Skip to content

Add NGINX Agent 3.x WAF support#9740

Open
AlexFenlon wants to merge 33 commits into
mainfrom
feat/agent-v3-waf-v5
Open

Add NGINX Agent 3.x WAF support#9740
AlexFenlon wants to merge 33 commits into
mainfrom
feat/agent-v3-waf-v5

Conversation

@AlexFenlon
Copy link
Copy Markdown
Contributor

@AlexFenlon AlexFenlon commented Apr 29, 2026
edited
Loading

Proposed changes

Adds support for NGINX Agent 3.9.x (NGINX One Console) alongside the existing NGINX Agent 2.x (NGINX Instance Manager) support, for both WAF v4 and WAF v5 security monitoring deployments.

Docs PR: nginx/documentation#1897

New Docker image targets (8 new images)

New images bundle NGINX Agent 3.9.x instead of Agent 2.x. The Agent 3.x images follow an -agent suffix convention:

WAF version Base OS Makefile Target Agent 2.x (NIM) Agent 3.9.x (NGINX One Console)
WAF v4 Debian debian-plus-nap-agent nginx-ic-nap/nginx-plus-ingress:5.5.0 nginx-ic-nap/nginx-plus-ingress:5.5.0-agent
WAF v4 UBI 9 ubi-9-plus-nap-agent nginx-ic-nap/nginx-plus-ingress:5.5.0-ubi nginx-ic-nap/nginx-plus-ingress:5.5.0-ubi-agent
WAF v4 UBI 8 ubi-8-plus-nap-agent nginx-ic-nap/nginx-plus-ingress:5.5.0-ubi8 nginx-ic-nap/nginx-plus-ingress:5.5.0-ubi8-agent
WAF v4 Alpine FIPS alpine-plus-nap-fips-agent nginx-ic-nap/nginx-plus-ingress:5.5.0-alpine-fips nginx-ic-nap/nginx-plus-ingress:5.5.0-alpine-fips-agent
WAF v5 Debian debian-plus-nap-v5-agent nginx-ic-nap-v5/nginx-plus-ingress:5.5.0 nginx-ic-nap-v5/nginx-plus-ingress:5.5.0-agent
WAF v5 UBI 9 ubi-9-plus-nap-v5-agent nginx-ic-nap-v5/nginx-plus-ingress:5.5.0-ubi nginx-ic-nap-v5/nginx-plus-ingress:5.5.0-ubi-agent
WAF v5 UBI 8 ubi-8-plus-nap-v5-agent nginx-ic-nap-v5/nginx-plus-ingress:5.5.0-ubi8 nginx-ic-nap-v5/nginx-plus-ingress:5.5.0-ubi8-agent
WAF v5 Alpine FIPS alpine-plus-nap-v5-fips-agent nginx-ic-nap-v5/nginx-plus-ingress:5.5.0-alpine-fips nginx-ic-nap-v5/nginx-plus-ingress:5.5.0-alpine-fips-agent

Helm chart changes

  • _helpers.tpl: Updated agent configuration template to support Agent 3.x config structure (features, command server block, dataplane key mounting for NGINX One Console connectivity).
  • New Helm unit test data (app-protect-wafv5-agentv3.yaml) and updated snapshots to cover WAF v5 + Agent 3.x values.

Agent 3.x configuration

Agent 3.9.x uses a different configuration approach to Agent 2.x:

  • WAF security logs are forwarded to Agent's embedded OpenTelemetry collector on 127.0.0.1:1514, so no external syslog pod is required.
  • The APLogConf must use a specific 28-field pipe-separated secops-dashboard-log format. A second log configuration resource (ap-logconf-agent-v3.yaml) is provided alongside the existing ap-logconf.yaml for Agent 2.x.

New and updated examples

  • security-monitoring — updated README covering both agent versions; new ap-logconf-agent-v3.yaml
  • security-monitoring — same updates
  • security-monitoring-v5 — new directory with full WAF v5 + VirtualServer example for both agent versions
  • security-monitoring-v5 — new directory with full WAF v5 + Ingress example for both agent versions

CI

  • matrix-images-nap.json: 10 new -agent image entries added to the build matrix.
  • matrix-smoke-nap.json: new AGENT_V3_NAP 1/1 smoke test entry targeting debian-plus-nap-agent with agentv3 marker.
  • setup-smoke.yml: fixed build_tag / stable_tag computation to append -agent suffix when the image name contains agent, matching the convention in build-plus.yml.

CI/CD Pipeline Configuration

Updated release promotion, patching, and testing configurations to ensure -agent images reach customers and receive maintenance:

  • Release promotion: Added -agent variants to config-plus-gcr-release, config-plus-nginx, and config-gcr-retag tag postfix lists (NAP_WAF_TAG_POSTFIX_LIST and NAP_WAFV5_TAG_POSTFIX_LIST) to ensure the new images get promoted from dev registry to both customer-facing registries (gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/release and docker-mgmt.nginx.com)

  • Weekly security patches: Added 8 new -agent image entries to patch-images.json so the Agent 3.x images receive weekly security updates every Sunday alongside existing images

  • Package verification: Added -agent variants to data.json with nginx-agent version 3.9 specifications to verify correct NGINX Agent 3.x packages are installed during CI package testing

This ensures the new -agent images have complete lifecycle support: build → dev registry → release promotion → customer delivery → ongoing security maintenance.

Checklist

  • I have read the CONTRIBUTING doc
  • I have added tests that prove my fix is effective or that my feature works
  • I have checked that all unit tests pass after adding my changes
  • I have updated necessary documentation
  • I have rebased my branch onto main
  • I will ensure my PR is targeting the main branch and pulling from my branch from my own fork

AlexFenlon and others added 6 commits April 21, 2026 12:36
@AlexFenlon
WAF + Agent v3
ae0c824
@AlexFenlon
reorder makefile, update security monitoring readmes
a283c07 
Co-authored-by: Copilot <copilot@github.com>
@AlexFenlon
Add WAF v5 and Agent v3 support for NGINX Secuirty Monitoring
f19cc21 
Co-authored-by: Copilot <copilot@github.com>
@AlexFenlon
remove unused files
1a9c48e
@AlexFenlon
update agent v3 references in security monitoring examples
b411691 
Co-authored-by: Copilot <copilot@github.com>
@AlexFenlon
clean up examples
d026b83 
Co-authored-by: Copilot <copilot@github.com>
@github-actions github-actions Bot added enhancement Pull requests for new features/feature enhancements go Pull requests that update Go code github_actions Pull requests that update Github_actions code docker Pull requests that update Docker code labels Apr 29, 2026
@AlexFenlon
Merge branch 'main' into feat/agent-v3-waf-v5
657245b 
Signed-off-by: AlexFenlon <a.fenlon@f5.com>
@AlexFenlon AlexFenlon mentioned this pull request Apr 29, 2026
Open
5 tasks
@codecov
Copy link
Copy Markdown

codecov Bot commented Apr 29, 2026
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 57.15%. Comparing base (26d06bd) to head (3f2399d).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main    #9740   +/-   ##
=======================================
  Coverage   57.15%   57.15%           
=======================================
  Files          99       99           
  Lines       21203    21203           
=======================================
  Hits        12119    12119           
  Misses       8384     8384           
  Partials      700      700

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented Apr 29, 2026
edited
Loading

Package Report

Details gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx, 1.29.8-1~trixie, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-module-njs, 1.29.8+0.9.6-1~trixie, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-module-otel, 1.29.8+0.1.2-1~trixie, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-agent, 3.9.1~trixie, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx, 1.29.8-1~trixie, arm64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-module-njs, 1.29.8+0.9.6-1~trixie, arm64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-module-otel, 1.29.8+0.1.2-1~trixie, arm64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-agent, 3.9.1~trixie, arm64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus, 36-4~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-njs, 36+0.9.6-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-otel, 36+0.1.2-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-fips-check, 36+0.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-agent, 3.9.1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus, 36-4~bookworm, arm64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-njs, 36+0.9.6-1~bookworm, arm64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-otel, 36+0.1.2-1~bookworm, arm64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-fips-check, 36+0.1-1~bookworm, arm64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-agent, 3.9.1~bookworm, arm64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus, 36-4~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-njs, 36+0.9.6-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-otel, 36+0.1.2-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-fips-check, 36+0.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-appprotect, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-attack-signatures, 2026.05.06-2~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-threat-campaigns, 2026.05.12-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-ip-intelligence, 1.50.0-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-agent, 2.46.2~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus, 36-4~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-njs, 36+0.9.6-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-otel, 36+0.1.2-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-fips-check, 36+0.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-appprotect, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-module-plus, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-plugin, 6.28.0-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-agent, 2.46.2~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus, 36-4~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-njs, 36+0.9.6-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-otel, 36+0.1.2-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-fips-check, 36+0.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-appprotectdos, 36+4.8.3-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-dos, 36+4.8.3-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus, 36-4~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-njs, 36+0.9.6-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-otel, 36+0.1.2-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-fips-check, 36+0.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-appprotect, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-ip-intelligence, 1.50.0-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-attack-signatures, 2026.05.06-2~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-threat-campaigns, 2026.05.12-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-plus-module-appprotectdos, 36+4.8.3-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, app-protect-dos, 36+4.8.3-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3, nginx-agent, 2.46.2~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx, 1.29.8-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-module-njs, 1.29.8.0.9.6-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-module-otel, 1.29.8.0.1.2-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-agent, 3.9.1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx, 1.29.8-r1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-module-njs, 1.29.8.0.9.6-r1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-module-otel, 1.29.8.0.1.2-r1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-agent, 3.9.1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-plus, 36-r4, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-plus-module-njs, 36.0.9.6-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-plus-module-otel, 36.0.1.2-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-plus-module-fips-check, 36.0.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-agent, 3.9.1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-plus, 36-r4, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-plus-module-njs, 36.0.9.6-r1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-plus-module-otel, 36.0.1.2-r1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-plus-module-fips-check, 36.0.1-r1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine, nginx-agent, 3.9.1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus, 36-r4, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-njs, 36.0.9.6-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-otel, 36.0.1.2-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-fips-check, 36.0.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-agent, 3.9.1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus, 36-r4, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-njs, 36.0.9.6-r1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-otel, 36.0.1.2-r1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-fips-check, 36.0.1-r1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-agent, 3.9.1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus, 36-r4, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-njs, 36.0.9.6-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-otel, 36.0.1.2-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-fips-check, 36.0.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-agent, 2.46.2, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, app-protect-ip-intelligence, 1.50.0-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-appprotect, 36.5.607.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, app-protect, 36.5.607.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, app-protect-attack-signatures, 2026.05.06-r2, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, app-protect-threat-campaigns, 2026.05.12-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus, 36-r4, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-njs, 36.0.9.6-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-otel, 36.0.1.2-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-fips-check, 36.0.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-agent, 2.46.2, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, nginx-plus-module-appprotect, 36.5.607.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, app-protect-module-plus, 36.5.607.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips, app-protect-plugin, 6.28.0-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx, 1.29.8-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-module-njs, 1.29.8+0.9.8-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-module-otel, 1.29.8+0.1.2-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-agent, 3.9.1-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx, 1.29.8-1.el9.ngx, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-module-njs, 1.29.8+0.9.8-1.el9.ngx, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-module-otel, 1.29.8+0.1.2-1.el9.ngx, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-agent, 3.9.1-1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus, 36-4.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-njs, 36+0.9.6-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-otel, 36+0.1.2-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-fips-check, 36+0.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-agent, 3.9.1-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus, 36-4.el9.ngx, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-njs, 36+0.9.6-1.el9.ngx, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-otel, 36+0.1.2-1.el9.ngx, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-fips-check, 36+0.1-1.el9.ngx, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-agent, 3.9.1-1, aarch64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus, 36-4.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-njs, 36+0.9.6-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-otel, 36+0.1.2-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-fips-check, 36+0.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-agent, 2.46.2-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-appprotect, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-ip-intelligence, 1.50.0-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-attack-signatures, 2026.05.06-2.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-threat-campaigns, 2026.05.12-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus, 36-4.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-njs, 36+0.9.6-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-otel, 36+0.1.2-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-fips-check, 36+0.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-agent, 2.46.2-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-appprotect, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-module-plus, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-plugin, 6.28.0-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus, 36-4.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus-module-njs, 36+0.9.6-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus-module-otel, 36+0.1.2-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus-module-fips-check, 36+0.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-agent, 2.46.2-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus-module-appprotect, 36+5.607.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, app-protect, 36+5.607.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, app-protect-ip-intelligence, 1.50.0-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, app-protect-attack-signatures, 2026.05.06-2.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, app-protect-threat-campaigns, 2026.05.12-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus, 36-4.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus-module-njs, 36+0.9.6-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus-module-otel, 36+0.1.2-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus-module-fips-check, 36+0.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-agent, 2.46.2-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, nginx-plus-module-appprotect, 36+5.607.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, app-protect-module-plus, 36+5.607.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8, app-protect-plugin, 6.28.0-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus, 36-4.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-njs, 36+0.9.6-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-otel, 36+0.1.2-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-fips-check, 36+0.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-appprotectdos, 36+4.8.3-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-dos, 36+4.8.3-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus, 36-4.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-njs, 36+0.9.6-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-otel, 36+0.1.2-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-fips-check, 36+0.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-appprotect, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-plus-module-appprotectdos, 36+4.8.3-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, nginx-agent, 2.46.2-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-ip-intelligence, 1.50.0-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-attack-signatures, 2026.05.06-2.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-threat-campaigns, 2026.05.12-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-dos-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi, app-protect-dos, 36+4.8.3-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus, 36-4~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus-module-njs, 36+0.9.6-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus-module-otel, 36+0.1.2-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus-module-fips-check, 36+0.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus-module-appprotect, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, app-protect, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, app-protect-attack-signatures, 2026.05.06-2~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, app-protect-threat-campaigns, 2026.05.12-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-agent, 3.9.1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus, 36-4.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus-module-njs, 36+0.9.6-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus-module-otel, 36+0.1.2-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus-module-fips-check, 36+0.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus-module-appprotect, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, app-protect, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, app-protect-attack-signatures, 2026.05.06-2.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, app-protect-threat-campaigns, 2026.05.12-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-agent, 3.9.1-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus, 36-4.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus-module-njs, 36+0.9.6-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus-module-otel, 36+0.1.2-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus-module-fips-check, 36+0.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus-module-appprotect, 36+5.607.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, app-protect, 36+5.607.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, app-protect-attack-signatures, 2026.05.06-2.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, app-protect-threat-campaigns, 2026.05.12-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-agent, 3.9.1-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus, 36-r4, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus-module-njs, 36.0.9.6-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus-module-otel, 36.0.1.2-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus-module-fips-check, 36.0.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus-module-appprotect, 36.5.607.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, app-protect, 36.5.607.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, app-protect-attack-signatures, 2026.05.06-r2, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, app-protect-threat-campaigns, 2026.05.12-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-agent, 3.9.1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus, 36-4~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus-module-njs, 36+0.9.6-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus-module-otel, 36+0.1.2-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus-module-fips-check, 36+0.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-plus-module-appprotect, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, app-protect-module-plus, 36+5.607.1-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, app-protect-plugin, 6.28.0-1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-agent, nginx-agent, 3.9.1~bookworm, amd64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus, 36-4.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus-module-njs, 36+0.9.6-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus-module-otel, 36+0.1.2-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus-module-fips-check, 36+0.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-plus-module-appprotect, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, app-protect-module-plus, 36+5.607.1-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, app-protect-plugin, 6.28.0-1.el9.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi-agent, nginx-agent, 3.9.1-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus, 36-4.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus-module-njs, 36+0.9.6-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus-module-otel, 36+0.1.2-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus-module-fips-check, 36+0.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-plus-module-appprotect, 36+5.607.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, app-protect-module-plus, 36+5.607.1-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, app-protect-plugin, 6.28.0-1.el8.ngx, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-ubi8-agent, nginx-agent, 3.9.1-1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus, 36-r4, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus-module-njs, 36.0.9.6-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus-module-otel, 36.0.1.2-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus-module-fips-check, 36.0.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-plus-module-appprotect, 36.5.607.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, app-protect-module-plus, 36.5.607.1-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, app-protect-plugin, 6.28.0-r1, x86_64
gcr.io/f5-gcs-7899-ptg-ingrss-ctlr/dev/nginx-ic-nap-v5/nginx-plus-ingress:t-13c74d00187eb7a0f30431ec2c0badf3-alpine-fips-agent, nginx-agent, 3.9.1, x86_64

@AlexFenlon AlexFenlon changed the title Feat/agent v3 waf v5 Add NGINX Agent 3.x image targets and WAF v5 security monitoring examples Apr 30, 2026
@AlexFenlon AlexFenlon changed the title Add NGINX Agent 3.x image targets and WAF v5 security monitoring examples Add NGINX Agent 3.x WAF support Apr 30, 2026
@AlexFenlon AlexFenlon linked an issue Apr 30, 2026 that may be closed by this pull request
Agent V3 + WAF #9654
Open
@AlexFenlon AlexFenlon marked this pull request as ready for review April 30, 2026 12:02
@AlexFenlon AlexFenlon requested a review from a team as a code owner April 30, 2026 12:02
Copilot AI review requested due to automatic review settings April 30, 2026 12:02
Copilot AI reviewed Apr 30, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

Adds NGINX Agent 3.9.x (NGINX One Console) support alongside existing Agent 2.x (NGINX Instance Manager) across WAF v4/v5 flows by introducing new -agent image variants, updated Helm agent configuration templating, and new/updated security monitoring examples.

Changes:

  • Add new -agent image build targets and CI matrix entries for Agent 3.9.x variants.
  • Update Helm chart templates + helmunit snapshots/testdata to render Agent 3.x config structure (including dataplane key mounting).
  • Add/extend security-monitoring examples (including new WAF v5 example directories) and provide Agent 3.x-specific log config.

Reviewed changes

Copilot reviewed 29 out of 30 changed files in this pull request and generated 13 comments.

Show a summary per file
File Description
hack/secrets.json Adds the new v5 security-monitoring example secret to the secrets generation list.
examples/ingress-resources/security-monitoring/ap-logconf-agent-v3.yaml Adds Agent 3.x-compatible APLogConf (pipe-delimited schema).
examples/ingress-resources/security-monitoring/README.md Updates docs to cover both Agent 2.x and 3.x usage and logconf selection.
examples/ingress-resources/security-monitoring-v5/waf.yaml Adds WAF v5 Policy example for Agent 2.x syslog service.
examples/ingress-resources/security-monitoring-v5/waf-agent-v3.yaml Adds WAF v5 Policy example sending logs to local Agent 3.x listener.
examples/ingress-resources/security-monitoring-v5/syslog.yaml Adds syslog Deployment/Service for Agent 2.x v5 example.
examples/ingress-resources/security-monitoring-v5/cafe.yaml Adds cafe app Deployments/Services for the v5 Ingress example.
examples/ingress-resources/security-monitoring-v5/cafe-ingress.yaml Adds v5 Ingress annotated with the WAF Policy.
examples/ingress-resources/security-monitoring-v5/README.md New end-to-end WAF v5 + Ingress security monitoring guide (Agent 2.x/3.x).
examples/custom-resources/security-monitoring/ap-logconf-agent-v3.yaml Adds Agent 3.x-compatible APLogConf for VirtualServer-based example.
examples/custom-resources/security-monitoring/README.md Updates docs to cover both agent versions and logconf selection.
examples/custom-resources/security-monitoring-v5/webapp.yaml Adds webapp Deployment/Service for v5 VirtualServer example.
examples/custom-resources/security-monitoring-v5/waf.yaml Adds v5 Policy example for Agent 2.x syslog service (VirtualServer flow).
examples/custom-resources/security-monitoring-v5/waf-agent-v3.yaml Adds v5 Policy example sending logs to local Agent 3.x listener.
examples/custom-resources/security-monitoring-v5/virtual-server.yaml Adds VirtualServer resource wiring the v5 WAF Policy.
examples/custom-resources/security-monitoring-v5/syslog.yaml Adds syslog Deployment/Service for Agent 2.x v5 example.
examples/custom-resources/security-monitoring-v5/README.md New end-to-end WAF v5 + VirtualServer security monitoring guide (Agent 2.x/3.x).
examples/custom-resources/app-protect-waf-v5/ingress.yaml Adds an Ingress manifest for the existing app-protect-waf-v5 example.
charts/tests/testdata/app-protect-wafv5-agentv3.yaml Adds helmunit values for WAF v5 + Agent v3 rendering.
charts/tests/helmunit_test.go Adds a helmunit test case for the new WAF v5 + Agent v3 scenario.
charts/tests/snapshots/helmunit_test.snap Updates rendered snapshot outputs for new agent mounts/config and new testcase.
charts/nginx-ingress/templates/_helpers.tpl Updates agent volumes/mounts and renders Agent 3.x config structure when dataplane key is set.
build/scripts/agent.sh Adjusts filesystem setup for NAP-related directories during image build.
build/Dockerfile Introduces new -agent build stages and refactors NAP images into base + agent-specific stages.
Makefile Adds build targets for -agent images and updates all-images list accordingly.
.gitignore Ignores the generated v5 security-monitoring example secret YAML.
.github/workflows/setup-smoke.yml Updates smoke tag computation to append -agent suffix when appropriate.
.github/workflows/build-plus.yml Updates tag suffix computation to append -agent suffix when appropriate.
.github/data/matrix-smoke-nap.json Adds a smoke matrix entry for an Agent v3 NAP image.
.github/data/matrix-images-nap.json Adds new -agent images to the NAP build matrix.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread .github/workflows/build-plus.yml
Comment thread examples/ingress-resources/security-monitoring-v5/README.md Outdated
Comment thread examples/custom-resources/security-monitoring-v5/README.md Outdated
Comment thread examples/ingress-resources/security-monitoring-v5/cafe.yaml Outdated
Comment thread examples/ingress-resources/security-monitoring/README.md Outdated
Comment thread Makefile
Comment thread charts/nginx-ingress/templates/_helpers.tpl
Comment thread examples/ingress-resources/security-monitoring-v5/README.md Outdated
Comment thread examples/custom-resources/security-monitoring/README.md Outdated
Comment thread examples/custom-resources/security-monitoring/README.md
@AlexFenlon AlexFenlon marked this pull request as draft April 30, 2026 12:17
@AlexFenlon
update readmes
1498c2e 
Co-authored-by: Copilot <copilot@github.com>
pdabelf5
pdabelf5 reviewed May 1, 2026
View reviewed changes
Comment thread build/Dockerfile Outdated
Comment thread build/Dockerfile Outdated
Comment thread build/Dockerfile Outdated
AlexFenlon and others added 2 commits May 1, 2026 15:03
@AlexFenlon
Rename NGINX_AGENT vars to have better names, fix comments in dockerfile
99b6845 
Co-authored-by: Copilot <copilot@github.com>
@AlexFenlon
Merge branch 'main' into feat/agent-v3-waf-v5
a4510d7 
Signed-off-by: AlexFenlon <a.fenlon@f5.com>
sean-breen
sean-breen reviewed May 6, 2026
View reviewed changes
Comment thread Makefile Outdated
Comment thread Makefile Outdated
Comment thread build/scripts/agent.sh
@AlexFenlon AlexFenlon enabled auto-merge May 6, 2026 13:20
@AlexFenlon
Merge branch 'main' into feat/agent-v3-waf-v5
3fa32a6 
Signed-off-by: AlexFenlon <a.fenlon@f5.com>
pdabelf5
pdabelf5 reviewed May 7, 2026
View reviewed changes
Comment thread charts/nginx-ingress/templates/_helpers.tpl
sean-breen
sean-breen previously approved these changes May 13, 2026
View reviewed changes
pdabelf5
pdabelf5 reviewed May 13, 2026
View reviewed changes
Comment thread build/Dockerfile
Comment thread examples/custom-resources/security-monitoring-v5/README.md Outdated
Comment thread examples/custom-resources/security-monitoring/README.md Outdated
pdabelf5
pdabelf5 reviewed May 13, 2026
View reviewed changes
Comment thread examples/custom-resources/security-monitoring-v5/README.md Outdated
pdabelf5
pdabelf5 reviewed May 13, 2026
View reviewed changes
Comment thread examples/custom-resources/security-monitoring-v5/README.md Outdated
pdabelf5
pdabelf5 reviewed May 13, 2026
View reviewed changes
Comment thread examples/ingress-resources/security-monitoring-v5/README.md Outdated
pdabelf5
pdabelf5 reviewed May 13, 2026
View reviewed changes
Comment thread Makefile Outdated
Comment thread renovate.json
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@vepatel vepatel vepatel approved these changes

@sean-breen sean-breen sean-breen approved these changes

@pdabelf5 pdabelf5 pdabelf5 approved these changes

Assignees

No one assigned

Labels

docker Pull requests that update Docker code enhancement Pull requests for new features/feature enhancements github_actions Pull requests that update Github_actions code go Pull requests that update Go code

Projects

NGINX Ingress Controller
Status: Todo ☑

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Agent V3 + WAF

5 participants

@AlexFenlon @vepatel @sean-breen @pdabelf5