DirectorySecurity AdvisoriesPricing
Sign in
Directory
crossplane logoHELM

crossplane

Helm chart
Last changed
Request a free trial

Contact our team to test out this Helm chart and related images for free. Please also indicate any other images you would like to evaluate.

Overview
Chart versions
Default values
Chart metadata
Images

Tag:
1
# helm-docs renders these comments into markdown. Use markdown formatting where
2
# appropiate.
3
#
4
# -- The number of Crossplane pod `replicas` to deploy.
5
replicas: 1
6
# -- The number of Crossplane ReplicaSets to retain.
7
revisionHistoryLimit: null
8
# -- The deployment strategy for the Crossplane and RBAC Manager pods.
9
deploymentStrategy: RollingUpdate
10
image:
11
# -- Repository for the Crossplane pod image.
12
repository: cgr.dev/chainguard-private/crossplane
13
# -- The Crossplane image tag. Defaults to the value of `appVersion` in `Chart.yaml`.
14
tag: 1.20@sha256:a54c5bf1fe383946753822684a01545cb597e7960c422d9f13a0641bbfac1564
15
# -- The image pull policy used for Crossplane and RBAC Manager pods.
16
pullPolicy: IfNotPresent
17
# -- Add `nodeSelectors` to the Crossplane pod deployment.
18
nodeSelector: {}
19
# -- Add `tolerations` to the Crossplane pod deployment.
20
tolerations: []
21
# -- Add `affinities` to the Crossplane pod deployment.
22
affinity: {}
23
# -- Add `topologySpreadConstraints` to the Crossplane pod deployment.
24
topologySpreadConstraints: []
25
# -- Enable `hostNetwork` for the Crossplane deployment. Caution: enabling `hostNetwork` grants the Crossplane Pod access to the host network namespace. Consider setting `dnsPolicy` to `ClusterFirstWithHostNet`.
26
hostNetwork: false
27
# -- Specify the `dnsPolicy` to be used by the Crossplane pod.
28
dnsPolicy: ""
29
# -- Add custom `labels` to the Crossplane pod deployment.
30
customLabels: {}
31
# -- Add custom `annotations` to the Crossplane pod deployment.
32
customAnnotations: {}
33
serviceAccount:
34
# -- Specifies whether Crossplane ServiceAccount should be created
35
create: true
36
# -- Provide the name of an already created Crossplane ServiceAccount. Required when `serviceAccount.create` is `false`
37
name: ""
38
# -- Add custom `annotations` to the Crossplane ServiceAccount.
39
customAnnotations: {}
40
# -- Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) for the Crossplane pod.
41
leaderElection: true
42
# -- Add custom arguments to the Crossplane pod.
43
args: []
44
provider:
45
# -- A list of Provider packages to install.
46
packages: []
47
configuration:
48
# -- A list of Configuration packages to install.
49
packages: []
50
function:
51
# -- A list of Function packages to install
52
packages: []
53
# -- The imagePullSecret names to add to the Crossplane ServiceAccount.
54
imagePullSecrets: []
55
registryCaBundleConfig:
56
# -- The ConfigMap name containing a custom CA bundle to enable fetching packages from registries with unknown or untrusted certificates.
57
name: ""
58
# -- The ConfigMap key containing a custom CA bundle to enable fetching packages from registries with unknown or untrusted certificates.
59
key: ""
60
service:
61
# -- Configure annotations on the service object. Only enabled when webhooks.enabled = true
62
customAnnotations: {}
63
webhooks:
64
# -- Enable webhooks for Crossplane and installed Provider packages.
65
enabled: true
66
# -- The port the webhook server listens on.
67
port: ""
68
rbacManager:
69
# -- Deploy the RBAC Manager pod and its required roles.
70
deploy: true
71
# -- Don't install aggregated Crossplane ClusterRoles.
72
skipAggregatedClusterRoles: false
73
# -- The number of RBAC Manager pod `replicas` to deploy.
74
replicas: 1
75
# -- The number of RBAC Manager ReplicaSets to retain.
76
revisionHistoryLimit: null
77
# -- Enable [leader election](https://docs.crossplane.io/latest/concepts/pods/#leader-election) for the RBAC Manager pod.
78
leaderElection: true
79
# -- Add custom arguments to the RBAC Manager pod.
80
args: []
81
# -- Add `nodeSelectors` to the RBAC Manager pod deployment.
82
nodeSelector: {}
83
# -- Add `tolerations` to the RBAC Manager pod deployment.
84
tolerations: []
85
# -- Add `affinities` to the RBAC Manager pod deployment.
86
affinity: {}
87
# -- Add `topologySpreadConstraints` to the RBAC Manager pod deployment.
88
topologySpreadConstraints: []
89
# -- The PriorityClass name to apply to the Crossplane and RBAC Manager pods.
90
priorityClassName: ""
91
# -- The runtimeClassName name to apply to the Crossplane and RBAC Manager pods.
92
runtimeClassName: ""
93
resourcesCrossplane:
94
limits:
95
# -- CPU resource limits for the Crossplane pod.
96
cpu: 500m
97
# -- Memory resource limits for the Crossplane pod.
98
memory: 1024Mi
99
requests:
100
# -- CPU resource requests for the Crossplane pod.
101
cpu: 100m
102
# -- Memory resource requests for the Crossplane pod.
103
memory: 256Mi
104
securityContextCrossplane:
105
# -- The user ID used by the Crossplane pod.
106
runAsUser: 65532
107
# -- The group ID used by the Crossplane pod.
108
runAsGroup: 65532
109
# -- Enable `allowPrivilegeEscalation` for the Crossplane pod.
110
allowPrivilegeEscalation: false
111
# -- Set the Crossplane pod root file system as read-only.
112
readOnlyRootFilesystem: true
113
packageCache:
114
# -- Set to `Memory` to hold the package cache in a RAM backed file system. Useful for Crossplane development.
115
medium: ""
116
# -- The size limit for the package cache. If medium is `Memory` the `sizeLimit` can't exceed Node memory.
117
sizeLimit: 20Mi
118
# -- The name of a PersistentVolumeClaim to use as the package cache. Disables the default package cache `emptyDir` Volume.
119
pvc: ""
120
# -- The name of a ConfigMap to use as the package cache. Disables the default package cache `emptyDir` Volume.
121
configMap: ""
122
functionCache:
123
# -- Set to `Memory` to hold the function cache in a RAM backed file system. Useful for Crossplane development.
124
medium: ""
125
# -- The size limit for the function cache. If medium is `Memory` the `sizeLimit` can't exceed Node memory.
126
sizeLimit: 512Mi
127
# -- The name of a PersistentVolumeClaim to use as the function cache. Disables the default function cache `emptyDir` Volume.
128
pvc: ""
129
resourcesRBACManager:
130
limits:
131
# -- CPU resource limits for the RBAC Manager pod.
132
cpu: 100m
133
# -- Memory resource limits for the RBAC Manager pod.
134
memory: 512Mi
135
requests:
136
# -- CPU resource requests for the RBAC Manager pod.
137
cpu: 100m
138
# -- Memory resource requests for the RBAC Manager pod.
139
memory: 256Mi
140
securityContextRBACManager:
141
# -- The user ID used by the RBAC Manager pod.
142
runAsUser: 65532
143
# -- The group ID used by the RBAC Manager pod.
144
runAsGroup: 65532
145
# -- Enable `allowPrivilegeEscalation` for the RBAC Manager pod.
146
allowPrivilegeEscalation: false
147
# -- Set the RBAC Manager pod root file system as read-only.
148
readOnlyRootFilesystem: true
149
metrics:
150
# -- Enable Prometheus path, port and scrape annotations and expose port 8080 for both the Crossplane and RBAC Manager pods.
151
enabled: false
152
# -- The port the metrics server listens on.
153
port: ""
154
readiness:
155
# -- The port the readyz server listens on.
156
port: ""
157
# -- Add custom environmental variables to the Crossplane pod deployment.
158
# Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`.
159
extraEnvVarsCrossplane: {}
160
# -- Add custom environmental variables to the RBAC Manager pod deployment.
161
# Replaces any `.` in a variable name with `_`. For example, `SAMPLE.KEY=value1` becomes `SAMPLE_KEY=value1`.
162
extraEnvVarsRBACManager: {}
163
# -- Add a custom `securityContext` to the Crossplane pod.
164
podSecurityContextCrossplane: {}
165
# -- Add a custom `securityContext` to the RBAC Manager pod.
166
podSecurityContextRBACManager: {}
167
# -- Add custom `volumes` to the Crossplane pod.
168
extraVolumesCrossplane: {}
169
# -- Add custom `volumeMounts` to the Crossplane pod.
170
extraVolumeMountsCrossplane: {}
171
# -- To add arbitrary Kubernetes Objects during a Helm Install
172
extraObjects: []
173
# - apiVersion: pkg.crossplane.io/v1alpha1
174
# kind: ControllerConfig
175
# metadata:
176
# name: aws-config
177
# annotations:
178
# eks.amazonaws.com/role-arn: arn:aws:iam::123456789101:role/example
179
# helm.sh/hook: post-install
180
# spec:
181
# podSecurityContext:
182
# fsGroup: 2000
183

The trusted source for open source

Talk to an expert
PrivacyTerms

Product

Chainguard ContainersChainguard LibrariesChainguard VMsChainguard OS PackagesChainguard ActionsChainguard Agent SkillsIntegrationsPricing

Solutions

FedRAMPPCI DSSCMMC 2.0SOC 2Golden ImagesCVE RemediationPublic SectorStartups

Customers

Customer StoriesChainguard Reviews

Resources

Events & WebinarsSupply Chain Security 101Chainguard CoursesDocumentationTrust CenterChainguard Slack Community

Company

About UsBlogOpen Source LeadershipPartnersNewsroomCareersLegal
© 2026 Chainguard, Inc. All Rights Reserved.
Chainguard® and the Chainguard logo are registered trademarks of Chainguard, Inc. in the United States and/or other countries.
The other respective trademarks mentioned on this page are owned by the respective companies and use of them does not imply any affiliation or endorsement.