feat: support rescans and backoffs

2026-02-08 02:16:23 +01:00 · 2025-12-12 12:07:34 +01:00
parent 8073d0044b
commit 67014b3d16
7 changed files with 278 additions and 14 deletions
--- a/config/crd/bases/nuclei.homelab.mortenolsen.pro_nucleiscans.yaml
+++ b/config/crd/bases/nuclei.homelab.mortenolsen.pro_nucleiscans.yaml
@@ -252,6 +252,11 @@ spec:
              lastError:
                description: LastError contains the error message if the scan failed
                type: string
+              lastRetryTime:
+                description: LastRetryTime is when the last availability check retry
+                  occurred
+                format: date-time
+                type: string
              lastScanTime:
                description: LastScanTime is when the last scan was initiated
                format: date-time
@@ -274,6 +279,11 @@ spec:
                - Completed
                - Failed
                type: string
+              retryCount:
+                description: |-
+                  RetryCount tracks the number of consecutive availability check retries
+                  Used for exponential backoff when waiting for targets
+                type: integer
              summary:
                description: Summary provides aggregated scan statistics
                properties:
--- a/config/manager/manager.yaml
+++ b/config/manager/manager.yaml
@@ -73,6 +73,21 @@ spec:
            value: "/nuclei-templates"
          - name: NUCLEI_TIMEOUT
            value: "30m"
+          # NUCLEI_RESCAN_AGE controls how old scan results can be before
+          # triggering an automatic rescan. Default is 168h (1 week).
+          # Set to "0" to disable automatic rescans based on age.
+          - name: NUCLEI_RESCAN_AGE
+            value: "168h"
+          # Backoff configuration for target availability checks
+          # NUCLEI_BACKOFF_INITIAL: Initial retry interval (default: 10s)
+          - name: NUCLEI_BACKOFF_INITIAL
+            value: "10s"
+          # NUCLEI_BACKOFF_MAX: Maximum retry interval (default: 10m)
+          - name: NUCLEI_BACKOFF_MAX
+            value: "10m"
+          # NUCLEI_BACKOFF_MULTIPLIER: Multiplier for exponential backoff (default: 2.0)
+          - name: NUCLEI_BACKOFF_MULTIPLIER
+            value: "2.0"
        securityContext:
          readOnlyRootFilesystem: false  # Nuclei needs to write temporary files
          allowPrivilegeEscalation: false