move renovate to woodpecker cron job instead of k8s cron

2026-04-07 19:49:20 +02:00
parent 6ecb42e815
commit a24b40c36f
9 changed files with 42 additions and 92 deletions
--- a/apps/kustomization.yaml
+++ b/apps/kustomization.yaml
@@ -5,7 +5,6 @@ resources:
  - crawl4ai-proxy
  - authentik
  - gitea
-  - renovate
  - frigate
  - llama
  - immich
--- a/apps/renovate/configmap.yaml
+++ b/apps/renovate/configmap.yaml
@@ -1,11 +0,0 @@
---
-apiVersion: v1
-kind: ConfigMap
-metadata:
-  namespace: renovate
-  name: renovate-config
-data:
-  RENOVATE_AUTODISCOVER: "true"
-  RENOVATE_ENDPOINT: https://gitea.lumpiasty.xyz/api/v1
-  RENOVATE_PLATFORM: gitea
-  RENOVATE_GIT_AUTHOR: Renovate Bot <renovate@lumpiasty.xyz>
--- a/apps/renovate/cronjob.yaml
+++ b/apps/renovate/cronjob.yaml
@@ -1,24 +0,0 @@
---
-apiVersion: batch/v1
-kind: CronJob
-metadata:
-  name: renovate
-  namespace: renovate
-spec:
-  schedule: "@daily"
-  concurrencyPolicy: Forbid
-  jobTemplate:
-    spec:
-      template:
-        spec:
-          containers:
-            - name: renovate
-              # Update this to the latest available and then enable Renovate on
-              # the manifest
-              image: renovate/renovate:43.108.2-full
-              envFrom:
-                - secretRef:
-                    name: renovate-gitea-token
-                - configMapRef:
-                    name: renovate-config
-          restartPolicy: Never
--- a/apps/renovate/kustomization.yaml
+++ b/apps/renovate/kustomization.yaml
@@ -1,7 +0,0 @@
-apiVersion: kustomize.config.k8s.io/v1beta1
-kind: Kustomization
-resources:
-  - namespace.yaml
-  - configmap.yaml
-  - secret.yaml
-  - cronjob.yaml
--- a/apps/renovate/namespace.yaml
+++ b/apps/renovate/namespace.yaml
@@ -1,5 +0,0 @@
---
-apiVersion: v1
-kind: Namespace
-metadata:
-  name: renovate
--- a/apps/renovate/secret.yaml
+++ b/apps/renovate/secret.yaml
@@ -1,38 +0,0 @@
---
-apiVersion: v1
-kind: ServiceAccount
-metadata:
-  name: renovate
-  namespace: renovate
---
-apiVersion: secrets.hashicorp.com/v1beta1
-kind: VaultAuth
-metadata:
-  name: renovate
-  namespace: renovate
-spec:
-  method: kubernetes
-  mount: kubernetes
-  kubernetes:
-    role: renovate
-    serviceAccount: renovate
---
-apiVersion: secrets.hashicorp.com/v1beta1
-kind: VaultStaticSecret
-metadata:
-  name: renovate-gitea-token
-  namespace: renovate
-spec:
-  type: kv-v2
-
-  mount: secret
-  path: renovate
-
-  destination:
-    create: true
-    name: renovate-gitea-token
-    type: Opaque
-    transformation:
-      excludeRaw: true
-
-  vaultAuthRef: renovate