metrics: ignore tls adherence

DavidHurta · DavidHurta · commit 70099c9d01d2 · 2026-03-18T13:59:20.000+01:00
diff --git a/pkg/cvo/metrics.go b/pkg/cvo/metrics.go
@@ -161,14 +161,15 @@ func getAPIServerTLSProfile(apiServerLister configlistersv1.APIServerLister, las
 		return lastValidProfile, nil
 	}
 
-	if apiServer.Spec.TLSAdherence == configv1.TLSAdherencePolicyNoOpinion ||
-		apiServer.Spec.TLSAdherence == configv1.TLSAdherencePolicyLegacyAdheringComponentsOnly {
-		return &cachedTLSProfile{
-			spec:       nil,
-			apply:      func(config *tls.Config) {}, // do nothing
-			generation: apiServer.Generation,
-		}, nil
-	}
+	// the tls-scanner CI step is maybe not updated to take the new field into account
+	//if apiServer.Spec.TLSAdherence == configv1.TLSAdherencePolicyNoOpinion ||
+	//	apiServer.Spec.TLSAdherence == configv1.TLSAdherencePolicyLegacyAdheringComponentsOnly {
+	//	return &cachedTLSProfile{
+	//		spec:       nil,
+	//		apply:      func(config *tls.Config) {}, // do nothing
+	//		generation: apiServer.Generation,
+	//	}, nil
+	//}
 
 	profile, err := tlsprofile.GetTLSProfileSpec(apiServer.Spec.TLSSecurityProfile)
 	if err != nil {
