From 06e4b47d62763a749b4f87cc3ecda3f70641971d Mon Sep 17 00:00:00 2001
From: em <eugen.mayer@kontextwork.de>
Date: Wed, 8 Jan 2025 11:32:33 +0100
Subject: [PATCH] Spare some memory for the apache process

---
 charts/vulnz-nvd-mirror/CHANGELOG.md |  4 ++++
 charts/vulnz-nvd-mirror/Chart.yaml   |  2 +-
 charts/vulnz-nvd-mirror/values.yaml  | 27 ++++++++++++++-------------
 3 files changed, 19 insertions(+), 14 deletions(-)

diff --git a/charts/vulnz-nvd-mirror/CHANGELOG.md b/charts/vulnz-nvd-mirror/CHANGELOG.md
index f274703..deb8480 100644
--- a/charts/vulnz-nvd-mirror/CHANGELOG.md
+++ b/charts/vulnz-nvd-mirror/CHANGELOG.md
@@ -1,3 +1,7 @@
+## 0.4.4
+
+- Leave some memory for apache
+
 ## 0.4.3
 
 - Fix resource limits being to restrictive by default, crashing the app
diff --git a/charts/vulnz-nvd-mirror/Chart.yaml b/charts/vulnz-nvd-mirror/Chart.yaml
index b50893b..3e99cf1 100644
--- a/charts/vulnz-nvd-mirror/Chart.yaml
+++ b/charts/vulnz-nvd-mirror/Chart.yaml
@@ -1,7 +1,7 @@
 kubeVersion: ">=1.24.0-0"
 apiVersion: v2
 name: vulnz-nvd-mirror
-version: 0.4.3
+version: 0.4.4
 appVersion: 7.1.0
 description: NVD api mirror and cache
 home: https://github.com/EugenMayer/helm-charts/tree/main/charts/vulnz-nvd-mirror
diff --git a/charts/vulnz-nvd-mirror/values.yaml b/charts/vulnz-nvd-mirror/values.yaml
index 89a8d86..e644cb2 100644
--- a/charts/vulnz-nvd-mirror/values.yaml
+++ b/charts/vulnz-nvd-mirror/values.yaml
@@ -55,19 +55,20 @@ workload:
               # needed since vulnz is rather memory hungry and will crash with less
               memory: 3Gi
           env:
-            # wee need to override the default, see https://github.com/jeremylong/Open-Vulnerability-Project/issues/245
-            JAVA_OPT: -XX:InitialRAMPercentage=70.0 -XX:MaxRAMPercentage=100.0
-          #   # set this to preseed your API key. the expected structure is
-          #   NVD_API_KEY:
-          #     secretKeyRef:
-          #       name: nvd-api-key
-          #       key: password
-          #   # amount of retries
-          #   MAX_RETRY: 10
-          #   # fetch max record pre page - cannot be higher then 2000 by API limits
-          #   MAX_RECORDS_PER_PAGE: 2000
-          #   # show debug logs
-          #   DEBUG: true
+            # we need to override the default, see https://github.com/jeremylong/Open-Vulnerability-Project/issues/245
+            # leave some for the apache process
+            JAVA_OPT: -XX:InitialRAMPercentage=70.0 -XX:MaxRAMPercentage=95.0
+        #   # set this to preseed your API key. the expected structure is
+        #   NVD_API_KEY:
+        #     secretKeyRef:
+        #       name: nvd-api-key
+        #       key: password
+        #   # amount of retries
+        #   MAX_RETRY: 10
+        #   # fetch max record pre page - cannot be higher then 2000 by API limits
+        #   MAX_RECORDS_PER_PAGE: 2000
+        #   # show debug logs
+        #   DEBUG: true
 
 ingress:
   main: