DirectorySecurity AdvisoriesPricing
Sign in
Directory
crossplane logoHELM

crossplane

Helm chart
Last changed
Request a free trial

Contact our team to test out this Helm chart and related images for free. Please also indicate any other images you would like to evaluate.

Overview
Chart versions
Default values
Chart metadata
Images

Tag:
1
# helm-docs renders these comments into markdown. Use markdown formatting where
2
# appropiate.
3
#
4
# -- The number of Crossplane pod `replicas` to deploy.
5
replicas: 1
6
# -- The number of Crossplane ReplicaSets to retain.
7
revisionHistoryLimit: null
8
# -- The deployment strategy for the Crossplane and RBAC Manager pods.
9
deploymentStrategy: RollingUpdate
10
image:
11
# -- Repository for the Crossplane pod image.
12
repository: cgr.dev/chainguard-private/crossplane
13
# -- The Crossplane image tag. Defaults to the value of `appVersion` in `Chart.yaml`.
14
tag: 2.1@sha256:e5081bee231a93bb697c019d153001969d9aae371ef94be2f05269369afb6e0c
15
# -- The image pull policy used for Crossplane and RBAC Manager pods.
16
pullPolicy: IfNotPresent
17
# -- Do not use the {{ .image.tag }} value to compute the image uri.
18
ignoreTag: false
19
# -- Add `nodeSelectors` to the Crossplane pod deployment.
20
nodeSelector: {}
21
# -- Add `tolerations` to the Crossplane pod deployment.
22
tolerations: []
23
# -- Add `affinities` to the Crossplane pod deployment.
24
affinity: {}
25
# -- Add `topologySpreadConstraints` to the Crossplane pod deployment.
26
topologySpreadConstraints: []
27
# -- Enable `hostNetwork` for the Crossplane deployment. Caution: enabling `hostNetwork` grants the Crossplane Pod access to the host network namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.
28
hostNetwork: false
29
# -- Specify the `dnsPolicy` to be used by the Crossplane pod.
30
dnsPolicy: ""
31
# -- Add custom `labels` to the Crossplane pod deployment.
32
customLabels: {}
33
# -- Add custom `annotations` to the Crossplane pod deployment.
34
customAnnotations: {}
35
serviceAccount:
36
# -- Specifies whether Crossplane ServiceAccount should be created
37
create: true
38
# -- Provide the name of an already created Crossplane ServiceAccount. Required when `serviceAccount.create` is `false`
39
name: ""
40
# -- Add custom `annotations` to the Crossplane ServiceAccount.
41
customAnnotations: {}
42
# -- Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) for the Crossplane pod.
43
leaderElection: true
44
# -- Add custom arguments to the Crossplane pod.
45
args: []
46
provider:
47
# -- A list of Provider packages to install.
48
packages: []
49
# -- Define entries for the default managed resource activation policy. If defined, a default MRAP will contain these activations.
50
defaultActivations: ["*"]
51
configuration:
52
# -- A list of Configuration packages to install.
53
packages: []
54
function:
55
# -- A list of Function packages to install
56
packages: []
57
# -- The imagePullSecret names to add to the Crossplane ServiceAccount.
58
imagePullSecrets: []
59
registryCaBundleConfig:
60
# -- The ConfigMap name containing a custom CA bundle to enable fetching packages from registries with unknown or untrusted certificates.
61
name: ""
62
# -- The ConfigMap key containing a custom CA bundle to enable fetching packages from registries with unknown or untrusted certificates.
63
key: ""
64
service:
65
# -- Configure annotations on the service object. Only enabled when webhooks.enabled = true
66
customAnnotations: {}
67
webhooks:
68
# -- Enable webhooks for Crossplane and installed Provider packages.
69
enabled: true
70
# -- The port the webhook server listens on.
71
port: ""
72
rbacManager:
73
# -- Deploy the RBAC Manager pod and its required roles.
74
deploy: true
75
# -- Don't install aggregated Crossplane ClusterRoles.
76
skipAggregatedClusterRoles: false
77
# -- The number of RBAC Manager pod `replicas` to deploy.
78
replicas: 1
79
# -- The number of RBAC Manager ReplicaSets to retain.
80
revisionHistoryLimit: null
81
# -- Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) for the RBAC Manager pod.
82
leaderElection: true
83
# -- Add custom arguments to the RBAC Manager pod.
84
args: []
85
# -- Add `nodeSelectors` to the RBAC Manager pod deployment.
86
nodeSelector: {}
87
# -- Add `tolerations` to the RBAC Manager pod deployment.
88
tolerations: []
89
# -- Add `affinities` to the RBAC Manager pod deployment.
90
affinity: {}
91
# -- Add `topologySpreadConstraints` to the RBAC Manager pod deployment.
92
topologySpreadConstraints: []
93
# -- The PriorityClass name to apply to the Crossplane and RBAC Manager pods.
94
priorityClassName: ""
95
# -- The runtimeClassName name to apply to the Crossplane and RBAC Manager pods.
96
runtimeClassName: ""
97
resourcesCrossplane:
98
limits:
99
# -- CPU resource limits for the Crossplane pod.
100
cpu: 500m
101
# -- Memory resource limits for the Crossplane pod.
102
memory: 1024Mi
103
requests:
104
# -- CPU resource requests for the Crossplane pod.
105
cpu: 100m
106
# -- Memory resource requests for the Crossplane pod.
107
memory: 256Mi
108
securityContextCrossplane:
109
# -- The user ID used by the Crossplane pod.
110
runAsUser: 65532
111
# -- The group ID used by the Crossplane pod.
112
runAsGroup: 65532
113
# -- Enable `allowPrivilegeEscalation` for the Crossplane pod.
114
allowPrivilegeEscalation: false
115
# -- Set the Crossplane pod root file system as read-only.
116
readOnlyRootFilesystem: true
117
packageCache:
118
# -- Set to `Memory` to hold the package cache in a RAM backed file system. Useful for Crossplane development.
119
medium: ""
120
# -- The size limit for the package cache. If medium is `Memory` the `sizeLimit` can't exceed Node memory.
121
sizeLimit: 20Mi
122
# -- The name of a PersistentVolumeClaim to use as the package cache. Disables the default package cache `emptyDir` Volume.
123
pvc: ""
124
# -- The name of a ConfigMap to use as the package cache. Disables the default package cache `emptyDir` Volume.
125
configMap: ""
126
functionCache:
127
# -- Set to `Memory` to hold the function cache in a RAM backed file system. Useful for Crossplane development.
128
medium: ""
129
# -- The size limit for the function cache. If medium is `Memory` the `sizeLimit` can't exceed Node memory.
130
sizeLimit: 512Mi
131
# -- The name of a PersistentVolumeClaim to use as the function cache. Disables the default function cache `emptyDir` Volume.
132
pvc: ""
133
resourcesRBACManager:
134
limits:
135
# -- CPU resource limits for the RBAC Manager pod.
136
cpu: 100m
137
# -- Memory resource limits for the RBAC Manager pod.
138
memory: 512Mi
139
requests:
140
# -- CPU resource requests for the RBAC Manager pod.
141
cpu: 100m
142
# -- Memory resource requests for the RBAC Manager pod.
143
memory: 256Mi
144
securityContextRBACManager:
145
# -- The user ID used by the RBAC Manager pod.
146
runAsUser: 65532
147
# -- The group ID used by the RBAC Manager pod.
148
runAsGroup: 65532
149
# -- Enable `allowPrivilegeEscalation` for the RBAC Manager pod.
150
allowPrivilegeEscalation: false
151
# -- Set the RBAC Manager pod root file system as read-only.
152
readOnlyRootFilesystem: true
153
metrics:
154
# -- Enable Prometheus path, port and scrape annotations and expose port 8080 for both the Crossplane and RBAC Manager pods.
155
enabled: false
156
# -- The port the metrics server listens on.
157
port: ""
158
readiness:
159
# -- The port the readyz server listens on.
160
port: ""
161
# -- Add custom environmental variables to the Crossplane pod deployment init container.
162
# Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`.
163
extraEnvVarsCrossplaneInit: {}
164
# -- Add custom environmental variables to the Crossplane pod deployment application container.
165
# Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`.
166
extraEnvVarsCrossplane: {}
167
# -- Add custom environmental variables to the RBAC Manager pod deployment.
168
# Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`.
169
extraEnvVarsRBACManager: {}
170
# -- Add a custom `securityContext` to the Crossplane pod.
171
podSecurityContextCrossplane: {}
172
# -- Add a custom `securityContext` to the RBAC Manager pod.
173
podSecurityContextRBACManager: {}
174
# -- Add custom `volumes` to the Crossplane pod.
175
extraVolumesCrossplane: {}
176
# -- Add custom `volumeMounts` to the Crossplane pod.
177
extraVolumeMountsCrossplane: {}
178
# -- To add arbitrary Kubernetes Objects during a Helm Install
179
extraObjects: []
180

The trusted source for open source

Talk to an expert
PrivacyTerms

Product

Chainguard ContainersChainguard LibrariesChainguard VMsChainguard OS PackagesChainguard ActionsChainguard Agent SkillsIntegrationsPricing

Solutions

FedRAMPPCI DSSCMMC 2.0SOC 2Golden ImagesCVE RemediationPublic SectorStartups

Customers

Customer StoriesChainguard Reviews

Resources

Events & WebinarsSupply Chain Security 101Chainguard CoursesDocumentationTrust CenterChainguard Slack Community

Company

About UsBlogOpen Source LeadershipPartnersNewsroomCareersLegal
© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.