diff --git a/chart/values.yaml b/chart/values.yaml
index da470ac998b141454cf7ec394ecc9da110d1425f..33f44e094d62af38b08b984a7f121bb6003f8846 100644
--- a/chart/values.yaml
+++ b/chart/values.yaml
@@ -749,11 +749,11 @@ neuvector:
   git:
     repo: https://repo1.dso.mil/big-bang/product/packages/neuvector.git
     path: "./chart"
-    tag: "2.6.3-bb.12"
+    tag: "2.6.3-bb.13"
   helmRepo:
     repoName: "registry1"
     chartName: "neuvector"
-    tag: "2.6.3-bb.12"
+    tag: "2.6.3-bb.13"
 
   # -- Redirect the package ingress to a specific Istio Gateway (listed in `istio.gateways`).  The default is "public".
   ingress:
diff --git a/tests/test-values.yaml b/tests/test-values.yaml
index 03370ee430a4732ce29ebd8c696df3bd9ec64d23..94a73a20418295d0a77caebb298ae5e30e068ef4 100644
--- a/tests/test-values.yaml
+++ b/tests/test-values.yaml
@@ -1122,6 +1122,46 @@ neuvector:
   values:
     k3s:
       enabled: true
+    istio:
+     enabled: true
+     hardened:
+       enabled: true
+       customServiceEntries:
+         - name: "allow-npm-for-cypress-tests"
+           enabled: true
+           spec:
+             hosts:
+               - 'registry.npmjs.org'
+               - 'download.cypress.io'
+               - 'cdn.cypress.io'
+             location: MESH_EXTERNAL
+             ports:
+               - number: 443
+                 protocol: TLS
+                 name: https
+             resolution: DNS
+         - name: "allow-repo1-for-cypress"
+           enabled: true
+           spec:
+             hosts:
+               - 'repo1.dso.mil'
+             location: MESH_EXTERNAL
+             ports:
+               - number: 443
+                 protocol: TLS
+                 name: https
+             resolution: DNS
+         - name: "allow-neuvector-for-cypress"
+           enabled: true
+           spec:
+             hosts:
+               - 'neuvector.bigbang.dev'
+             location: MESH_EXTERNAL
+             ports:
+               - number: 443
+                 protocol: TLS
+                 name: https
+             resolution: DNS
     bbtests:
       enabled: true
       cypress:
@@ -1135,16 +1175,62 @@ neuvector:
           limits:
             cpu: "2"
             memory: "1500M"
-    istio:
-      hardened:
-        enabled: true
 
 twistlock:
   enabled: false
   sso:
     enabled: false
     client_id: dev_00eb8904-5b88-4c68-ad67-cec0d2e07aa6_twistlock-saml
+  git:
+    tag: null
+    branch: "registry-only-sidecar-twistlock"
   values:
+    istio:
+      enabled: true
+      hardened:
+        enabled: true
+        customServiceEntries:
+          - name: "allow-npm-for-cypress-tests"
+            enabled: true
+            spec:
+              hosts:
+                - 'registry.npmjs.org'
+                - 'download.cypress.io'
+                - 'cdn.cypress.io'
+              location: MESH_EXTERNAL
+              exportTo:
+                - "."
+              ports:
+                - number: 443
+                  protocol: TLS
+                  name: https
+              resolution: DNS
+          - name: "allow-repo1-for-cypress"
+            enabled: true
+            spec:
+              hosts:
+                - 'repo1.dso.mil'
+              location: MESH_EXTERNAL
+              exportTo:
+                - "."
+              ports:
+                - number: 443
+                  protocol: TLS
+                  name: https
+              resolution: DNS
+          - name: "allow-twistlock-for-cypress"
+            enabled: true
+            spec:
+              hosts:
+                - 'twistlock.bigbang.dev'
+              location: MESH_EXTERNAL
+              exportTo:
+                - "."
+              ports:
+                - number: 443
+                  protocol: TLS
+                  name: https
+              resolution: DNS
     console:
       persistence:
         size: 5Gi