From 5dde537d53b9f24987fae1d1a1566b290ef22c8d Mon Sep 17 00:00:00 2001
From: YuviPanda <yuvipanda@gmail.com>
Date: Wed, 15 Jun 2022 02:59:53 -0700
Subject: [PATCH] Enable cryptnono on all our clusters

https://github.com/yuvipanda/cryptnono/ is now deployed
on mybinder.org. We've already had a few incidents with
cryptomining (OpenScapes, cloudbank, pangeo binder). This
should help with that.
---
 helm-charts/support/Chart.yaml         | 7 +++++++
 helm-charts/support/values.schema.yaml | 5 +++++
 helm-charts/support/values.yaml        | 4 ++++
 3 files changed, 16 insertions(+)

diff --git a/helm-charts/support/Chart.yaml b/helm-charts/support/Chart.yaml
index aeeba4ae5a..7ef509f85d 100644
--- a/helm-charts/support/Chart.yaml
+++ b/helm-charts/support/Chart.yaml
@@ -35,3 +35,10 @@ dependencies:
     version: 1.3.1
     repository: https://kvaps.github.io/charts
     condition: nfs-server-provisioner.enabled
+
+  # cryptnono, counters crypto mining
+  # Source code: https://github.com/yuvipanda/cryptnono/
+  - name: cryptnono
+    version: "0.0.1-n025.h28f473f"
+    repository: https://yuvipanda.github.io/cryptnono/
+    condition: cryptnono.enabled
diff --git a/helm-charts/support/values.schema.yaml b/helm-charts/support/values.schema.yaml
index a46e101716..151160749d 100644
--- a/helm-charts/support/values.schema.yaml
+++ b/helm-charts/support/values.schema.yaml
@@ -18,6 +18,7 @@ required:
   - nfs-server-provisioner
   - nvidiaDevicePlugin
   - prometheusIngressAuthSecret
+  - cryptnono
   - global
 properties:
   # cluster-autoscaler is a dependent helm chart, we rely on its schema
@@ -50,6 +51,10 @@ properties:
   nfs-server-provisioner:
     type: object
     additionalProperties: true
+  # Enables  https://github.com/yuvipanda/cryptnono/ to prevent cryptomining
+  cryptnono:
+    type: object
+    additionalProperties: true
   # nvidiaDevicePlugin is _not a dependent helm chart_. It is values directly
   # coupled with this helm chart and are influencing the rendering of templates
   # we provide as part of this helm chart.
diff --git a/helm-charts/support/values.yaml b/helm-charts/support/values.yaml
index dbca3b7d1d..8f48092af8 100644
--- a/helm-charts/support/values.yaml
+++ b/helm-charts/support/values.yaml
@@ -133,6 +133,10 @@ nvidiaDevicePlugin:
   aws:
     enabled: false
 
+# Enables  https://github.com/yuvipanda/cryptnono/ to prevent cryptomining
+cryptnono:
+  enabled: true
+
 # A placeholder as global values that can be referenced from the same location
 # of any chart should be possible to provide, but aren't necessarily provided or
 # used.