Skip to content

Default chart settings cause Argo-CD to constantly be out of sync due to readOnly: false #1979

New issue
New issue
Open
#1999
Open
Default chart settings cause Argo-CD to constantly be out of sync due to readOnly: false#1979
#1999
Labels
stale
@jwhittem-usb

Description

@jwhittem-usb
jwhittem-usb
opened on Jul 28, 2025

Below are listed the volume mounts that have an issue syncing with the default state of the resource which is blank (assumed readOnly: false). After applying Argo will stay out of sync trying to "correct" the diff with these "readOnly: false" options, but since it's the default state the live object will not contain readOnly: false.

I downloaded the chart, removed these options and the chart seemed to install just the same, so I'm not sure why they are even in the chart? If there is a reason to keep them LMK, I can propose a PR to make it a helm chart value, instead of hardcoded into the chart.

suggest adding a helm chart default variable, and code for readOnly: false, so it can be turned off via values.yaml, or if not needed from the default daemonset manifest, removed entirely.

Thank you.

-- snip --

Image

  • mountPath: /var/log/datadog
    name: logdatadog
    readOnly: false

  • mountPath: /tmp
    name: tmpdir
    readOnly: false

  • mountPath: /etc/datadog-agent
    name: config
    readOnly: false

  • mountPath: /etc/datadog-agent/auth
    name: auth-token
    readOnly: false

  • mountPath: /var/run/datadog
    name: dsdsocket
    readOnly: false

  • mountPath: /var/log/datadog
    name: logdatadog
    readOnly: false

  • mountPath: /tmp
    name: tmpdir
    readOnly: false

  • mountPath: /var/run/datadog
    name: dsdsocket
    readOnly: false

  • mountPath: /var/log/datadog
    name: logdatadog
    readOnly: false

  • mountPath: /var/run/datadog
    name: dsdsocket
    readOnly: false

  • mountPath: /tmp
    name: tmpdir
    readOnly: false

  • mountPath: /var/log/datadog
    name: logdatadog
    readOnly: false

  • mountPath: /tmp
    name: tmpdir
    readOnly: false

  • mountPath: /sys/kernel/debug
    mountPropagation: None
    name: debugfs
    readOnly: false

  • mountPath: /var/run/sysprobe
    name: sysprobe-socket-dir
    readOnly: false

  • mountPath: /host/proc
    mountPropagation: None
    mountPropagation: None
    name: runtime-compiler-output-dir
    readOnly: false

  • mountPath: /var/tmp/datadog-agent/system-probe/kernel-headers
    name: kernel-headers-download-dir
    readOnly: false

  • mountPath: /var/log/datadog
    name: logdatadog
    readOnly: false

  • mountPath: /tmp
    name: tmpdir
    readOnly: false

  • mountPath: /opt/datadog-agent
    name: config
    readOnly: false

  • mountPath: /etc/datadog-agent
    name: config
    readOnly: false

  • mountPath: /var/log/datadog
    name: logdatadog
    readOnly: false

  • mountPath: /host/proc
    mountPropagation: None
    mountPropagation: None
    name: seccomp-root
    readOnly: false

Metadata

Metadata

Assignees

No one assigned

    Labels

    stale

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions