Skip to content

ROX-33114: operator helm chart generation#19055

Merged
porridge merged 5 commits intomasterfrom
porridge/operator-chart
Feb 18, 2026
Merged

ROX-33114: operator helm chart generation#19055
porridge merged 5 commits intomasterfrom
porridge/operator-chart

Conversation

@porridge
Copy link
Contributor

@porridge porridge commented Feb 17, 2026
edited
Loading

Description

  • Add kubebuilder as a new tool
  • Add a new chart target to generate the helm chart.
  • Introduce a new environment variable that lets one skip unnecessary regeneration of proto files.
  • Reorder the flags and added image pull policy in the manager kustomize file to keep the Helm charts and manifests as similar as possible.
  • Added a check to make sure the outputs don't diverge on dependency bumps without us noticing.

Not in scope of this PR, will come in subsequent ones:

  • The Helm chart description, NOTES and icon etc will need to be customized and checked in
  • Community flavor support.

User-facing documentation

Testing and quality

  • the change is production ready: the change is GA, or otherwise the functionality is gated by a feature flag
  • CI results are inspected

Automated testing

  • added regression tests

How I validated my change

[operator]$ helm install --create-namespace --namespace rhacs-operator-system rhacs-operator ./dist/chart
NAME: rhacs-operator
LAST DEPLOYED: Tue Feb 17 09:50:05 2026
NAMESPACE: rhacs-operator-system
STATUS: deployed
REVISION: 1
TEST SUITE: None
NOTES:
Thank you for installing rhacs-operator.

Your release is named rhacs-operator.

The controller and CRDs have been installed in namespace rhacs-operator-system.

To verify the installation:

  kubectl get pods -n rhacs-operator-system
  kubectl get customresourcedefinitions

To learn more about the release, try:

  $ helm status rhacs-operator -n rhacs-operator-system
  $ helm get all rhacs-operator -n rhacs-operator-system
[operator]$

Check (ErrImagePull is expected on a dirty repo).

[operator]$ oc get pods -n rhacs-operator-system 
NAME                                                 READY   STATUS         RESTARTS   AGE
rhacs-operator-controller-manager-57c9794546-g2mj8   0/1     ErrImagePull   0          10s
[operator]$

Uninstall:

[operator]$ helm uninstall rhacs-operator --namespace rhacs-operator-system 
These resources were kept due to the resource policy:
[CustomResourceDefinition] centrals.platform.stackrox.io
[CustomResourceDefinition] securedclusters.platform.stackrox.io
[CustomResourceDefinition] securitypolicies.config.stackrox.io

release "rhacs-operator" uninstalled
[operator]$

@openshift-ci
Copy link

openshift-ci bot commented Feb 17, 2026

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

@rhacs-bot
Copy link
Contributor

rhacs-bot commented Feb 17, 2026
edited
Loading

Images are ready for the commit at d15ecc3.

To use with deploy scripts, first export MAIN_IMAGE_TAG=4.11.x-130-gd15ecc35b5.

@codecov
Copy link

codecov bot commented Feb 17, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 49.51%. Comparing base (743caa3) to head (d15ecc3).
⚠️ Report is 8 commits behind head on master.

Additional details and impacted files 
@@           Coverage Diff           @@
##           master   #19055   +/-   ##
=======================================
  Coverage   49.50%   49.51%           
=======================================
  Files        2669     2670    +1     
  Lines      201479   201549   +70     
=======================================
+ Hits        99749    99798   +49     
- Misses      94283    94297   +14     
- Partials     7447     7454    +7
Flag Coverage Δ
go-unit-tests 49.51% <ø> (+<0.01%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@porridge
Copy link
Contributor Author

porridge commented Feb 17, 2026

/fixxx

rhacs-bot and others added 4 commits February 17, 2026 10:09
@rhacs-bot
Running scripts/fixxxers/operator/40-bundle.sh
d63f431 
make: Entering directory '/__w/stackrox/stackrox/operator'
+ yq
[[ ${ROX_OPERATOR_SKIP_PROTO_GENERATED_SRCS:-false} = true ]] || make -C .. proto-generated-srcs
make[1]: Entering directory '/__w/stackrox/stackrox'
+ /__w/stackrox/stackrox/generated/internalapi/sensor/sfa_iservice_vtproto.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/sensor/network_enums_vtproto.pb.go
+ /__w/stackrox/stackrox/generated/api/v2/vuln_state_vtproto.pb.go
+ /__w/stackrox/stackrox/generated/api/v1/report_service_vtproto.pb.go
+ /__w/stackrox/stackrox/generated/storage/operation_status_vtproto.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/compliance/compliance_data_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/virtualmachine/v1/virtual_machine_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/virtualmachine/v1/index_report_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/sensor/network_connection_info_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/sensor/sfa_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/sensor/admission_control_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/sensor/collector_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/sensor/network_enums_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/baseline_sync_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/cluster_status_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/cluster_config_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/policy_sync_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/deployment_enhancement_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/network_flow_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/sensor_events_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/compliance_operator_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/cluster_metrics_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/network_baseline_sync_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/auth_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/delegated_registry_config_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/image_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/local_scanner_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/sensor_upgrade_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/telemetry_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/secured_cluster_cert_refresh_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/hello_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/process_listening_on_ports_update_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/wrapper/splunk_alert_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/scanner/v4/vulnerability_report_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/scanner/v4/common_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/scanner/v4/index_report_grpc.pb.go
+ /__w/stackrox/stackrox/generated/test/test_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v2/vuln_state_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v2/pagination_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v2/search_query_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v2/common_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v2/scan_component_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v2/user_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v2/vulnerability_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v2/compliance_common_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/common/extended_rpc_status_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/integrations/splunk_service_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v1/pagination_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v1/notifications_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v1/common_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v1/sbom_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v1/audit_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v1/signal_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v1/traits_grpc.pb.go
+ /__w/stackrox/stackrox/generated/api/v1/empty_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/virtual_machine_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/node_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/relations_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/notification_schedule_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/report_configuration_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/process_listening_on_port_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/service_identity_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/taints_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/network_baseline_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/version_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/cluster_init_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/test_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/base_image_repository_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/kube_event_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/process_baseline_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/report_notifier_configuration_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/compliance_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/network_flow_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/image_v2_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/cluster_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/declarative_config_health_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/namespace_metadata_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/service_account_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/installation_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/vuln_requests_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/node_component_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/http_endpoint_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/compliance_operator_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/compliance_operator_v2_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/operation_status_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/network_policy_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/rbac_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/base_image_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/policy_category_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/compliance_config_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/schedule_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/common_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/image_integration_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/group_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/orchestrator_integration_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/risk_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/administration_usage_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/scope_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/alert_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/blob_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/node_integration_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/policy_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/image_component_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/delegated_registry_config_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/helm_cluster_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/discovered_cluster_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/user_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/mitre_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/process_indicator_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/image_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/api_token_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/administration_event_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/secret_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/signature_integration_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/vulnerability_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/network_graph_config_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/integration_health_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/container_runtime_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/report_snapshot_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/auth_provider_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/sensor_upgrade_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/telemetry_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/resource_collection_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/traits_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/config_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/notifier_enc_config_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/deployment_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/external_backup_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/file_access_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/role_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/compliance_integration_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/hash_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/cve_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/labels_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/system_info_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/auth_machine_to_machine_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/log_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/cloud_source_grpc.pb.go
+ /__w/stackrox/stackrox/generated/storage/notifier_grpc.pb.go
+ /__w/stackrox/stackrox/generated/tools/local-sensor/message_grpc.pb.go
+ /__w/stackrox/stackrox/generated/internalapi/central/development_service.pb.gw.go
+ /__w/stackrox/stackrox/generated/internalapi/central/v1/token_service.pb.gw.go
+ /__w/stackrox/stackrox/generated/internalapi/scanner/v4/matcher_service.pb.gw.go
+ /__w/stackrox/stackrox/generated/internalapi/scanner/v4/indexer_service.pb.gw.go
+ /__w/stackrox/stackrox/generated/api/v2/report_service.pb.gw.go
+ /__w/stackrox/stackrox/generated/api/integrations/splunk_service.pb.gw.go
+ /__w/stackrox/stackrox/generated/api/v1/probe_upload_service.pb.gw.go
+ inject-proto-tags
+ cleanup-swagger-json-gotags
+ proto-generated-srcs
make[2]: Entering directory '/__w/stackrox/stackrox'
+ clean-obsolete-protos
/__w/stackrox/stackrox/tools/clean_autogen_protos.py --protos /__w/stackrox/stackrox/proto --generated /__w/stackrox/stackrox/generated
make[2]: Leaving directory '/__w/stackrox/stackrox'
make[1]: Leaving directory '/__w/stackrox/stackrox'
/__w/stackrox/stackrox/operator/.gotools/bin/controller-gen rbac:roleName=manager-role crd webhook paths="./..." output:crd:artifacts:config=config/crd/bases
+ kustomize
+ operator-sdk
rm -rf bundle
rm -rf config/manifests/bases && /__w/stackrox/stackrox/operator/.gotools/bin/operator-sdk generate kustomize manifests --input-dir=config/ui-metadata
Generating kustomize files in config/manifests
Kustomize files generated successfully
cd config/scorecard-versioned && /__w/stackrox/stackrox/operator/.gotools/bin/kustomize edit set image quay.io/operator-framework/scorecard-test=quay.io/operator-framework/scorecard-test:v1.42.0
rm -rf build/manifests
mkdir -p build/manifests
echo 'resources: [ "../../config/flavors/development_build", "../../config/manifests" ]' > build/manifests/kustomization.yaml
/__w/stackrox/stackrox/operator/.gotools/bin/kustomize build build/manifests | /__w/stackrox/stackrox/operator/.gotools/bin/operator-sdk generate bundle --overwrite --version 0.0.1 --channels=stable
Generating bundle version 0.0.1
Generating bundle manifests
# Warning: 'patchesJson6902' is deprecated. Please use 'patches' instead. Run 'kustomize edit fix' to update your Kustomization automatically.
time="2026-02-17T10:09:21Z" level=warning msg="warning: multiple related images with the same image ref, \"main\", and different names found.The image will only be listed once with an empty name.It is recmmended to either remove the duplicate or use the exact same name."
time="2026-02-17T10:09:21Z" level=warning msg="ClusterServiceVersion validation: [OperationFailed] provided API should have an example annotation"
Bundle manifests generated successfully in bundle
Generating bundle metadata
time="2026-02-17T10:09:21Z" level=info msg="Creating bundle.Dockerfile"
time="2026-02-17T10:09:21Z" level=info msg="Creating bundle/metadata/annotations.yaml"
time="2026-02-17T10:09:21Z" level=info msg="Bundle metadata generated successfully"
/__w/stackrox/stackrox/operator/.gotools/bin/yq -i '.metadata.annotations.createdAt = ""' bundle/manifests/rhacs-operator.clusterserviceversion.yaml
sed -i'.bak' -e '/operators\.operatorframework\.io\.bundle\.channel/d' bundle.Dockerfile
sed -i'.bak' -e '/# Copy files to locations specified by labels./d' bundle.Dockerfile
sed -i'.bak' -E -e '/^COPY .* \/(manifests|metadata|tests\/scorecard)\/$/d' bundle.Dockerfile
rm -f bundle.Dockerfile.bak
cat bundle.Dockerfile.extra >> bundle.Dockerfile
set -euo pipefail ;\
python3 -m venv bundle_helpers/.venv ; . bundle_helpers/.venv/bin/activate ; pip3 install --upgrade pip==21.3.1 setuptools==59.6.0 ; pip3 install -r bundle_helpers/requirements.txt ;\
bundle_helpers/fix-spec-descriptor-order.py \
  <bundle/manifests/rhacs-operator.clusterserviceversion.yaml \
  >bundle/manifests/rhacs-operator.clusterserviceversion.yaml.fixed
Collecting pip==21.3.1
  Downloading https://files.pythonhosted.org/packages/a4/6d/6463d49a933f547439d6b5b98b46af8742cc03ae83543e4d7688c2420f8b/pip-21.3.1-py3-none-any.whl (1.7MB)
Collecting setuptools==59.6.0
  Downloading https://files.pythonhosted.org/packages/b0/3a/88b210db68e56854d0bcf4b38e165e03be377e13907746f825790f3df5bf/setuptools-59.6.0-py3-none-any.whl (952kB)
Installing collected packages: pip, setuptools
  Found existing installation: pip 9.0.3
    Uninstalling pip-9.0.3:
      Successfully uninstalled pip-9.0.3
  Found existing installation: setuptools 39.2.0
    Uninstalling setuptools-39.2.0:
      Successfully uninstalled setuptools-39.2.0
Successfully installed pip-21.3.1 setuptools-59.6.0
You are using pip version 21.3.1, however version 26.0.1 is available.
You should consider upgrading via the 'pip install --upgrade pip' command.
Collecting PyYAML==6.0
  Downloading PyYAML-6.0-cp36-cp36m-manylinux_2_5_x86_64.manylinux1_x86_64.manylinux_2_12_x86_64.manylinux2010_x86_64.whl (603 kB)
Collecting pytest==7.0.1
  Downloading pytest-7.0.1-py3-none-any.whl (296 kB)
Collecting py>=1.8.2
  Downloading py-1.11.0-py2.py3-none-any.whl (98 kB)
Collecting packaging
  Downloading packaging-21.3-py3-none-any.whl (40 kB)
Collecting importlib-metadata>=0.12
  Downloading importlib_metadata-4.8.3-py3-none-any.whl (17 kB)
Collecting iniconfig
  Downloading iniconfig-1.1.1-py2.py3-none-any.whl (5.0 kB)
Collecting pluggy<2.0,>=0.12
  Downloading pluggy-1.0.0-py2.py3-none-any.whl (13 kB)
Collecting attrs>=19.2.0
  Downloading attrs-22.2.0-py3-none-any.whl (60 kB)
Collecting tomli>=1.0.0
  Downloading tomli-1.2.3-py3-none-any.whl (12 kB)
Collecting typing-extensions>=3.6.4
  Downloading typing_extensions-4.1.1-py3-none-any.whl (26 kB)
Collecting zipp>=0.5
  Downloading zipp-3.6.0-py3-none-any.whl (5.3 kB)
Collecting pyparsing!=3.0.5,>=2.0.2
  Downloading pyparsing-3.1.4-py3-none-any.whl (104 kB)
Installing collected packages: zipp, typing-extensions, pyparsing, importlib-metadata, tomli, py, pluggy, packaging, iniconfig, attrs, PyYAML, pytest
Successfully installed PyYAML-6.0 attrs-22.2.0 importlib-metadata-4.8.3 iniconfig-1.1.1 packaging-21.3 pluggy-1.0.0 py-1.11.0 pyparsing-3.1.4 pytest-7.0.1 tomli-1.2.3 typing-extensions-4.1.1 zipp-3.6.0
mv bundle/manifests/rhacs-operator.clusterserviceversion.yaml.fixed \
       bundle/manifests/rhacs-operator.clusterserviceversion.yaml
/__w/stackrox/stackrox/operator/.gotools/bin/operator-sdk bundle validate ./bundle --select-optional suite=operatorframework
time="2026-02-17T10:09:29Z" level=warning msg="Warning: Value config.stackrox.io/v1alpha1, Kind=SecurityPolicy: provided API should have an example annotation"
time="2026-02-17T10:09:29Z" level=warning msg="Warning: Value rhacs-operator.v0.0.1: owned CRD \"securitypolicies.config.stackrox.io\" has an empty description"
time="2026-02-17T10:09:29Z" level=info msg="All validation tests have completed successfully"
make: Leaving directory '/__w/stackrox/stackrox/operator'
@porridge
delete differently
3bcd23e 
older yq fails with:

Error: Parsing expression: Lexer error: could not match text starting at 1:42 failing at 1:44.
	unmatched text: "lt"
@porridge
use sane yq version
71d2a26
@porridge
🤦
d15ecc3
@porridge porridge marked this pull request as ready for review February 17, 2026 12:26
@porridge porridge requested review from a team as code owners February 17, 2026 12:26
@porridge porridge requested review from GrimmiMeloni and removed request for a team February 17, 2026 12:26
mclasmeier
mclasmeier approved these changes Feb 17, 2026
View reviewed changes
Copy link
Contributor

@mclasmeier mclasmeier left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm!

@porridge porridge added the auto-retest PRs with this label will be automatically retested if prow checks fails label Feb 17, 2026
@rhacs-bot
Copy link
Contributor

rhacs-bot commented Feb 17, 2026

/retest

1 similar comment
@rhacs-bot
Copy link
Contributor

rhacs-bot commented Feb 17, 2026

/retest

@porridge porridge merged commit 843afe3 into master Feb 18, 2026
111 checks passed
@porridge porridge deleted the porridge/operator-chart branch February 18, 2026 05:14
This was referenced Mar 3, 2026
Merged
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mclasmeier mclasmeier mclasmeier approved these changes

@GrimmiMeloni GrimmiMeloni Awaiting requested review from GrimmiMeloni GrimmiMeloni is a code owner automatically assigned from stackrox/install

Assignees

No one assigned

Labels

area/operator auto-retest PRs with this label will be automatically retested if prow checks fails

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@porridge @rhacs-bot @mclasmeier