I have provisioned GKE private clusters using Cloud Build and Terraform and I would like to validate the Build Architecture that I am setting up.
- Could you please tell me what is the Google recommend approach to deploy helm charts? using Cloud Build through a VPN connection (as described here: https://cloud.google.com/architecture/accessing-private-gke-clusters-with-cloud-build-private-pools) or using Cloud Deploy? https://cloud.google.com/deploy/docs/overview - Using a VPN between Cloud Build and GKE seems to be mandatory and I am not really fan of this.
- Is the Artifact Repository able to pass through official docker images since I want to make sure that all images have been analyzed? I haven’t seen the option yet and I am afraid having to implement a third-party solution.
Best answer by malaminView original
I hope you sorted out the question. If you're still interested in learning more about the subject, check out this document : Store Helm charts in Artifact Registry, Work with Helm charts, CI/GitOps with Helm, GitHub Actions, GitHub Container Registry, and Config Sync and CI/GitOps with Helm, GitHub Actions, Artifact Registry, and Config Sync. I believe you will get a better idea of how to solve your case.