From 4b7517c9c5b68bf937797d52fe385bb11edfaf87 Mon Sep 17 00:00:00 2001
From: MichaelFisher1997 <contact@michaelfisher.tech>
Date: Thu, 23 Apr 2026 07:11:21 +0000
Subject: [PATCH] fix: health-check external-secrets addon via HelmRelease only

The external-secrets Kustomization was still using wait=true, which makes Flux
hold the addon in a failed state when the HelmRepository has transient fetch
errors even though the HelmRelease and runtime controller deployments are
healthy. Switch it to an explicit HelmRelease health check like the other
helm-backed addons.
---
 infrastructure/addons/kustomization-external-secrets.yaml | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/infrastructure/addons/kustomization-external-secrets.yaml b/infrastructure/addons/kustomization-external-secrets.yaml
index cd82aed..6ec3eea 100644
--- a/infrastructure/addons/kustomization-external-secrets.yaml
+++ b/infrastructure/addons/kustomization-external-secrets.yaml
@@ -10,6 +10,11 @@ spec:
     kind: GitRepository
     name: platform
   path: ./infrastructure/addons/external-secrets
-  wait: true
+  wait: false
+  healthChecks:
+    - apiVersion: helm.toolkit.fluxcd.io/v2
+      kind: HelmRelease
+      name: external-secrets
+      namespace: flux-system
   timeout: 5m
   suspend: false