Deploying Helm Charts in GKE Private clusters

Question

Hi Expert,

I have provisioned GKE private clusters using Cloud Build and Terraform and I would like to validate the Build Architecture that I am setting up.

Could you please tell me what is the Google recommend approach to deploy helm charts? using Cloud Build through a VPN connection (as described here: https://cloud.google.com/architecture/accessing-private-gke-clusters-with-cloud-build-private-pools) or using Cloud Deploy? https://cloud.google.com/deploy/docs/overview - Using a VPN between Cloud Build and GKE seems to be mandatory and I am not really fan of this.
Is the Artifact Repository able to pass through official docker images since I want to make sure that all images have been analyzed? I haven’t seen the option yet and I am afraid having to implement a third-party solution.

Best Regards,

Ludovic

icon

Best answer by malamin 28 February 2023, 09:55

View original

malamin · Accepted Answer

Hi @lfernandez ,I hope you sorted out the question. If you're still interested in learning more about the subject, check out this document : Store Helm charts in Artifact Registry, Work with Helm charts, CI/GitOps with Helm, GitHub Actions, GitHub Container Registry, and Config Sync and CI/GitOps with Helm, GitHub Actions, Artifact Registry, and Config Sync. I believe you will get a better idea of how to solve your case.