS$flf%)F`?(XuUHR0l)2Rb1mT9nK zJWiuXPrq_Ia5`m0%$Ed4&tMFb5M|($kBcI|nF`oXlCCXni;raoPyRdPJtEU6qqqi zCXqTstuSXm5)mejB7L#Dxv~)@l%&!{YNUYnN6plt{>W*#2Ck^6pmkJKU`0g*W>l27 z>0yKtk_5=hR>cT4OtdYU*2|!8jZR>UPEE}JrM&Q``#g+sN)bq5 z#z6lFzzC+|Y(kWE_F429NjIQ;1#qu&4$24!mpG1ONqvVOIdH{J z1ubKz#GCfU^XrLGx)~Q}`NiFOQ%U(&A&P6Oa@JHiC$<#FC=@L49ZKX;lHc$c#dja0 z1g`7 z{$eDC%`6&!=(K18M*vsQHh?SWSqkjb9EPgDnp<{vFylN$EemPUunfUfj1vT+8CYjA z1#saE=?)wbQ9;{?C@UC0Fe0K974>Miw8+*vma@u8JNV9bos}v8N?&&v7 zeD&RluYto88npFEW68~i z{&U|Qish=X)w;lzRbMOUnW~z|#;-@ir53f;iY%ol*bfbtKG0qrD5KHe4-KazZ;OU4 z$M-|SB`{mc%f3A+-acr!>J+suQ)E>s>X#>F;6$T-Qd$=dvg!u)%ah_pqkdA_m+P@d z!`laq`s+(3ZLcqx^z5QR<gqvbfe>>xJP6=9-hmt^IF?=o@Lj0hF#}P zWq_{(mHPeSwKi%z%c$`Tqh<#x_0!|ER=K^h%Iz5{_jXL`RbH>1%B%bmepz$z3cZ)( zGI8Qkuef?`6<4pUxO#=+%F!4((WqBky|#+0RsYH>6xZ!&)T@)Ni(h&6q>T1Mqh1ec zU7N`&&Eyq&5J$shO}OeKwJeX6uhT&pmta3!TzsTG8!4mF-w%y?Nz=NtkX2d8D%J_cWTH)*oj*@q$IoMzI3Kqb=VMEp zk8N@8JJK`mafTLam__0qFmX570x@;}Pi@GE?8=3GtL-b^^epVn4P2=Mk*sfJ?%&(X zS1MkRuTRLpJpvI)zGmXU;OPdjLqOIHkh!{2-$_y(Cm6R@YQ|-yW^5}p6^i)#F=8m* z=!?kK$(o`lr%w3q^Bsp0aamQV#hhe(JX{pkDNEzF%F?*3po}d&sY0HjiNucBa`VPD zNrq~7Ov4PP_5Sg(L*E&<)py2aeP?XxJ2jIg4=V1`#E#r?;ajH|joT_l;O)$BEj_M5tb{l*Sed)!vl<}X@`LrHI_ z2Dk_=CyKyJ2ljG3Gp@7X1O4K=vn#N|S*E6T*eH2sI-EGJ^^MkPj6=S3G$#sG453KH zvot!_@VV5I_F74K_)0p7XD`y?rc(KeHFRX1an-YQKZtn$3eBNRw)=}Z+E(Q;W4Phc zpAjuE^I}7Cn^CS9P#mF<6CvlLQFzGIb&=KBVdIS3+BoB~jWf1voa$hTisM|6a!m+| zu*yrwmU*2PDPQL}Mk3G|!AK;F=h9gWMl((@3~Fm*Wb5RVz9PvLA!05H9%P5RGM!i{ zBA2a+X=Y%!F2Wi+tiEwut8ZjohBLM-zM@*OxlFGRW!XApvgn0a?Bebl&MS=o*nU#=Vj*AkN~8y6d&YCt>{K)|L|GBKgk{9}Po=aVmB5J_EkgZ`HZ}=jSH-k-^CHzfAzTa10K7WXh zTuH}Q&ri?4f8JX~AEOV?^SseuApZ9}&;H*Z2K}%6LBH<@o)>tduROo+dBIn}`xwaB zpEYGL`^tN8Up8@nkk1ovq0%I{Fg!T;cAdyLz!=Xmm~Dh6bCa#nnTnv>)!-V7G#d~T z;Sl0VQ1MjW>dwWl`aUN@6M=x@6^>yBQpgy}k|V&DnC5-lLkebV91GE$A(7Ovf;eF) zfxNqrPzGj*-6NDpy-R`@-YTw|DWT7@4S?YiqdSh`g20&LC@-!*zxwYU=bhk6UMR(x zB|SL!`+A151TjQUz`MVF}oE4~@V;YhyDq2VKhu&gw z%-+(=o9}+OVHtnvb&3)I!H+^fH4$YAx<3w=giv&N(Cu~)PU9F{;l+|su3Dn(4n?2~ zZpuqs1quH_B%tE|OBAoV%60JQLSQTZ_q~BX99#T9=#R%=`2VN)a2_V(j5%lNz7$S=koGvEu&} zPzI9-W|8bw_S6FxiDdivOu&;r zxFvN1V6v&Tb}3k*OyvJ@W0yb7HUKlUqCM~&hRb>rnJ&pX&aYad!dG;QHa#hsidqsO zOu$SYp7b=<+~_p$-z5p{@uuRUKLKC5Qq~!Y zz&eRgCKr%EsOYp8l1TFF%5sz;6o6aoxDz=3rYG>MdOse~b-6wGmq_)2Db zAowlGq#F|_b8?i6T?T&St1}{@61H5nk&yNbQ(Z_cvd+4KaVycKtU`r(R}I+l69eJH z`cdhLs{=oP7*nx;e(ZF+aLtyTqfSB+)cHxTNMj&*Z(@(&1Ob>W#P*~;zGx|qP;nP$ zx4Wh&>qd~lZiF*2SVg)m12K{H%;Z*-;7fz70ZFeTb&w#Pj}iC)W`yv`d^d+NMI7_z z$}hQ2lIj!|OB*NZYQf0a#a-P#6U6~G03~-gBZ=TrcQC`ePpWPpEV>hW&I$gdoPc~D z#K3d4qX4KbKSq%Rb&uniuQO?`Gosv%`7|m2orNBEMjufOBF#@%yIru<9p zY%o;8O|Rg+fS{r63F#T6Xf&vSCm(cC!rzQ+&^_?O5+z_p*wUCdC~vJj662gHgg7Fy zI9i&a5OG@qIapU2wQG5%TSe{pdrZZ4QK!CY;`uN32;68(3843>IOfB`!kQtu5fhg4 zECk-+=;w^WcUzci4=0NZQM$)ogb7fM4PUv-pM`5ZgH|W z$60xhk2|Jt53_hhd*6Y?Xi zxxBB2Yc7AU;hO7-MPcL3*IEkMlF9|L5DA{V8_Db(fNpV(NaUd2T)pIgUWyjQt9NO# z_mZ~^lYGIyy?m9+lFv%<&jSy;cWH8Hk=>IBev4yNUXdNO13D*MnjUrZp?2q_b9|R3 z$NJq)@rWD4os$lSB}@h(iS+wSKFq<06@RI0Zm5dm;(sF=ibbZ^7JpNlxHBbp%Lc5gFXay~`V*sJ=n8VNl-k26 z;wrFQ05de_Yl3B>B_pzTxw9Z!_Qc{W+|kw^6c!IkI7EePXszseU_EXsC-UIH=3-|VHxC$wF;xK`3GY?W%e%T( z%I;IKSHvYAU3dsyC$YW~OxLLcm;#iL^T?WsY2K>CO!ok*2r;tK1ctBm=n z>_YAc4gsVJgath_PrVH2i)EPc5i(C##B1BTvcWUBD8s!IwUYY(hc01%I6CQ1Q4|a& z9`q0z1oJVRk0$;cMZ;(?5BvUb=#SuR?uP>(!3d3}!DQASMU!wE_QUaT5^Tpt^v*G= z(=lJ)p)BKKOc-yxg|;)b0axq_0c6bx4Ph)P$tU)&dI|rHv$`k(5PU~6{BQnl%uOh8 zs$NuZ3Nv-?`kpt4;Ak|MBQ%AxQ8@K|G?)+hpM%LBSm|}7Es?ED zNi}*(4|go6B9hRt1kSV;T2$UQJT5|^h;kb)w3p6-LJx(cF-?o0V#2jwgyag4GZL&?Q7Fq}OA}_SQF!#>J-R)7D%Mzyif(Ve?;Ku^YH} z=kq>ZtwkYXG6xZ&m|K}CiD>oZJ4`W2zQdGr+Lw4GT=WW1AY9`T{39ignf${3L9_Tt-AQ$vvG%esO_#UV?w*g-# z@DAcwtfe+xl-@6Q#I;C<78@7b^3nzCbdkXbf&8^^Ne0gIzUdLyy>X&^D)7jG{3wk}6OaCBruZJ9az_)|$98wH0&yE>u#M&YHV873xM;hiIO zJrveu7sb`wWSxi;pf}gg^4MNOzKb({w`iA-4T)}+Mi#^+RFYv0F}GW#&O_x;tC{Sa z{3suGPCBAmYv-sV7GLM2<9B}h>8L{y%)%w2`Ml`kLU8`-TA%;Yqg;8_;c>F|tLz4> z;09!flK2jRgvNy2u2X#;K@yqrVz^HzV(V0`-YB6p8n4=`=Q<*U5zsk{*OZ~`TbxnW z0eCL_Ij{1=4+ z;HILUU5nH<%_~m8=^?oJ#|e0Ia|WIrg3HtE>mSZfz}LV23VK)S>H!gt`P*+_gR`Q6 z_@LzO+l;K#HvoD)Js0Blig?!#Z_>Di4*gUF45|0)+q`EeOJIDFFqF+;Ax$CD@;-T z02ho$tD?mr3TK+LjW$qv;4+UE(=1J*$oUoTZxNFjjC=ES9CN0S8$MgaBuW_0kjSv$ z{otff8x%B574xlb7PHwt9l`_<-9%F$Z^q4!Ulr;CGT+LgV!C7g%;!p*SNFl8gk@O% zdW=|j%v(~>1uK}Q9IcB>-a126y~>{p9{cdU3!|v3y6-X~TvLdJU4cRO9wknrYRH^AANriP^F!c(EaCS-Csswv2#x4mSBN@3P_!RdaP3$K+l+gN4r=z2}?= zv*I-!I>ce&ZQcz9v)*-qw>d0IZ<=lL7j5T5=?(1{5Z|u#4S^-~Njwsoll1oFt)LtM zzDN)8G{LP>`WbzvD25pUsa9KPIp4lu&p;?1#$AV zhSM`q?eRxDtl#{osopZZ7l%Mxd6@C}6S4nMT_kz0f=sCx25uH00e{mrp1g z1RB3${XL~9<=PrLEFr?NBWn?jMX1toSGr%6L?V!~I?{q`|LFZB{wT8!u_e3cJzS+R z>cu34v0x;e$!g(ZyTH^g73xCWM##Gpr}O%cx*(}bacuc0;H$^0mqH{?*|C2_RoAXmQL+M;z{=s|HqOy#+9gI+~y?%utM)_eD= zz7$2owOdpvI<1r;z*>Q zCJU}HVLshV_al~^>^a7B6mCL0R_eER6}`A6#)VV3QMY{;X&Axb@6Azh>2a;B10v zciOBwsW;b3@EaU6tM_*FR_UR7w(NVoaWBw^%cEdC2xh(q!{Mkuo6JW6oJB!2hyB5* zKb?f5(RdQh(QJyw!{Ia>4f~_veCUlv!DKiO=c66?XaiD5{BE6{BAnPgJtaWS`8kd6 z;f7Xlv*M2JsVT#5FgNKd$}q5j*UMH12`Pb`k_A^!oh41qG321&u3oP_onk;;sv8& z-$%13@JG?S5697HG8^=VvuQY(%mQyetn~ITouTd8{AS~aX^4A<>ExLeM$alj#f7a- ze713|#&1&>=$=$Dz9*Ii)44)0`XR#%y-q^u_&hCI<}UdngH&b&^rS%|4F;lis4&f> zCbJ?D%B>$2#V?0zL)KY-p_0l5&;CcV?JVCuF0ksVlCk?6T031fQF!E}8 zq4?j{lA2DZFL0h#1m(n#dCosHF&X-0jVQ}0s^wU&Ud@X)>s)oJFWI16Y%+&^F&C$8 zd?9q-9f4?*z!eT9f1{Wr>e4_Rdt7=Uzl-qQQ7QT~e;H*pj&3!DCL~H$NZwC~Vu~a% zk?>l+T-1DXoroh|6oIEk*N0+DN}$O)j*mb>s&^xDl}E65#EyU{-J?TAYAA3I|9a-y zkZ+VzDEaLVoT>0LNTMVJf{Q0 zYK&ES7wX`uDk~SwE74Ua#l`4H>d)^kk3f1C9s#sU+2$N)N6Ha)RK%Vh6=hDjyq9O$ z^?0sest+Grdc8eTIXJN=y=2#U5wEu_&Vbb#nXQC$oaH!5iDY?AlY`j(d@%Cb1 z+bGOhORg%$A_8TGoe6f|5y}KpmDLdlPK?^dc?=}S_n1SOlUQWolKgyJRuAuTrI64Z z`!>iwSt?u(!OiRQ*FZ(n3N?lZUHbn6OGv>i=3Pd1&o0VciL5i6w8&qr?V*0VbVMwY z(NAUDC~3BH(};BmJf_2-Co=v9~Ozv<4l|jBiAHE=y>Te^Yv&eiIwu`n1)_7*NoD1g)ut=z_8+e{-Tdiq zKUs>o>Q=(tZu42F{0Ep#7Da9&S~lEjK&ye=%X+r@{m2FzUBXQG^y|-%@rC%ne@^{RrEppP4pGvtg1jrYPQlZw z)9<@8D0rkeSlUpAR)?nFOw65fj%tug$N+y!9aWR4#_y`|r1;-R=g8I_X>b7VuJON- z#PONHMVi6%9hf61u9{i!DG&u#R9%t{S&Op_sw1v|a4U;kJpl+Ps?>;9@ndM^PVsL& z=Ym_IRZ3(fH#Kf`eb>#Po~X}g8U?DK?Ihm8OjSDjL+o9J?&rUGHKL#M#Aj=#w)z>) zd$vygAUj?m`?*g2gEPP%F>N~~(do`IAvHBSbSca7`z;HA7{FfcUz?-yR`aqO28e5S ziL-aVcINa2SF}4P!_nkOe>)SU$7PUI=cMymT(kE*rYp$8W#_0PZr?NC6F`l+ z^!t84fYHqFdvh4v%VLjXFb3(Zkj`@Fi;&M;up7U}_zoqA(k{0MvG_|A4_~KUiGw~j6JL6|xeK$G z`nhOdw^qw=dir#~#*`K81xpiOdKIyX`NDK5R2Ma48-1m$hI%PFuj_7SL3f#8Q6i!a zj-8O$Iqpb30D|vsZZ6fEI^sx|xDjiBKR@RGT<2914vow@{Z3u4)H*n|?>7<8=NQTR z+4)@4!sAsf9atK!o{p%KVT~vP@8sN^h~gpd)P-ph`jW&E)v$E21jVi`sC9JM!6luW zvr9gHG!HEi!zY@F+V%-y%6pri)K}&vU%;*rxFVXUtJ=z+z!Pb)UQC6v9uC5`vR*!eAPzB|2*QWwnS)IDGz1Aiz5l{o= zldenM=_9X7bEF<^O_qVy5b@~iQIxdbu7Bo*`nPDGCZLwOXSuF_Me{86&_wT4FYfBF z+DTR8?DqymMPPsIBX1IgQRGLX(3{TY^XXt32ICM7=7aHYG@Byi`9Xg^i6(V?I#-KKikzBRk4 zgQxm>0N8EVs%KkG`qQd6U{B}|09(Lokqyyg>O`$@2Z~qX**4_pTD<1UC&(YGGtw#| zJ%E!iUh66ma7ONsI#P=?JBDGHpMGX2!rN3aOt+im;{8u(k!OgKbrx32I*JOVv~%)n zCrsC!lg_~NyjAC@Bi(bIlg{J??)-MtQPKEDOTXN1=zWhnzm+^Ex=$U-Pr*=gM*R=KIs@zjsdhrJ1=@H5lGdl!1$L@RYxB2vBm@y@MIh)pg=c zsgrttpNI;%%fEA&kW`SH85Pj#&VdFP~~9(W6eP-;eUw^f~YqA?(}S>8&qC z5&pqfMEDWqZ%urGH5CPPU6{RUcjfi}cDS7Lb`PuEr7PT+h<@D4U8PQTX~tE?pAV)D z3a8(~6^?ODof)pE;uOsFbFsCGqkWm)lII~`T;2_i_`f4(C!0D&?OGJ7xMncCt!ODY zRce{hkJ0`JT#B5N^EHgs52}1m{!0~?$1U1Z0{zJ8V$L~}w>9mxFRsnvN;sL5Y$Zir zWoJmBZMVgev2@$E5YXE$URg(K3&?~-=+aSasuU2T+sTkD%`09K7(IhAOhS|if$&PV z(^H_5?jKsDGOs1e;faiRPQ>9>+FV7nZuGz;vTpiT7!4~P3Aj7T9XYEVDI{Fgj^s*o zmO65iKo|)H@&@zZ#8`BQkG00?f*E=yGp7l;)*Rg|ga`{&KoOYv0fYvWL98&M2q3&eJ<+@j{9(cW^d zNJoE()r$d`XJjSy=c1;ucp}^g?+SqLM3SMthDtdR%=M+&lM0Y4WVPX0u#Ugqr2?>+ z1W`Om=~sM+BE@jDc2=aX=loB&FkGvmd|q1501ZyQgAZ2wXt-l&>7uF@HNtl68V!HX zjYHkVK5`+HJD2jdHk4{krZUqmE=v&;CYLk?^(u|gQ_fsxin$&hm3ZwD$l)CoJl8VEO&l_p;=>-VIt6vUi3?a>eO>iTIqG#Zwi)LYvZ-ZA}-B+tY3;5uRn( z()#S_OL?h?g@|OpDH-55T$T|ToKD38KJJf1tn*3=}(3fiIq65 zxfNIIcTgrp6fGZGyhuP4H`*0Y)#)@NDT&EqbDeUd_$)7&R7FqU#^-vY&6Rw5?8K1C zansN)^&CP$8H-*l+ALR9|#t;qW z6VIOnli>tKqhLIpjpmd2cr>4&`C#tP2IIl3-|x>R-f)b(sXv3>Y=DOIQGYs}?!-)< zf*hR2F}T8uC8OXyP@4VwTmazkm}U5G z(+er>2s7uK4nyzRvG|^$_?r%8n;6k0LaYOh|8{Wj;8clU69dD7kW`5<~MWU%g$i+2$uU_PqD=J%eqFP|@; YFP|@;2Y>!=00030|INk=-~c290P)%*82|tP literal 0 HcmV?d00001 diff --git a/stable/zigbee2mqtt/3.0.0/helm-values.md b/stable/zigbee2mqtt/3.0.0/helm-values.md new file mode 100644 index 0000000000..f64a9b328a --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/helm-values.md @@ -0,0 +1,58 @@ +# Default Helm-Values + +TrueCharts is primarily build to supply TrueNAS SCALE Apps. +However, we also supply all Apps as standard Helm-Charts. In this document we aim to document the default values in our values.yaml file. + +Most of our Apps also consume our "common" Helm Chart. +If this is the case, this means that all values.yaml values are set to the common chart values.yaml by default. This values.yaml file will only contain values that deviate from the common chart. +You will, however, be able to use all values referenced in the common chart here, besides the values listed in this document. + +## Values + +| Key | Type | Default | Description | +|-----|------|---------|-------------| +| env.USE_CUSTOM_CONFIG_FILE | bool | `false` | | +| env.ZIGBEE2MQTT_CONFIG_FRONTEND_PORT | string | `"{{ .Values.service.main.ports.main.port }}"` | | +| env.ZIGBEE2MQTT_DATA | string | `"/data"` | | +| image.pullPolicy | string | `"IfNotPresent"` | | +| image.repository | string | `"tccr.io/truecharts/zigbee2mqtt"` | | +| image.tag | string | `"v1.24.0@sha256:2574cbd6af36d0305c8034804e2c64f672757133d71b14f87f36913a9b97e754"` | | +| initContainers.init-config.args[0] | string | `"if [ -f /data/configuration.yaml ] || [ ${USE_CUSTOM_CONFIG_FILE} == true ]; then\n echo \"Initial configuration exists or User selected to use custom configuration file. Skipping...\";\nelse\n echo \"Creating initial configuration\";\n touch /data/configuration.yaml;\n echo \"# Configuration bellow will be always be overridden\" >> /data/configuration.yaml;\n echo \"# from environment settings on the Scale Apps UI.\" >> /data/configuration.yaml;\n echo \"# You however will not see this values change in the file.\" >> /data/configuration.yaml;\n echo \"# It's a generated file based on the values provided on initial install.\" >> /data/configuration.yaml;\n echo \"##########################################################\" >> /data/configuration.yaml;\n echo \"experimental:\" >> /data/configuration.yaml;\n echo \" new_api: $ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API\" >> /data/configuration.yaml;\n echo \"frontend:\" >> /data/configuration.yaml;\n echo \" port: $ZIGBEE2MQTT_CONFIG_FRONTEND_PORT\" >> /data/configuration.yaml;\n echo \"permit_join: $ZIGBEE2MQTT_CONFIG_PERMIT_JOIN\" >> /data/configuration.yaml;\n echo \"mqtt:\" >> /data/configuration.yaml;\n echo \" server: $ZIGBEE2MQTT_CONFIG_MQTT_SERVER\" >> /data/configuration.yaml;\n echo \" base_topic: $ZIGBEE2MQTT_CONFIG_MQTT_BASE_TOPIC\" >> /data/configuration.yaml;\n if [ ! -z \"$ZIGBEE2MQTT_CONFIG_MQTT_USER\" ];\n then\n echo \" user: $ZIGBEE2MQTT_CONFIG_MQTT_USER\" >> /data/configuration.yaml;\n fi;\n if [ ! -z \"$ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD\" ];\n then\n echo \" password: $ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD\" >> /data/configuration.yaml;\n fi;\n echo \"serial:\" >> /data/configuration.yaml;\n echo \" port: $ZIGBEE2MQTT_CONFIG_SERIAL_PORT\" >> /data/configuration.yaml;\n echo \" adapter: $ZIGBEE2MQTT_CONFIG_SERIAL_ADAPTER\" >> /data/configuration.yaml;\n echo \"##########################################################\" >> /data/configuration.yaml;\n echo 'Initial configuration file created at \"/data/configuration.yaml\"';\nfi;\n"` | | +| initContainers.init-config.command[0] | string | `"/bin/sh"` | | +| initContainers.init-config.command[1] | string | `"-c"` | | +| initContainers.init-config.env[0].name | string | `"ZIGBEE2MQTT_CONFIG_FRONTEND_PORT"` | | +| initContainers.init-config.env[0].value | string | `"{{ .Values.service.main.ports.main.port }}"` | | +| initContainers.init-config.env[10].name | string | `"USE_CUSTOM_CONFIG_FILE"` | | +| initContainers.init-config.env[10].value | string | `"{{ .Values.env.USE_CUSTOM_CONFIG_FILE }}"` | | +| initContainers.init-config.env[1].name | string | `"ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API"` | | +| initContainers.init-config.env[1].value | string | `"{{ .Values.env.ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API }}"` | | +| initContainers.init-config.env[2].name | string | `"ZIGBEE2MQTT_CONFIG_PERMIT_JOIN"` | | +| initContainers.init-config.env[2].value | string | `"{{ .Values.env.ZIGBEE2MQTT_CONFIG_PERMIT_JOIN }}"` | | +| initContainers.init-config.env[3].name | string | `"ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API"` | | +| initContainers.init-config.env[3].value | string | `"{{ .Values.env.ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API }}"` | | +| initContainers.init-config.env[4].name | string | `"ZIGBEE2MQTT_CONFIG_MQTT_SERVER"` | | +| initContainers.init-config.env[4].value | string | `"{{ .Values.env.ZIGBEE2MQTT_CONFIG_MQTT_SERVER }}"` | | +| initContainers.init-config.env[5].name | string | `"ZIGBEE2MQTT_CONFIG_MQTT_USER"` | | +| initContainers.init-config.env[5].value | string | `"{{ .Values.secret.ZIGBEE2MQTT_CONFIG_MQTT_USER }}"` | | +| initContainers.init-config.env[6].name | string | `"ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD"` | | +| initContainers.init-config.env[6].value | string | `"{{ .Values.secret.ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD }}"` | | +| initContainers.init-config.env[7].name | string | `"ZIGBEE2MQTT_CONFIG_MQTT_BASE_TOPIC"` | | +| initContainers.init-config.env[7].value | string | `"{{ .Values.env.ZIGBEE2MQTT_CONFIG_MQTT_BASE_TOPIC }}"` | | +| initContainers.init-config.env[8].name | string | `"ZIGBEE2MQTT_CONFIG_SERIAL_PORT"` | | +| initContainers.init-config.env[8].value | string | `"{{ .Values.env.ZIGBEE2MQTT_CONFIG_SERIAL_PORT }}"` | | +| initContainers.init-config.env[9].name | string | `"ZIGBEE2MQTT_CONFIG_SERIAL_ADAPTER"` | | +| initContainers.init-config.env[9].value | string | `"{{ .Values.env.ZIGBEE2MQTT_CONFIG_SERIAL_ADAPTER }}"` | | +| initContainers.init-config.image | string | `"{{ .Values.image.repository }}:{{ .Values.image.tag }}"` | | +| initContainers.init-config.volumeMounts[0].mountPath | string | `"/data"` | | +| initContainers.init-config.volumeMounts[0].name | string | `"data"` | | +| persistence.data.enabled | bool | `true` | | +| persistence.data.mountPath | string | `"/data"` | | +| podSecurityContext.runAsGroup | int | `0` | | +| podSecurityContext.runAsUser | int | `0` | | +| secret.ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD | string | `""` | | +| secret.ZIGBEE2MQTT_CONFIG_MQTT_USER | string | `""` | | +| securityContext.readOnlyRootFilesystem | bool | `false` | | +| securityContext.runAsNonRoot | bool | `false` | | +| service.main.ports.main.port | int | `10103` | | + +All Rights Reserved - The TrueCharts Project diff --git a/stable/zigbee2mqtt/3.0.0/ix_values.yaml b/stable/zigbee2mqtt/3.0.0/ix_values.yaml new file mode 100644 index 0000000000..085e3d6212 --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/ix_values.yaml @@ -0,0 +1,106 @@ +image: + repository: tccr.io/truecharts/zigbee2mqtt + tag: v1.24.0@sha256:2574cbd6af36d0305c8034804e2c64f672757133d71b14f87f36913a9b97e754 + pullPolicy: IfNotPresent + +secret: + ZIGBEE2MQTT_CONFIG_MQTT_USER: "" + ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD: "" + +env: + ZIGBEE2MQTT_DATA: "/data" + ZIGBEE2MQTT_CONFIG_FRONTEND_PORT: "{{ .Values.service.main.ports.main.port }}" + # User defined + USE_CUSTOM_CONFIG_FILE: false + # This values are required for the autogenerated file to work. + # ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API: true + # ZIGBEE2MQTT_CONFIG_PERMIT_JOIN: true + # ZIGBEE2MQTT_CONFIG_MQTT_SERVER: "mqtt://localhost" + # ZIGBEE2MQTT_CONFIG_MQTT_BASE_TOPIC: "zigbee2mqtt" + # ZIGBEE2MQTT_CONFIG_SERIAL_PORT: "/dev/ttyUSB0" + # ZIGBEE2MQTT_CONFIG_SERIAL_ADAPTER: "auto" + +securityContext: + runAsNonRoot: false + readOnlyRootFilesystem: false + +podSecurityContext: + runAsUser: 0 + runAsGroup: 0 + +service: + main: + ports: + main: + port: 10103 + +persistence: + data: + enabled: true + mountPath: "/data" + +initContainers: + init-config: + image: "{{ .Values.image.repository }}:{{ .Values.image.tag }}" + volumeMounts: + - name: data + mountPath: "/data" + env: + - name: ZIGBEE2MQTT_CONFIG_FRONTEND_PORT + value: "{{ .Values.service.main.ports.main.port }}" + - name: ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API + value: "{{ .Values.env.ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API }}" + - name: ZIGBEE2MQTT_CONFIG_PERMIT_JOIN + value: "{{ .Values.env.ZIGBEE2MQTT_CONFIG_PERMIT_JOIN }}" + - name: ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API + value: "{{ .Values.env.ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API }}" + - name: ZIGBEE2MQTT_CONFIG_MQTT_SERVER + value: "{{ .Values.env.ZIGBEE2MQTT_CONFIG_MQTT_SERVER }}" + - name: ZIGBEE2MQTT_CONFIG_MQTT_USER + value: "{{ .Values.secret.ZIGBEE2MQTT_CONFIG_MQTT_USER }}" + - name: ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD + value: "{{ .Values.secret.ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD }}" + - name: ZIGBEE2MQTT_CONFIG_MQTT_BASE_TOPIC + value: "{{ .Values.env.ZIGBEE2MQTT_CONFIG_MQTT_BASE_TOPIC }}" + - name: ZIGBEE2MQTT_CONFIG_SERIAL_PORT + value: "{{ .Values.env.ZIGBEE2MQTT_CONFIG_SERIAL_PORT }}" + - name: ZIGBEE2MQTT_CONFIG_SERIAL_ADAPTER + value: "{{ .Values.env.ZIGBEE2MQTT_CONFIG_SERIAL_ADAPTER }}" + - name: USE_CUSTOM_CONFIG_FILE + value: "{{ .Values.env.USE_CUSTOM_CONFIG_FILE }}" + command: ["/bin/sh", "-c"] + args: + - > + if [ -f /data/configuration.yaml ] || [ ${USE_CUSTOM_CONFIG_FILE} == true ]; + then + echo "Initial configuration exists or User selected to use custom configuration file. Skipping..."; + else + echo "Creating initial configuration"; + touch /data/configuration.yaml; + echo "# Configuration bellow will be always be overridden" >> /data/configuration.yaml; + echo "# from environment settings on the Scale Apps UI." >> /data/configuration.yaml; + echo "# You however will not see this values change in the file." >> /data/configuration.yaml; + echo "# It's a generated file based on the values provided on initial install." >> /data/configuration.yaml; + echo "##########################################################" >> /data/configuration.yaml; + echo "experimental:" >> /data/configuration.yaml; + echo " new_api: $ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API" >> /data/configuration.yaml; + echo "frontend:" >> /data/configuration.yaml; + echo " port: $ZIGBEE2MQTT_CONFIG_FRONTEND_PORT" >> /data/configuration.yaml; + echo "permit_join: $ZIGBEE2MQTT_CONFIG_PERMIT_JOIN" >> /data/configuration.yaml; + echo "mqtt:" >> /data/configuration.yaml; + echo " server: $ZIGBEE2MQTT_CONFIG_MQTT_SERVER" >> /data/configuration.yaml; + echo " base_topic: $ZIGBEE2MQTT_CONFIG_MQTT_BASE_TOPIC" >> /data/configuration.yaml; + if [ ! -z "$ZIGBEE2MQTT_CONFIG_MQTT_USER" ]; + then + echo " user: $ZIGBEE2MQTT_CONFIG_MQTT_USER" >> /data/configuration.yaml; + fi; + if [ ! -z "$ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD" ]; + then + echo " password: $ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD" >> /data/configuration.yaml; + fi; + echo "serial:" >> /data/configuration.yaml; + echo " port: $ZIGBEE2MQTT_CONFIG_SERIAL_PORT" >> /data/configuration.yaml; + echo " adapter: $ZIGBEE2MQTT_CONFIG_SERIAL_ADAPTER" >> /data/configuration.yaml; + echo "##########################################################" >> /data/configuration.yaml; + echo 'Initial configuration file created at "/data/configuration.yaml"'; + fi; diff --git a/stable/zigbee2mqtt/3.0.0/questions.yaml b/stable/zigbee2mqtt/3.0.0/questions.yaml new file mode 100644 index 0000000000..5ba9ca95b5 --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/questions.yaml @@ -0,0 +1,2489 @@ +groups: + - name: "Container Image" + description: "Image to be used for container" + - name: "Controller" + description: "Configure workload deployment" + - name: "Container Configuration" + description: "additional container configuration" + - name: "App Configuration" + description: "App specific config options" + - name: "Networking and Services" + description: "Configure Network and Services for container" + - name: "Storage and Persistence" + description: "Persist and share data that is separate from the container" + - name: "Ingress" + description: "Ingress Configuration" + - name: "Security and Permissions" + description: "Configure security context and permissions" + - name: "Resources and Devices" + description: "Specify resources/devices to be allocated to workload" + - name: "Middlewares" + description: "Traefik Middlewares" + - name: "Metrics" + description: "Metrics" + - name: "Addons" + description: "Addon Configuration" + - name: "Advanced" + description: "Advanced Configuration" +portals: + open: + protocols: + - "$kubernetes-resource_configmap_portal_protocol" + host: + - "$kubernetes-resource_configmap_portal_host" + ports: + - "$kubernetes-resource_configmap_portal_port" +questions: + - variable: portal + group: "Container Image" + label: "Configure Portal Button" + schema: + type: dict + hidden: true + attrs: + - variable: enabled + label: "Enable" + description: "enable the portal button" + schema: + hidden: true + editable: false + type: boolean + default: true + - variable: global + label: "global settings" + group: "Controller" + schema: + type: dict + hidden: true + attrs: + - variable: isSCALE + label: "flag this is SCALE" + schema: + type: boolean + default: true + hidden: true + - variable: controller + group: "Controller" + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: advanced + label: "Show Advanced Controller Settings" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: type + description: "Please specify type of workload to deploy" + label: "(Advanced) Controller Type" + schema: + type: string + default: "deployment" + required: true + enum: + - value: "deployment" + description: "Deployment" + - value: "statefulset" + description: "Statefulset" + - value: "daemonset" + description: "Daemonset" + - variable: replicas + description: "Number of desired pod replicas" + label: "Desired Replicas" + schema: + type: int + default: 1 + required: true + - variable: strategy + description: "Please specify type of workload to deploy" + label: "(Advanced) Update Strategy" + schema: + type: string + default: "Recreate" + required: true + enum: + - value: "Recreate" + description: "Recreate: Kill existing pods before creating new ones" + - value: "RollingUpdate" + description: "RollingUpdate: Create new pods and then kill old ones" + - value: "OnDelete" + description: "(Legacy) OnDelete: ignore .spec.template changes" + - variable: expert + label: "Show Expert Configuration Options" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: extraArgs + label: "Extra Args" + schema: + type: list + default: [] + items: + - variable: arg + label: "arg" + schema: + type: string + - variable: labelsList + label: "Controller Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: " Controller Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: secret + group: "Container Configuration" + label: "Image Secrets" + schema: + additional_attrs: true + type: dict + attrs: + - variable: ZIGBEE2MQTT_CONFIG_MQTT_USER + label: "MQTT User" + description: "This will override the specific value of config file. Leave empty if you plan to use custom config or you don't have set a user on your MQTT broker." + schema: + type: string + default: "" + - variable: ZIGBEE2MQTT_CONFIG_MQTT_PASSWORD + label: "MQTT Password" + description: "This will override the specific value of config file. Leave empty if you plan to use custom config or you don't have set a password on your MQTT broker." + schema: + type: string + private: true + default: "" + + - variable: env + group: "Container Configuration" + label: "Image Environment" + schema: + additional_attrs: true + type: dict + attrs: + - variable: USE_CUSTOM_CONFIG_FILE + label: "ADVANCED: Use custom config file (Placed in /data)" + description: "" + schema: + type: boolean + default: false + show_subquestions_if: false + subquestions: + - variable: ZIGBEE2MQTT_CONFIG_PERMIT_JOIN + label: "ZIGBEE2MQTT_CONFIG_PERMIT_JOIN" + description: "This will override the specific value of config file" + schema: + type: boolean + default: true + - variable: ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API + label: "ZIGBEE2MQTT_CONFIG_EXPIRIMENTAL_NEW_API" + description: "This will override the specific value of config file" + schema: + type: boolean + default: true + - variable: ZIGBEE2MQTT_CONFIG_MQTT_SERVER + label: "MQTT Server" + description: "This will override the specific value of config file" + schema: + type: string + required: true + default: "mqtt://mqtt.ix-mqtt.svc.cluster.local" + - variable: ZIGBEE2MQTT_CONFIG_MQTT_BASE_TOPIC + label: "MQTT Base Topic" + description: "This will override the specific value of config file" + schema: + type: string + required: true + default: "zigbee2mqtt" + - variable: ZIGBEE2MQTT_CONFIG_SERIAL_PORT + label: "ZIGBEE2MQTT_CONFIG_SERIAL_PORT" + description: "This will override the specific value of config file" + schema: + type: string + required: true + default: "/dev/ttyUSB0" + - variable: ZIGBEE2MQTT_CONFIG_SERIAL_ADAPTER + label: "Serial Adapter Type" + description: "This will override the specific value of config file" + schema: + type: string + required: true + default: "auto" + enum: + - value: "auto" + description: "auto" + - value: "deconz" + description: "deconz" + - value: "ezsp" + description: "ezsp" + - value: "zstack" + description: "zstack" + + - variable: TZ + label: "Timezone" + group: "Container Configuration" + schema: + type: string + default: "Etc/UTC" + $ref: + - "definitions/timezone" + + - variable: envList + label: "Image environment" + group: "Container Configuration" + schema: + type: list + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: expertpodconf + group: "Container Configuration" + label: "Show Expert Config" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: tty + label: "Enable TTY" + description: "Determines whether containers in a pod runs with TTY enabled. By default pod has it disabled." + group: "Workload Details" + schema: + type: boolean + default: false + - variable: stdin + label: "Enable STDIN" + description: "Determines whether containers in a pod runs with stdin enabled. By default pod has it disabled." + group: "Workload Details" + schema: + type: boolean + default: false + - variable: termination + group: "Container Configuration" + label: "Termination settings" + schema: + additional_attrs: true + type: dict + attrs: + - variable: gracePeriodSeconds + label: "Grace Period Seconds" + schema: + type: int + default: 10 + - variable: podLabelsList + group: "Container Configuration" + label: "Pod Labels" + schema: + type: list + default: [] + items: + - variable: podLabelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: podAnnotationsList + group: "Container Configuration" + label: "Pod Annotations" + schema: + type: list + default: [] + items: + - variable: podAnnotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: service + group: "Networking and Services" + label: "Configure Service(s)" + schema: + additional_attrs: true + type: dict + attrs: + - variable: main + label: "Main Service" + description: "The Primary service on which the healthcheck runs, often the webUI" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the service" + schema: + type: boolean + default: true + hidden: true + - variable: type + label: "Service Type" + description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer" + schema: + type: string + default: "Simple" + enum: + - value: "Simple" + description: "Simple" + - value: "ClusterIP" + description: "ClusterIP" + - value: "NodePort" + description: "NodePort (Advanced)" + - value: "LoadBalancer" + description: "LoadBalancer (Advanced)" + - variable: loadBalancerIP + label: "LoadBalancer IP" + description: "LoadBalancerIP" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: string + default: "" + - variable: externalIPs + label: "External IP's" + description: "External IP's" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: list + default: [] + items: + - variable: externalIP + label: "External IP" + schema: + type: string + - variable: ipFamilyPolicy + label: "IP Family Policy" + description: "(Advanced) Specify the ip policy" + schema: + show_if: [["type", "!=", "Simple"]] + type: string + default: "SingleStack" + enum: + - value: "SingleStack" + description: "SingleStack" + - value: "PreferDualStack" + description: "PreferDualStack" + - value: "RequireDualStack" + description: "RequireDualStack" + - variable: ipFamilies + label: "(advanced) IP families" + description: "(advanced) The ip families that should be used" + schema: + show_if: [["type", "!=", "Simple"]] + type: list + default: [] + items: + - variable: ipFamily + label: "IP family" + schema: + type: string + - variable: ports + label: "Service's Port(s) Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: main + label: "Main Service Port Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "Port" + description: "This port exposes the container port on the service" + schema: + type: int + default: 10103 + required: true + - variable: advanced + label: "Show Advanced settings" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: protocol + label: "Port Type" + schema: + type: string + default: "HTTP" + enum: + - value: HTTP + description: "HTTP" + - value: "HTTPS" + description: "HTTPS" + - value: TCP + description: "TCP" + - value: "UDP" + description: "UDP" + - variable: nodePort + label: "Node Port (Optional)" + description: "This port gets exposed to the node. Only considered when service type is NodePort, Simple or LoadBalancer" + schema: + type: int + min: 9000 + max: 65535 + - variable: targetPort + label: "Target Port" + description: "The internal(!) port on the container the Application runs on" + schema: + type: int + default: 10103 + + - variable: serviceexpert + group: "Networking and Services" + label: "Show Expert Config" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: hostNetwork + group: "Networking and Services" + label: "Host-Networking (Complicated)" + schema: + type: boolean + default: false + + - variable: externalInterfaces + description: "Add External Interfaces" + label: "Add external Interfaces" + group: "Networking" + schema: + type: list + items: + - variable: interfaceConfiguration + description: "Interface Configuration" + label: "Interface Configuration" + schema: + type: dict + $ref: + - "normalize/interfaceConfiguration" + attrs: + - variable: hostInterface + description: "Please specify host interface" + label: "Host Interface" + schema: + type: string + required: true + $ref: + - "definitions/interface" + - variable: ipam + description: "Define how IP Address will be managed" + label: "IP Address Management" + schema: + type: dict + required: true + attrs: + - variable: type + description: "Specify type for IPAM" + label: "IPAM Type" + schema: + type: string + required: true + enum: + - value: "dhcp" + description: "Use DHCP" + - value: "static" + description: "Use static IP" + show_subquestions_if: "static" + subquestions: + - variable: staticIPConfigurations + label: "Static IP Addresses" + schema: + type: list + items: + - variable: staticIP + label: "Static IP" + schema: + type: ipaddr + cidr: true + - variable: staticRoutes + label: "Static Routes" + schema: + type: list + items: + - variable: staticRouteConfiguration + label: "Static Route Configuration" + schema: + additional_attrs: true + type: dict + attrs: + - variable: destination + label: "Destination" + schema: + type: ipaddr + cidr: true + required: true + - variable: gateway + label: "Gateway" + schema: + type: ipaddr + cidr: false + required: true + + - variable: dnsPolicy + group: "Networking and Services" + label: "dnsPolicy" + schema: + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "ClusterFirst" + description: "ClusterFirst" + - value: "ClusterFirstWithHostNet" + description: "ClusterFirstWithHostNet" + - value: "None" + description: "None" + + - variable: dnsConfig + label: "DNS Configuration" + group: "Networking and Services" + description: "Specify custom DNS configuration which will be applied to the pod" + schema: + additional_attrs: true + type: dict + attrs: + - variable: nameservers + label: "Nameservers" + schema: + default: [] + type: list + items: + - variable: nameserver + label: "Nameserver" + schema: + type: string + - variable: options + label: "options" + schema: + default: [] + type: list + items: + - variable: option + label: "Option Entry" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: searches + label: "Searches" + schema: + default: [] + type: list + items: + - variable: search + label: "Search Entry" + schema: + type: string + + - variable: serviceList + label: "Add Manual Custom Services" + group: "Networking and Services" + schema: + type: list + default: [] + items: + - variable: serviceListEntry + label: "Custom Service" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the service" + schema: + type: boolean + default: true + hidden: true + - variable: name + label: "Name" + schema: + type: string + default: "" + - variable: type + label: "Service Type" + description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer" + schema: + type: string + default: "Simple" + enum: + - value: "Simple" + description: "Simple" + - value: "NodePort" + description: "NodePort" + - value: "ClusterIP" + description: "ClusterIP" + - value: "LoadBalancer" + description: "LoadBalancer" + - variable: loadBalancerIP + label: "LoadBalancer IP" + description: "LoadBalancerIP" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: string + default: "" + - variable: externalIPs + label: "External IP's" + description: "External IP's" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: list + default: [] + items: + - variable: externalIP + label: "External IP" + schema: + type: string + - variable: portsList + label: "Additional Service Ports" + schema: + type: list + default: [] + items: + - variable: portsListEntry + label: "Custom ports" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the port" + schema: + type: boolean + default: true + hidden: true + - variable: name + label: "Port Name" + schema: + type: string + default: "" + - variable: protocol + label: "Port Type" + schema: + type: string + default: "TCP" + enum: + - value: HTTP + description: "HTTP" + - value: "HTTPS" + description: "HTTPS" + - value: TCP + description: "TCP" + - value: "UDP" + description: "UDP" + - variable: targetPort + label: "Target Port" + description: "This port exposes the container port on the service" + schema: + type: int + required: true + - variable: port + label: "Container Port" + schema: + type: int + required: true + - variable: nodePort + label: "Node Port (Optional)" + description: "This port gets exposed to the node. Only considered when service type is NodePort" + schema: + type: int + min: 9000 + max: 65535 + + - variable: persistence + label: "Integrated Persistent Storage" + description: "Integrated Persistent Storage" + group: "Storage and Persistence" + schema: + additional_attrs: true + type: dict + attrs: + - variable: data + label: "App Data Storage" + description: "Stores the Application Configuration." + schema: + additional_attrs: true + type: dict + attrs: + - variable: type + label: "Type of Storage" + description: "Sets the persistence type, Anything other than PVC could break rollback!" + schema: + type: string + default: "simplePVC" + enum: + - value: "simplePVC" + description: "PVC (simple)" + - value: "simpleHP" + description: "HostPath (simple)" + - value: "emptyDir" + description: "emptyDir" + - value: "pvc" + description: "pvc" + - value: "hostPath" + description: "hostPath" + - variable: setPermissionsSimple + label: "Automatic Permissions" + description: "Automatically set permissions on install" + schema: + show_if: [["type", "=", "simpleHP"]] + type: boolean + default: true + - variable: setPermissions + label: "Automatic Permissions" + description: "Automatically set permissions on install" + schema: + show_if: [["type", "=", "hostPath"]] + type: boolean + default: true + - variable: readOnly + label: "readOnly" + schema: + type: boolean + default: false + - variable: hostPathSimple + label: "hostPath" + description: "Path inside the container the storage is mounted" + schema: + show_if: [["type", "=", "simpleHP"]] + type: hostpath + - variable: hostPath + label: "hostPath" + description: "Path inside the container the storage is mounted" + schema: + show_if: [["type", "=", "hostPath"]] + type: hostpath + - variable: medium + label: "EmptyDir Medium" + schema: + show_if: [["type", "=", "emptyDir"]] + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "Memory" + description: "Memory" + - variable: size + label: "Size quotum of storage" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "999Gi" + - variable: hostPathType + label: "(Advanced) hostPath Type" + schema: + show_if: [["type", "=", "hostPath"]] + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "DirectoryOrCreate" + description: "DirectoryOrCreate" + - value: "Directory" + description: "Directory" + - value: "FileOrCreate" + description: "FileOrCreate" + - value: "File" + description: "File" + - value: "Socket" + description: "Socket" + - value: "CharDevice" + description: "CharDevice" + - value: "BlockDevice" + description: "BlockDevice" + - variable: storageClass + label: "(Advanced) storageClass" + description: "Warning: Anything other than SCALE-ZFS or empty will break rollback!" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "SCALE-ZFS" + - variable: accessMode + label: "(Advanced) Access Mode" + description: "Allow or disallow multiple PVC's writhing to the same PV" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "ReadWriteOnce" + enum: + - value: "ReadWriteOnce" + description: "ReadWriteOnce" + - value: "ReadOnlyMany" + description: "ReadOnlyMany" + - value: "ReadWriteMany" + description: "ReadWriteMany" + - variable: advanced + label: "Show Advanced Options" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: labelsList + label: "Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: "Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: persistenceList + label: "Additional app storage" + group: "Storage and Persistence" + schema: + type: list + default: [] + items: + - variable: persistenceListEntry + label: "Custom Storage" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the storage" + schema: + type: boolean + default: true + hidden: true + - variable: name + label: "Name (optional)" + description: "Not required, please set to config when mounting /config or temp when mounting /tmp" + schema: + type: string + - variable: type + label: "Type of Storage" + description: "Sets the persistence type, Anything other than PVC could break rollback!" + schema: + type: string + default: "simpleHP" + enum: + - value: "simplePVC" + description: "PVC (simple)" + - value: "simpleHP" + description: "HostPath (simple)" + - value: "emptyDir" + description: "emptyDir" + - value: "pvc" + description: "pvc" + - value: "hostPath" + description: "hostPath" + - variable: setPermissionsSimple + label: "Automatic Permissions" + description: "Automatically set permissions on install" + schema: + show_if: [["type", "=", "simpleHP"]] + type: boolean + default: true + - variable: setPermissions + label: "Automatic Permissions" + description: "Automatically set permissions on install" + schema: + show_if: [["type", "=", "hostPath"]] + type: boolean + default: true + - variable: readOnly + label: "readOnly" + schema: + type: boolean + default: false + - variable: hostPathSimple + label: "hostPath" + description: "Path inside the container the storage is mounted" + schema: + show_if: [["type", "=", "simpleHP"]] + type: hostpath + - variable: hostPath + label: "hostPath" + description: "Path inside the container the storage is mounted" + schema: + show_if: [["type", "=", "hostPath"]] + type: hostpath + - variable: mountPath + label: "mountPath" + description: "Path inside the container the storage is mounted" + schema: + type: string + default: "" + required: true + valid_chars: '^\/([a-zA-Z0-9._-]+(\s?[a-zA-Z0-9._-]+|\/?))+$' + - variable: medium + label: "EmptyDir Medium" + schema: + show_if: [["type", "=", "emptyDir"]] + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "Memory" + description: "Memory" + - variable: size + label: "Size quotum of storage" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "999Gi" + - variable: hostPathType + label: "(Advanced) hostPath Type" + schema: + show_if: [["type", "=", "hostPath"]] + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "DirectoryOrCreate" + description: "DirectoryOrCreate" + - value: "Directory" + description: "Directory" + - value: "FileOrCreate" + description: "FileOrCreate" + - value: "File" + description: "File" + - value: "Socket" + description: "Socket" + - value: "CharDevice" + description: "CharDevice" + - value: "BlockDevice" + description: "BlockDevice" + - variable: storageClass + label: "(Advanced) storageClass" + description: "Warning: Anything other than SCALE-ZFS or empty will break rollback!" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "SCALE-ZFS" + - variable: accessMode + label: "(Advanced) Access Mode" + description: "Allow or disallow multiple PVC's writhing to the same PV" + schema: + show_if: [["type", "=", "pvc"]] + type: string + default: "ReadWriteOnce" + enum: + - value: "ReadWriteOnce" + description: "ReadWriteOnce" + - value: "ReadOnlyMany" + description: "ReadOnlyMany" + - value: "ReadWriteMany" + description: "ReadWriteMany" + - variable: advanced + label: "Show Advanced Options" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: labelsList + label: "Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: "Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: ingress + label: "" + group: "Ingress" + schema: + additional_attrs: true + type: dict + attrs: + - variable: main + label: "Main Ingress" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable Ingress" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: hosts + label: "Hosts" + schema: + type: list + default: [] + items: + - variable: hostEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: host + label: "HostName" + schema: + type: string + default: "" + required: true + - variable: paths + label: "Paths" + schema: + type: list + default: [] + items: + - variable: pathEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: path + label: "path" + schema: + type: string + required: true + default: "/" + - variable: pathType + label: "pathType" + schema: + type: string + required: true + default: "Prefix" + + - variable: tls + label: "TLS-Settings" + schema: + type: list + default: [] + items: + - variable: tlsEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: hosts + label: "Certificate Hosts" + schema: + type: list + default: [] + items: + - variable: host + label: "Host" + schema: + type: string + default: "" + required: true + - variable: scaleCert + label: "Select TrueNAS SCALE Certificate" + schema: + type: int + $ref: + - "definitions/certificate" + + - variable: entrypoint + label: "(Advanced) Traefik Entrypoint" + description: "Entrypoint used by Traefik when using Traefik as Ingress Provider" + schema: + type: string + default: "websecure" + required: true + - variable: middlewares + label: "Traefik Middlewares" + description: "Add previously created Traefik Middlewares to this Ingress" + schema: + type: list + default: [] + items: + - variable: name + label: "Name" + schema: + type: string + default: "" + required: true + + - variable: expert + label: "Show Expert Configuration Options" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: enableFixedMiddlewares + description: "These middlewares enforce a number of best practices." + label: "Enable Default Middlewares" + schema: + type: boolean + default: true + - variable: ingressClassName + label: "IngressClass Name" + schema: + type: string + default: "" + - variable: labelsList + label: "Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: "Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + + - variable: ingressList + label: "Add Manual Custom Ingresses" + group: "Ingress" + schema: + type: list + default: [] + items: + - variable: ingressListEntry + label: "Custom Ingress" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable Ingress" + schema: + type: boolean + default: true + hidden: true + - variable: name + label: "Name" + schema: + type: string + default: "" + - variable: ingressClassName + label: "IngressClass Name" + schema: + type: string + default: "" + - variable: labelsList + label: "Labels" + schema: + type: list + default: [] + items: + - variable: labelItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: annotationsList + label: "Annotations" + schema: + type: list + default: [] + items: + - variable: annotationItem + label: "Label" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + - variable: value + label: "Value" + schema: + type: string + - variable: hosts + label: "Hosts" + schema: + type: list + default: [] + items: + - variable: hostEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: host + label: "HostName" + schema: + type: string + default: "" + required: true + - variable: paths + label: "Paths" + schema: + type: list + default: [] + items: + - variable: pathEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: path + label: "path" + schema: + type: string + required: true + default: "/" + - variable: pathType + label: "pathType" + schema: + type: string + required: true + default: "Prefix" + - variable: service + label: "Linked Service" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Service Name" + schema: + type: string + default: "" + - variable: port + label: "Service Port" + schema: + type: int + - variable: tls + label: "TLS-Settings" + schema: + type: list + default: [] + items: + - variable: tlsEntry + label: "Host" + schema: + additional_attrs: true + type: dict + attrs: + - variable: hosts + label: "Certificate Hosts" + schema: + type: list + default: [] + items: + - variable: host + label: "Host" + schema: + type: string + default: "" + required: true + - variable: scaleCert + label: "Select TrueNAS SCALE Certificate" + schema: + type: int + $ref: + - "definitions/certificate" + - variable: entrypoint + label: "Traefik Entrypoint" + description: "Entrypoint used by Traefik when using Traefik as Ingress Provider" + schema: + type: string + default: "websecure" + required: true + - variable: middlewares + label: "Traefik Middlewares" + description: "Add previously created Traefik Middlewares to this Ingress" + schema: + type: list + default: [] + items: + - variable: name + label: "Name" + schema: + type: string + default: "" + required: true + + - variable: security + label: "Container Security Settings" + group: "Security and Permissions" + schema: + type: dict + additional_attrs: true + attrs: + - variable: editsecurity + label: "Change PUID / UMASK values" + description: "By enabling this you override default set values." + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: PUID + label: "Process User ID - PUID" + description: "When supported by the container, this sets the User ID running the Application Process. Not supported by all Apps" + schema: + type: int + default: 568 + - variable: UMASK + label: "UMASK" + description: "When supported by the container, this sets the UMASK for tha App. Not supported by all Apps" + schema: + type: string + default: "002" + + - variable: advancedSecurity + label: "Show Advanced Security Settings" + group: "Security and Permissions" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: securityContext + label: "Security Context" + schema: + additional_attrs: true + type: dict + attrs: + - variable: privileged + label: "Privileged mode" + schema: + type: boolean + default: false + - variable: readOnlyRootFilesystem + label: "ReadOnly Root Filesystem" + schema: + type: boolean + default: false + - variable: allowPrivilegeEscalation + label: "Allow Privilege Escalation" + schema: + type: boolean + default: false + - variable: runAsNonRoot + label: "runAsNonRoot" + schema: + type: boolean + default: false + - variable: capabilities + label: "Capabilities" + schema: + additional_attrs: true + type: dict + attrs: + - variable: drop + label: "Drop Capability" + schema: + type: list + default: [] + items: + - variable: dropEntry + label: "" + schema: + type: string + - variable: add + label: "Add Capability" + schema: + type: list + default: [] + items: + - variable: addEntry + label: "" + schema: + type: string + + - variable: podSecurityContext + group: "Security and Permissions" + label: "Pod Security Context" + schema: + additional_attrs: true + type: dict + attrs: + - variable: runAsUser + label: "runAsUser" + description: "The UserID of the user running the application" + schema: + type: int + default: 0 + - variable: runAsGroup + label: "runAsGroup" + description: The groupID this App of the user running the application" + schema: + type: int + default: 0 + - variable: fsGroup + label: "fsGroup" + description: "The group that should own ALL storage." + schema: + type: int + default: 568 + - variable: fsGroupChangePolicy + label: "When should we take ownership?" + schema: + type: string + default: "OnRootMismatch" + enum: + - value: "OnRootMismatch" + description: "OnRootMismatch" + - value: "Always" + description: "Always" + - variable: supplementalGroups + label: "supplemental Groups" + schema: + type: list + default: [] + items: + - variable: supplementalGroupsEntry + label: "supplemental Group" + schema: + type: int + + + - variable: advancedresources + label: "Set Custom Resource Limits/Requests (Advanced)" + group: "Resources and Devices" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: resources + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: limits + label: "Advanced Limit Resource Consumption" + schema: + additional_attrs: true + type: dict + attrs: + - variable: cpu + label: "CPU" + description: "1000m means 1 hyperthread. Detailed info: https://truecharts.org/manual/indepth/validation/" + schema: + type: string + default: "4000m" + valid_chars: '^(?!^0(\.0|m|)$)([0-9]+)(\.[0-9]|m?)$' + - variable: memory + label: "RAM" + description: "1Gi means 1 Gibibyte RAM. Detailed info: https://truecharts.org/manual/indepth/validation/" + schema: + type: string + default: "8Gi" + valid_chars: '^(?!^0(e[0-9]|[EPTGMK]i?|)$)([0-9]+)(|[EPTGMK]i?|e[0-9]+)$' + - variable: requests + label: "Minimum Resources Required (request)" + schema: + additional_attrs: true + type: dict + attrs: + - variable: cpu + label: "CPU" + description: "1000m means 1 hyperthread. Detailed info: https://truecharts.org/manual/indepth/validation/" + schema: + type: string + default: "10m" + valid_chars: '^(?!^0(\.0|m|)$)([0-9]+)(\.[0-9]|m?)$' + - variable: memory + label: "RAM" + description: "1Gi means 1 Gibibyte RAM. Detailed info: https://truecharts.org/manual/indepth/validation/" + schema: + type: string + default: "50Mi" + valid_chars: '^(?!^0(e[0-9]|[EPTGMK]i?|)$)([0-9]+)(|[EPTGMK]i?|e[0-9]+)$' + + - variable: deviceList + label: "Mount USB devices" + group: "Resources and Devices" + schema: + type: list + default: [] + items: + - variable: deviceListEntry + label: "Device" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "Enable the storage" + schema: + type: boolean + default: true + - variable: type + label: "(Advanced) Type of Storage" + description: "Sets the persistence type" + schema: + type: string + default: "hostPath" + hidden: true + - variable: readOnly + label: "readOnly" + schema: + type: boolean + default: false + - variable: hostPath + label: "Host Device Path" + description: "Path to the device on the host system" + schema: + type: path + - variable: mountPath + label: "Container Device Path" + description: "Path inside the container the device is mounted" + schema: + type: string + default: "/dev/ttyACM0" + + # Specify GPU configuration + - variable: scaleGPU + label: "GPU Configuration" + group: "Resources and Devices" + schema: + type: dict + $ref: + - "definitions/gpuConfiguration" + attrs: [] + + - variable: autoscaling + group: "Advanced" + label: "(Advanced) Horizontal Pod Autoscaler" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: target + label: "Target" + description: "deployment name, defaults to main deployment" + schema: + type: string + default: "" + - variable: minReplicas + label: "Minimum Replicas" + schema: + type: int + default: 1 + - variable: maxReplicas + label: "Maximum Replicas" + schema: + type: int + default: 5 + - variable: targetCPUUtilizationPercentage + label: "Target CPU Utilization Percentage" + schema: + type: int + default: 80 + - variable: targetMemoryUtilizationPercentage + label: "Target Memory Utilization Percentage" + schema: + type: int + default: 80 + - variable: networkPolicy + group: "Advanced" + label: "(Advanced) Network Policy" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: policyType + label: "Policy Type" + schema: + type: string + default: "" + enum: + - value: "" + description: "Default" + - value: "ingress" + description: "Ingress" + - value: "egress" + description: "Egress" + - value: "ingress-egress" + description: "Ingress and Egress" + - variable: egress + label: "Egress" + schema: + type: list + default: [] + items: + - variable: egressEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: to + label: "To" + schema: + type: list + default: [] + items: + - variable: toEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: ipBlock + label: "ipBlock" + schema: + additional_attrs: true + type: dict + attrs: + - variable: cidr + label: "cidr" + schema: + type: string + default: "" + - variable: except + label: "except" + schema: + type: list + default: [] + items: + - variable: exceptint + label: "" + schema: + type: int + - variable: namespaceSelector + label: "namespaceSelector" + schema: + additional_attrs: true + type: dict + attrs: + - variable: matchExpressions + label: "matchExpressions" + schema: + type: list + default: [] + items: + - variable: expressionEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: key + label: "Key" + schema: + type: string + - variable: operator + label: "operator" + schema: + type: string + default: "TCP" + enum: + - value: "In" + description: "In" + - value: "NotIn" + description: "NotIn" + - value: "Exists " + description: "Exists " + - value: "DoesNotExist " + description: "DoesNotExist " + - variable: values + label: "values" + schema: + type: list + default: [] + items: + - variable: value + label: "" + schema: + type: string + - variable: podSelector + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: matchExpressions + label: "matchExpressions" + schema: + type: list + default: [] + items: + - variable: expressionEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: key + label: "Key" + schema: + type: string + - variable: operator + label: "operator" + schema: + type: string + default: "TCP" + enum: + - value: "In" + description: "In" + - value: "NotIn" + description: "NotIn" + - value: "Exists " + description: "Exists " + - value: "DoesNotExist " + description: "DoesNotExist " + - variable: values + label: "values" + schema: + type: list + default: [] + items: + - variable: value + label: "" + schema: + type: string + - variable: ports + label: "Ports" + schema: + type: list + default: [] + items: + - variable: portsEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "port" + schema: + type: int + - variable: endPort + label: "port" + schema: + type: int + - variable: protocol + label: "Protocol" + schema: + type: string + default: "TCP" + enum: + - value: "TCP" + description: "TCP" + - value: "UDP" + description: "UDP" + - value: "SCTP" + description: "SCTP" + - variable: ingress + label: "Ingress" + schema: + type: list + default: [] + items: + - variable: ingressEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: from + label: "From" + schema: + type: list + default: [] + items: + - variable: fromEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: ipBlock + label: "ipBlock" + schema: + additional_attrs: true + type: dict + attrs: + - variable: cidr + label: "cidr" + schema: + type: string + default: "" + - variable: except + label: "except" + schema: + type: list + default: [] + items: + - variable: exceptint + label: "" + schema: + type: int + - variable: namespaceSelector + label: "namespaceSelector" + schema: + additional_attrs: true + type: dict + attrs: + - variable: matchExpressions + label: "matchExpressions" + schema: + type: list + default: [] + items: + - variable: expressionEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: key + label: "Key" + schema: + type: string + - variable: operator + label: "operator" + schema: + type: string + default: "TCP" + enum: + - value: "In" + description: "In" + - value: "NotIn" + description: "NotIn" + - value: "Exists " + description: "Exists " + - value: "DoesNotExist " + description: "DoesNotExist " + - variable: values + label: "values" + schema: + type: list + default: [] + items: + - variable: value + label: "" + schema: + type: string + - variable: podSelector + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: matchExpressions + label: "matchExpressions" + schema: + type: list + default: [] + items: + - variable: expressionEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: key + label: "Key" + schema: + type: string + - variable: operator + label: "operator" + schema: + type: string + default: "TCP" + enum: + - value: "In" + description: "In" + - value: "NotIn" + description: "NotIn" + - value: "Exists " + description: "Exists " + - value: "DoesNotExist " + description: "DoesNotExist " + - variable: values + label: "values" + schema: + type: list + default: [] + items: + - variable: value + label: "" + schema: + type: string + - variable: ports + label: "Ports" + schema: + type: list + default: [] + items: + - variable: portsEntry + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: port + label: "port" + schema: + type: int + - variable: endPort + label: "port" + schema: + type: int + - variable: protocol + label: "Protocol" + schema: + type: string + default: "TCP" + enum: + - value: "TCP" + description: "TCP" + - value: "UDP" + description: "UDP" + - value: "SCTP" + description: "SCTP" + + + - variable: addons + group: "Addons" + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: vpn + label: "VPN" + schema: + additional_attrs: true + type: dict + attrs: + - variable: type + label: "Type" + schema: + type: string + default: "disabled" + enum: + - value: "disabled" + description: "disabled" + - value: "openvpn" + description: "OpenVPN" + - value: "wireguard" + description: "Wireguard" + - variable: openvpn + label: "OpenVPN Settings" + schema: + type: dict + show_if: [["type", "=", "openvpn"]] + attrs: + - variable: username + label: "authentication username" + description: "authentication username, optional" + schema: + type: string + default: "" + - variable: password + label: "authentication password" + description: "authentication credentials" + schema: + type: string + default: "" + required: true + - variable: killSwitch + label: "Enable killswitch" + schema: + type: boolean + show_if: [["type", "!=", "disabled"]] + default: true + - variable: excludedNetworks_IPv4 + label: "Killswitch Excluded IPv4 networks" + description: "list of killswitch excluded ipv4 addresses" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: networkv4 + label: "IPv4 Network" + schema: + type: string + required: true + - variable: excludedNetworks_IPv6 + label: "Killswitch Excluded IPv6 networks" + description: "list of killswitch excluded ipv4 addresses" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: networkv6 + label: "IPv6 Network" + schema: + type: string + required: true + + - variable: configFile + label: "VPN Config File Location" + schema: + type: dict + show_if: [["type", "!=", "disabled"]] + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: true + hidden: true + - variable: type + label: "type" + schema: + type: string + default: "hostPath" + hidden: true + - variable: hostPathType + label: "hostPathType" + schema: + type: string + default: "File" + hidden: true + - variable: noMount + label: "noMount" + schema: + type: boolean + default: true + hidden: true + - variable: hostPath + label: "Full path to file" + description: "path to your local VPN config file for example: /mnt/tank/vpn.conf or /mnt/tank/vpn.ovpn" + schema: + type: string + default: "" + required: true + - variable: envList + label: "VPN environment Variables" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: value + label: "Value" + schema: + type: string + required: true + + - variable: codeserver + label: "Codeserver" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: git + label: "Git Settings" + schema: + additional_attrs: true + type: dict + attrs: + - variable: deployKey + description: "Raw SSH private key" + label: "deployKey" + schema: + type: string + - variable: deployKeyBase64 + description: "Base64-encoded SSH private key. When both variables are set, the raw SSH key takes precedence" + label: "deployKeyBase64" + schema: + type: string + - variable: service + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: type + label: "Service Type" + description: "ClusterIP's are only internally available, nodePorts expose the container to the host node System, Loadbalancer exposes the service using the system loadbalancer" + schema: + type: string + default: "NodePort" + enum: + - value: "NodePort" + description: "NodePort" + - value: "ClusterIP" + description: "ClusterIP" + - value: "LoadBalancer" + description: "LoadBalancer" + - variable: loadBalancerIP + label: "LoadBalancer IP" + description: "LoadBalancerIP" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: string + default: "" + - variable: externalIPs + label: "External IP's" + description: "External IP's" + schema: + show_if: [["type", "=", "LoadBalancer"]] + type: list + default: [] + items: + - variable: externalIP + label: "External IP" + schema: + type: string + - variable: ports + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: codeserver + label: "" + schema: + additional_attrs: true + type: dict + attrs: + - variable: nodePort + description: "leave empty to disable" + label: "nodePort" + schema: + type: int + default: 36107 + - variable: envList + label: "Codeserver environment Variables" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: value + label: "Value" + schema: + type: string + required: true + + + - variable: promtail + label: "Promtail" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: loki + label: "Loki URL" + schema: + type: string + required: true + - variable: logs + label: "Log Paths" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: path + label: "Path" + schema: + type: string + required: true + - variable: args + label: "Promtail ecommand line arguments" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: arg + label: "Arg" + schema: + type: string + required: true + - variable: envList + label: "Promtail environment Variables" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: value + label: "Value" + schema: + type: string + required: true + + + + + - variable: netshoot + label: "Netshoot" + schema: + additional_attrs: true + type: dict + attrs: + - variable: enabled + label: "enabled" + schema: + type: boolean + default: false + show_subquestions_if: true + subquestions: + - variable: envList + label: "Netshoot environment Variables" + schema: + type: list + show_if: [["type", "!=", "disabled"]] + default: [] + items: + - variable: envItem + label: "Environment Variable" + schema: + additional_attrs: true + type: dict + attrs: + - variable: name + label: "Name" + schema: + type: string + required: true + - variable: value + label: "Value" + schema: + type: string + required: true diff --git a/stable/zigbee2mqtt/3.0.0/security.md b/stable/zigbee2mqtt/3.0.0/security.md new file mode 100644 index 0000000000..8150dd0de8 --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/security.md @@ -0,0 +1,109 @@ +--- +hide: + - toc +--- + +# Security Overview + + + +## Helm-Chart + +##### Scan Results + +#### Chart Object: zigbee2mqtt/templates/common.yaml + + + +| Type | Misconfiguration ID | Check | Severity | Explaination | Links | +|:----------------|:------------------:|:-----------:|:------------------:|-----------------------------------------|-----------------------------------------| +| Kubernetes Security Check | KSV001 | Process can elevate its own privileges | MEDIUM |

Expand... A program inside the container can elevate its own privileges and run as root, which might give the program control over the container and node.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.allowPrivilegeEscalation' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv001
| +| Kubernetes Security Check | KSV001 | Process can elevate its own privileges | MEDIUM |
Expand... A program inside the container can elevate its own privileges and run as root, which might give the program control over the container and node.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.allowPrivilegeEscalation' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv001
| +| Kubernetes Security Check | KSV003 | Default capabilities not dropped | LOW |
Expand... The container should drop all default capabilities and add only those that are needed for its execution.


Container 'RELEASE-NAME-zigbee2mqtt' of Deployment 'RELEASE-NAME-zigbee2mqtt' should add 'ALL' to 'securityContext.capabilities.drop'
|
Expand...https://kubesec.io/basics/containers-securitycontext-capabilities-drop-index-all/
https://avd.aquasec.com/appshield/ksv003
| +| Kubernetes Security Check | KSV003 | Default capabilities not dropped | LOW |
Expand... The container should drop all default capabilities and add only those that are needed for its execution.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should add 'ALL' to 'securityContext.capabilities.drop'
|
Expand...https://kubesec.io/basics/containers-securitycontext-capabilities-drop-index-all/
https://avd.aquasec.com/appshield/ksv003
| +| Kubernetes Security Check | KSV003 | Default capabilities not dropped | LOW |
Expand... The container should drop all default capabilities and add only those that are needed for its execution.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should add 'ALL' to 'securityContext.capabilities.drop'
|
Expand...https://kubesec.io/basics/containers-securitycontext-capabilities-drop-index-all/
https://avd.aquasec.com/appshield/ksv003
| +| Kubernetes Security Check | KSV011 | CPU not limited | LOW |
Expand... Enforcing CPU limits prevents DoS via resource exhaustion.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'resources.limits.cpu'
|
Expand...https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits
https://avd.aquasec.com/appshield/ksv011
| +| Kubernetes Security Check | KSV011 | CPU not limited | LOW |
Expand... Enforcing CPU limits prevents DoS via resource exhaustion.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'resources.limits.cpu'
|
Expand...https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits
https://avd.aquasec.com/appshield/ksv011
| +| Kubernetes Security Check | KSV012 | Runs as root user | MEDIUM |
Expand... 'runAsNonRoot' forces the running image to run as a non-root user to ensure least privileges.


Container 'RELEASE-NAME-zigbee2mqtt' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsNonRoot' to true
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv012
| +| Kubernetes Security Check | KSV012 | Runs as root user | MEDIUM |
Expand... 'runAsNonRoot' forces the running image to run as a non-root user to ensure least privileges.


Container 'autopermissions' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsNonRoot' to true
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv012
| +| Kubernetes Security Check | KSV012 | Runs as root user | MEDIUM |
Expand... 'runAsNonRoot' forces the running image to run as a non-root user to ensure least privileges.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsNonRoot' to true
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv012
| +| Kubernetes Security Check | KSV012 | Runs as root user | MEDIUM |
Expand... 'runAsNonRoot' forces the running image to run as a non-root user to ensure least privileges.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsNonRoot' to true
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv012
| +| Kubernetes Security Check | KSV014 | Root file system is not read-only | LOW |
Expand... An immutable root file system prevents applications from writing to their local disk. This can limit intrusions, as attackers will not be able to tamper with the file system or write foreign executables to disk.


Container 'RELEASE-NAME-zigbee2mqtt' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.readOnlyRootFilesystem' to true
|
Expand...https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/
https://avd.aquasec.com/appshield/ksv014
| +| Kubernetes Security Check | KSV014 | Root file system is not read-only | LOW |
Expand... An immutable root file system prevents applications from writing to their local disk. This can limit intrusions, as attackers will not be able to tamper with the file system or write foreign executables to disk.


Container 'autopermissions' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.readOnlyRootFilesystem' to true
|
Expand...https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/
https://avd.aquasec.com/appshield/ksv014
| +| Kubernetes Security Check | KSV014 | Root file system is not read-only | LOW |
Expand... An immutable root file system prevents applications from writing to their local disk. This can limit intrusions, as attackers will not be able to tamper with the file system or write foreign executables to disk.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.readOnlyRootFilesystem' to true
|
Expand...https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/
https://avd.aquasec.com/appshield/ksv014
| +| Kubernetes Security Check | KSV014 | Root file system is not read-only | LOW |
Expand... An immutable root file system prevents applications from writing to their local disk. This can limit intrusions, as attackers will not be able to tamper with the file system or write foreign executables to disk.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.readOnlyRootFilesystem' to true
|
Expand...https://kubesec.io/basics/containers-securitycontext-readonlyrootfilesystem-true/
https://avd.aquasec.com/appshield/ksv014
| +| Kubernetes Security Check | KSV015 | CPU requests not specified | LOW |
Expand... When containers have resource requests specified, the scheduler can make better decisions about which nodes to place pods on, and how to deal with resource contention.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'resources.requests.cpu'
|
Expand...https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits
https://avd.aquasec.com/appshield/ksv015
| +| Kubernetes Security Check | KSV015 | CPU requests not specified | LOW |
Expand... When containers have resource requests specified, the scheduler can make better decisions about which nodes to place pods on, and how to deal with resource contention.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'resources.requests.cpu'
|
Expand...https://cloud.google.com/blog/products/containers-kubernetes/kubernetes-best-practices-resource-requests-and-limits
https://avd.aquasec.com/appshield/ksv015
| +| Kubernetes Security Check | KSV016 | Memory requests not specified | LOW |
Expand... When containers have memory requests specified, the scheduler can make better decisions about which nodes to place pods on, and how to deal with resource contention.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'resources.requests.memory'
|
Expand...https://kubesec.io/basics/containers-resources-limits-memory/
https://avd.aquasec.com/appshield/ksv016
| +| Kubernetes Security Check | KSV016 | Memory requests not specified | LOW |
Expand... When containers have memory requests specified, the scheduler can make better decisions about which nodes to place pods on, and how to deal with resource contention.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'resources.requests.memory'
|
Expand...https://kubesec.io/basics/containers-resources-limits-memory/
https://avd.aquasec.com/appshield/ksv016
| +| Kubernetes Security Check | KSV017 | Privileged container | HIGH |
Expand... Privileged containers share namespaces with the host system and do not offer any security. They should be used exclusively for system containers that require high privileges.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.privileged' to false
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#baseline
https://avd.aquasec.com/appshield/ksv017
| +| Kubernetes Security Check | KSV018 | Memory not limited | LOW |
Expand... Enforcing memory limits prevents DoS via resource exhaustion.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'resources.limits.memory'
|
Expand...https://kubesec.io/basics/containers-resources-limits-memory/
https://avd.aquasec.com/appshield/ksv018
| +| Kubernetes Security Check | KSV018 | Memory not limited | LOW |
Expand... Enforcing memory limits prevents DoS via resource exhaustion.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'resources.limits.memory'
|
Expand...https://kubesec.io/basics/containers-resources-limits-memory/
https://avd.aquasec.com/appshield/ksv018
| +| Kubernetes Security Check | KSV020 | Runs with low user ID | MEDIUM |
Expand... Force the container to run with user ID > 10000 to avoid conflicts with the host’s user table.


Container 'RELEASE-NAME-zigbee2mqtt' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsUser' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv020
| +| Kubernetes Security Check | KSV020 | Runs with low user ID | MEDIUM |
Expand... Force the container to run with user ID > 10000 to avoid conflicts with the host’s user table.


Container 'autopermissions' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsUser' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv020
| +| Kubernetes Security Check | KSV020 | Runs with low user ID | MEDIUM |
Expand... Force the container to run with user ID > 10000 to avoid conflicts with the host’s user table.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsUser' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv020
| +| Kubernetes Security Check | KSV020 | Runs with low user ID | MEDIUM |
Expand... Force the container to run with user ID > 10000 to avoid conflicts with the host’s user table.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsUser' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv020
| +| Kubernetes Security Check | KSV021 | Runs with low group ID | MEDIUM |
Expand... Force the container to run with group ID > 10000 to avoid conflicts with the host’s user table.


Container 'RELEASE-NAME-zigbee2mqtt' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsGroup' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv021
| +| Kubernetes Security Check | KSV021 | Runs with low group ID | MEDIUM |
Expand... Force the container to run with group ID > 10000 to avoid conflicts with the host’s user table.


Container 'autopermissions' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsGroup' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv021
| +| Kubernetes Security Check | KSV021 | Runs with low group ID | MEDIUM |
Expand... Force the container to run with group ID > 10000 to avoid conflicts with the host’s user table.


Container 'hostpatch' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsGroup' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv021
| +| Kubernetes Security Check | KSV021 | Runs with low group ID | MEDIUM |
Expand... Force the container to run with group ID > 10000 to avoid conflicts with the host’s user table.


Container 'init-config' of Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'securityContext.runAsGroup' > 10000
|
Expand...https://kubesec.io/basics/containers-securitycontext-runasuser/
https://avd.aquasec.com/appshield/ksv021
| +| Kubernetes Security Check | KSV023 | hostPath volumes mounted | MEDIUM |
Expand... HostPath volumes must be forbidden.


Deployment 'RELEASE-NAME-zigbee2mqtt' should not set 'spec.template.volumes.hostPath'
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#baseline
https://avd.aquasec.com/appshield/ksv023
| +| Kubernetes Security Check | KSV029 | A root primary or supplementary GID set | LOW |
Expand... Containers should be forbidden from running with a root primary or supplementary GID.


Deployment 'RELEASE-NAME-zigbee2mqtt' should set 'spec.securityContext.runAsGroup', 'spec.securityContext.supplementalGroups[*]' and 'spec.securityContext.fsGroup' to integer greater than 0
|
Expand...https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted
https://avd.aquasec.com/appshield/ksv029
| + +## Containers + +##### Detected Containers + + tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 + tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 + 'tccr.io/truecharts/zigbee2mqtt:v1.24.0@sha256:2574cbd6af36d0305c8034804e2c64f672757133d71b14f87f36913a9b97e754' + tccr.io/truecharts/zigbee2mqtt:v1.24.0@sha256:2574cbd6af36d0305c8034804e2c64f672757133d71b14f87f36913a9b97e754 + +##### Scan Results + + +#### Container: tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 (alpine 3.15.2) + + +**alpine** + + +| Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | +|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| zlib | CVE-2018-25032 | HIGH | 1.2.11-r3 | 1.2.12-r0 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.debian.org/security/2022/dsa-5111
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| + + +#### Container: tccr.io/truecharts/alpine:v3.15.2@sha256:29ed3480a0ee43f7af681fed5d4fc215516abf1c41eade6938b26d8c9c2c7583 (alpine 3.15.2) + + +**alpine** + + +| Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | +|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| zlib | CVE-2018-25032 | HIGH | 1.2.11-r3 | 1.2.12-r0 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.debian.org/security/2022/dsa-5111
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| + + + + +#### Container: tccr.io/truecharts/zigbee2mqtt:v1.24.0@sha256:2574cbd6af36d0305c8034804e2c64f672757133d71b14f87f36913a9b97e754 (alpine 3.12.9) + + +**alpine** + + +| Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | +|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| libcrypto1.1 | CVE-2022-0778 | HIGH | 1.1.1l-r0 | 1.1.1n-r0 |
Expand...https://access.redhat.com/security/cve/CVE-2022-0778
https://crates.io/crates/openssl-src
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://linux.oracle.com/cve/CVE-2022-0778.html
https://linux.oracle.com/errata/ELSA-2022-9258.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/323SNN6ZX7PRJJWP2BUAFLPUAE42XWLZ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GDB3GQVJPXJE7X5C5JN6JAA4XUDWD6E6/
https://nvd.nist.gov/vuln/detail/CVE-2022-0778
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0002
https://rustsec.org/advisories/RUSTSEC-2022-0014.html
https://security.netapp.com/advisory/ntap-20220321-0002/
https://ubuntu.com/security/notices/USN-5328-1
https://ubuntu.com/security/notices/USN-5328-2
https://www.debian.org/security/2022/dsa-5103
https://www.openssl.org/news/secadv/20220315.txt
https://www.tenable.com/security/tns-2022-06
https://www.tenable.com/security/tns-2022-07
| +| libssl1.1 | CVE-2022-0778 | HIGH | 1.1.1l-r0 | 1.1.1n-r0 |
Expand...https://access.redhat.com/security/cve/CVE-2022-0778
https://crates.io/crates/openssl-src
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-0778
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=3118eb64934499d93db3230748a452351d1d9a65
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=380085481c64de749a6dd25cdf0bcf4360b30f83
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=a466912611aa6cbdf550cd10601390e587451246
https://linux.oracle.com/cve/CVE-2022-0778.html
https://linux.oracle.com/errata/ELSA-2022-9258.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00023.html
https://lists.debian.org/debian-lts-announce/2022/03/msg00024.html
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/323SNN6ZX7PRJJWP2BUAFLPUAE42XWLZ/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/GDB3GQVJPXJE7X5C5JN6JAA4XUDWD6E6/
https://nvd.nist.gov/vuln/detail/CVE-2022-0778
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2022-0002
https://rustsec.org/advisories/RUSTSEC-2022-0014.html
https://security.netapp.com/advisory/ntap-20220321-0002/
https://ubuntu.com/security/notices/USN-5328-1
https://ubuntu.com/security/notices/USN-5328-2
https://www.debian.org/security/2022/dsa-5103
https://www.openssl.org/news/secadv/20220315.txt
https://www.tenable.com/security/tns-2022-06
https://www.tenable.com/security/tns-2022-07
| +| zlib | CVE-2018-25032 | HIGH | 1.2.11-r3 | 1.2.12-r0 |
Expand...http://www.openwall.com/lists/oss-security/2022/03/25/2
http://www.openwall.com/lists/oss-security/2022/03/26/1
https://access.redhat.com/security/cve/CVE-2018-25032
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-25032
https://github.com/madler/zlib/commit/5c44459c3b28a9bd3283aaceab7c615f8020c531
https://github.com/madler/zlib/compare/v1.2.11...v1.2.12
https://github.com/madler/zlib/issues/605
https://lists.debian.org/debian-lts-announce/2022/04/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2018-25032
https://ubuntu.com/security/notices/USN-5355-1
https://ubuntu.com/security/notices/USN-5355-2
https://ubuntu.com/security/notices/USN-5359-1
https://www.debian.org/security/2022/dsa-5111
https://www.openwall.com/lists/oss-security/2022/03/24/1
https://www.openwall.com/lists/oss-security/2022/03/28/1
https://www.openwall.com/lists/oss-security/2022/03/28/3
| + +**node-pkg** + + +| Package | Vulnerability | Severity | Installed Version | Fixed Version | Links | +|:----------------|:------------------:|:-----------:|:------------------:|:-------------:|-----------------------------------------| +| ansi-regex | CVE-2021-3807 | MEDIUM | 3.0.0 | 3.0.1, 4.1.1, 5.0.1, 6.0.1 |
Expand...https://access.redhat.com/security/cve/CVE-2021-3807
https://app.snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908
https://github.com/advisories/GHSA-93q8-gq69-wqmw
https://github.com/chalk/ansi-regex/commit/8d1d7cdb586269882c4bdc1b7325d0c58c8f76f9
https://github.com/chalk/ansi-regex/issues/38#issuecomment-924086311
https://github.com/chalk/ansi-regex/issues/38#issuecomment-925924774
https://github.com/chalk/ansi-regex/releases/tag/v6.0.1
https://huntr.dev/bounties/5b3cf33b-ede0-4398-9974-800876dfd994
https://linux.oracle.com/cve/CVE-2021-3807.html
https://linux.oracle.com/errata/ELSA-2022-0350.html
https://nvd.nist.gov/vuln/detail/CVE-2021-3807
| +| ansi-regex | CVE-2021-3807 | MEDIUM | 4.1.0 | 3.0.1, 4.1.1, 5.0.1, 6.0.1 |
Expand...https://access.redhat.com/security/cve/CVE-2021-3807
https://app.snyk.io/vuln/SNYK-JS-ANSIREGEX-1583908
https://github.com/advisories/GHSA-93q8-gq69-wqmw
https://github.com/chalk/ansi-regex/commit/8d1d7cdb586269882c4bdc1b7325d0c58c8f76f9
https://github.com/chalk/ansi-regex/issues/38#issuecomment-924086311
https://github.com/chalk/ansi-regex/issues/38#issuecomment-925924774
https://github.com/chalk/ansi-regex/releases/tag/v6.0.1
https://huntr.dev/bounties/5b3cf33b-ede0-4398-9974-800876dfd994
https://linux.oracle.com/cve/CVE-2021-3807.html
https://linux.oracle.com/errata/ELSA-2022-0350.html
https://nvd.nist.gov/vuln/detail/CVE-2021-3807
| +| json-schema | CVE-2021-3918 | MEDIUM | 0.2.3 | 0.4.0 |
Expand...https://access.redhat.com/security/cve/CVE-2021-3918
https://github.com/advisories/GHSA-896r-f27r-55mw
https://github.com/kriszyp/json-schema/commit/22f146111f541d9737e832823699ad3528ca7741
https://github.com/kriszyp/json-schema/commit/b62f1da1ff5442f23443d6be6a92d00e65cba93a
https://github.com/kriszyp/json-schema/commit/f6f6a3b02d667aa4ba2d5d50cc19208c4462abfa
https://huntr.dev/bounties/bb6ccd63-f505-4e3a-b55f-cd2662c261a9
https://linux.oracle.com/cve/CVE-2021-3918.html
https://linux.oracle.com/errata/ELSA-2022-0350.html
https://nvd.nist.gov/vuln/detail/CVE-2021-3918
| +| minimist | CVE-2021-44906 | HIGH | 1.2.5 | 1.2.6 |
Expand...https://access.redhat.com/security/cve/CVE-2021-44906
https://github.com/Marynk/JavaScript-vulnerability-detection/blob/main/minimist%20PoC.zip
https://github.com/advisories/GHSA-xvch-5gv4-984h
https://github.com/substack/minimist/blob/master/index.js#L69
https://github.com/substack/minimist/issues/164
https://nvd.nist.gov/vuln/detail/CVE-2021-44906
https://security.snyk.io/vuln/SNYK-JS-MINIMIST-559764
https://snyk.io/vuln/SNYK-JS-MINIMIST-559764
https://stackoverflow.com/questions/8588563/adding-custom-properties-to-a-function/20278068#20278068
| diff --git a/stable/zigbee2mqtt/3.0.0/templates/common.yaml b/stable/zigbee2mqtt/3.0.0/templates/common.yaml new file mode 100644 index 0000000000..da58e96d9e --- /dev/null +++ b/stable/zigbee2mqtt/3.0.0/templates/common.yaml @@ -0,0 +1,5 @@ +{{/* Make sure all variables are set properly */}} +{{- include "common.setup" . }} + +{{/* Render the templates */}} +{{ include "common.postSetup" . }} diff --git a/stable/zigbee2mqtt/3.0.0/values.yaml b/stable/zigbee2mqtt/3.0.0/values.yaml new file mode 100644 index 0000000000..e69de29bb2