DirectorySecurity advisories
Sign in

Directory

cloudnative-pg-fips logoFIPS

cloudnative-pg-fips

Last changed
Sign in for updates

Get notified of upcoming product changes, critical vulnerability notifications and patches and more.

Sign in
Versions
Overview
Provenance
Specifications
SBOM
Vulnerabilities
Advisories

CloudNative PG FIPS

CloudNative PG is a platform for managing PostgreSQL databases within Kubernetes environments.

These images consist of the CloudNative PG operator as well as PostgreSQL images that have been extended to support the full functionality of the CloudNative PG platform.

Deploying CloudNative PG

To deploy CloudNative PG, install the CNPG Helm chart repository:

helm repo add cnpg https://cloudnative-pg.github.io/charts

Deploy the operator:

helm upgrade --install cnpg \
  --namespace cnpg-system \
  --create-namespace \
  cnpg/cloudnative-pg \
  --set image.repository="cgr.dev/<REGISTRY>/cloudnative-pg-fips" \
  --set image.tag="latest"

And now deploy the database:

helm upgrade --install database \
  --namespace database \
  --create-namespace \
  cnpg/cluster \
  --set cluster.imageName="cgr.dev/<REGISTRY>/postgres-cloudnative-pg-fips:<POSTGRES VERSION>"

Note, you must provide a Postgres version (I.E. 15, 16, etc) as the operator expects the versioned tag for migrations.

Alternatively, deploy the database with pooler enabled using Chainguard's PgBouncer image:

helm upgrade --install database \
  --namespace database \
  --create-namespace \
  cnpg/cluster \
  --set cluster.imageName="cgr.dev/<REGISTRY>/postgres-cloudnative-pg-fips:<POSTGRES VERSION>"
  --set pooler.enabled=true \
  --set pooler.template.spec.containers[0].name="pgbouncer" \
  --set pooler.template.spec.containers[0].image="cgr.dev/<REGISTRY>/pgbouncer-fips:latest"
Licenses

Chainguard Images contain software packages that are direct or transitive dependencies. The following licenses were found in the "latest" version of this image:

  • Apache-2.0

  • LGPL-2.1-or-later

  • MIT

  • MPL-2.0

For a complete list of licenses, please refer to this Image's SBOM.

Software license agreement

Compliance

This is a FIPS validated image for FedRAMP compliance.

This image is STIG hardened and scanned against the DISA General Purpose Operating System SRG with reports available.

Learn more about STIGsGet started with STIGs

Related images

Category
FIPS
STIG

Products

Chainguard Images

© 2024 Chainguard, Inc.