diff --git a/CHANGELOG.md b/CHANGELOG.md
index a131a6141994e77f4e2ba78c62c5c4a288e0a995..1f84eb6eea9aaa29a1f1e6278e4aa4c615373776 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -4,6 +4,13 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 
 ---
 
+## [10.6.1-bb.5] - 2024-12-20
+
+### Fixed
+
+- Changed to IB ubi 8.10 image for curlContainerImage as it is more widely accessible
+- Updated gluon 0.5.4 -> 0.5.12 to fix pipeline cert issue
+
 ## [10.6.1-bb.4] - 2024-12-20
 
 ### Fixed
diff --git a/README.md b/README.md
index 5e1be28e01b3c5a8387d8c48256fdbbd070c4ed6..9f713cfdd549593c0d3e0c1092eac680cd6584ed 100644
--- a/README.md
+++ b/README.md
@@ -1,7 +1,7 @@
 <!-- Warning: Do not manually edit this file. See notes on gluon + helm-docs at the end of this file for more information. -->
 # sonarqube
 
-![Version: 10.6.1-bb.4](https://img.shields.io/badge/Version-10.6.1--bb.4-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 10.6.0](https://img.shields.io/badge/AppVersion-10.6.0-informational?style=flat-square) ![Maintenance Track: bb_integrated](https://img.shields.io/badge/Maintenance_Track-bb_integrated-green?style=flat-square)
+![Version: 10.6.1-bb.5](https://img.shields.io/badge/Version-10.6.1--bb.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 10.6.0](https://img.shields.io/badge/AppVersion-10.6.0-informational?style=flat-square) ![Maintenance Track: bb_integrated](https://img.shields.io/badge/Maintenance_Track-bb_integrated-green?style=flat-square)
 
 SonarQube is a self-managed, automatic code review tool that systematically helps you deliver clean code. As a core element of our Sonar solution, SonarQube integrates into your existing workflow and detects issues in your code to help you perform continuous code inspections of your projects. The tool analyses 30+ different programming languages and integrates into your CI pipeline and DevOps platform to ensure that your code meets high-quality standards.
 
@@ -239,7 +239,7 @@ helm install sonarqube chart/
 | extraConfig.secrets | list | `[]` |  |
 | extraConfig.configmaps | list | `[]` |  |
 | terminationGracePeriodSeconds | int | `60` |  |
-| curlContainerImage | string | `"registry1.dso.mil/bigbang-ci/devops-tester:1.1.2"` |  |
+| curlContainerImage | string | `"registry1.dso.mil/ironbank/redhat/ubi/ubi8:8.10"` |  |
 | domain | string | `"dev.bigbang.mil"` |  |
 | istio.enabled | bool | `false` |  |
 | istio.hardened.enabled | bool | `false` |  |
diff --git a/chart/CHANGELOG.md b/chart/CHANGELOG.md
index 728a2cd18c6585970680c9d0d47ef75f3412818d..6523077ff9109ac8b3ca70a308ebf50da120dae9 100644
--- a/chart/CHANGELOG.md
+++ b/chart/CHANGELOG.md
@@ -524,9 +524,9 @@ All changes to this chart will be documented in this file.
 
 * Added functionality for deployments to OpenShift clusters.
   * .Values.OpenShift flag to signify if deploying to OpenShift.
- 	* Ability to have chart generate an SCC allowing the init-sysctl container to run as privileged.
- 	* Setting of a seperate securityContext section for the main SonarQube container to avoid running as root.
- 	* Exposing additional `postreSQL` keys in values.yaml to support configuring postgres to run under standard "restricted" or "anyuid"/"nonroot" SCCs on OpenShift.
+    * Ability to have chart generate an SCC allowing the init-sysctl container to run as privileged.
+    * Setting of a seperate securityContext section for the main SonarQube container to avoid running as root.
+    * Exposing additional `postreSQL` keys in values.yaml to support configuring postgres to run under standard "restricted" or "anyuid"/"nonroot" SCCs on OpenShift.
 * Added initContainer `wait-for-db` to await postgreSQL successful startup before starting SonarQube, to avoid race conditions.
 
 ## [0.9.1.1]
diff --git a/chart/Chart.lock b/chart/Chart.lock
index e06c32aaf709bb561e20cf18e9782b67e0786a86..9d89372cfc4609f9220982a6188ad8365e8c47c2 100644
--- a/chart/Chart.lock
+++ b/chart/Chart.lock
@@ -4,6 +4,6 @@ dependencies:
   version: 8.6.4
 - name: gluon
   repository: oci://registry1.dso.mil/bigbang
-  version: 0.5.4
-digest: sha256:689641998c03839dfb9e61cc6eb10cc39b5847b1977f4419d91ddccc59fd86b5
-generated: "2024-10-01T15:38:55.293063537-07:00"
+  version: 0.5.12
+digest: sha256:9258eac614bb1b055954a2428406e8ef2d6cf7cfd1e717470f7b36d0d84fe3c9
+generated: "2025-01-06T14:01:13.446509-06:00"
diff --git a/chart/Chart.yaml b/chart/Chart.yaml
index 6b114f542340c2ac995eb8a1a24ec99a77cb903d..e89cdb5e1814732ea52189d7829199632adb4123 100644
--- a/chart/Chart.yaml
+++ b/chart/Chart.yaml
@@ -2,7 +2,7 @@ apiVersion: v2
 name: sonarqube
 description: SonarQube is a self-managed, automatic code review tool that systematically helps you deliver clean code. As a core element of our Sonar solution, SonarQube integrates into your existing workflow and detects issues in your code to help you perform continuous code inspections of your projects. The tool analyses 30+ different programming languages and integrates into your CI pipeline and DevOps platform to ensure that your code meets high-quality standards.
 type: application
-version: 10.6.1-bb.4
+version: 10.6.1-bb.5
 appVersion: 10.6.0
 keywords:
 - coverage
@@ -62,5 +62,5 @@ dependencies:
   repository: file://./deps/postgresql
   condition: postgresql.enabled
 - name: gluon
-  version: '0.5.4'
+  version: '0.5.12'
   repository: 'oci://registry1.dso.mil/bigbang'
diff --git a/chart/charts/gluon-0.5.12.tgz b/chart/charts/gluon-0.5.12.tgz
new file mode 100644
index 0000000000000000000000000000000000000000..002bdc40c2d4eb3144041bde2fab7d61a60c84d4
Binary files /dev/null and b/chart/charts/gluon-0.5.12.tgz differ
diff --git a/chart/charts/gluon-0.5.4.tgz b/chart/charts/gluon-0.5.4.tgz
deleted file mode 100644
index 02d39224f49e24a94e6a24e0f268ace2f9115217..0000000000000000000000000000000000000000
Binary files a/chart/charts/gluon-0.5.4.tgz and /dev/null differ
diff --git a/chart/charts/postgresql-8.6.4.tgz b/chart/charts/postgresql-8.6.4.tgz
index 59d55a1f648312a1d6fe5683cc0f9edf7c6f12de..ebe797e2a21da6b1bfb1ea29c803dd5141b97c0c 100644
Binary files a/chart/charts/postgresql-8.6.4.tgz and b/chart/charts/postgresql-8.6.4.tgz differ
diff --git a/chart/values.yaml b/chart/values.yaml
index 62c99336496e7171c080e7fae257687646b25568..0d47bcc25d33ee9125cdd4c58b6e8a0bc68c88a0 100644
--- a/chart/values.yaml
+++ b/chart/values.yaml
@@ -685,7 +685,7 @@ terminationGracePeriodSeconds: 60
 
 ## Bigbang security package kyverno will, by default, block images that don't originate from registry1.dso.mil
 # curlContainerImage: curlimages/curl:latest
-curlContainerImage: "registry1.dso.mil/bigbang-ci/devops-tester:1.1.2"
+curlContainerImage: "registry1.dso.mil/ironbank/redhat/ubi/ubi8:8.10"
 
 ## Your FQDN will be ${ .Values.subdomain }.${ .Values.domain }
 domain: dev.bigbang.mil
diff --git a/docs/Keycloak.md b/docs/Keycloak.md
index 278022a8c49f4ca6723aee6f5d92cacbe2d6ccae..9edb8bc0486c3a70c6f6d147466837b120a19d8e 100644
--- a/docs/Keycloak.md
+++ b/docs/Keycloak.md
@@ -112,6 +112,7 @@ addons:
 3. Create a new user. Be sure to do the following: Switch "Email verified" to "Yes", join the "Impact Level 2 Authorized" group, remove all "Required user actions" (do this after the user is created), create a password (disable "Temporary").
 4. Login to Gitlab using SSO and the user you just configured.
 5. Setup MFA.
+
 * Reminder: Change the below values to point to your instance of keycloak-dev
 
 ```yaml