From cb060c68bc20003fc009439fa9e2e0655485a9cf Mon Sep 17 00:00:00 2001
From: Nikhil Maheshwari <36232275+nikhilmaheshwari24@users.noreply.github.com>
Date: Wed, 31 Jul 2024 17:02:26 +0000
Subject: [PATCH] updated require-pod-requests-limits.yaml

Signed-off-by: Nikhil Maheshwari nikhil.m2498@gmail.com
Signed-off-by: Nikhil Maheshwari <36232275+nikhilmaheshwari24@users.noreply.github.com>
---
 .../require-pod-requests-limits.yaml          | 20 ++++++++++++++++---
 1 file changed, 17 insertions(+), 3 deletions(-)

diff --git a/best-practices/require-pod-requests-limits/require-pod-requests-limits.yaml b/best-practices/require-pod-requests-limits/require-pod-requests-limits.yaml
index 652e46f85..a06b9239d 100644
--- a/best-practices/require-pod-requests-limits/require-pod-requests-limits.yaml
+++ b/best-practices/require-pod-requests-limits/require-pod-requests-limits.yaml
@@ -16,20 +16,34 @@ metadata:
       This policy validates that all containers have something specified for memory and CPU
       requests and memory limits.
 spec:
-  validationFailureAction: audit
+  validationFailureAction: Audit
   background: true
   rules:
-  - name: validate-resources
+  - name: validate-container-resources
     match:
       any:
       - resources:
           kinds:
           - Pod
     validate:
-      message: "CPU and memory resource requests and limits are required."
+      message: "CPU and memory resource requests and memory limits are required for containers."
       pattern:
         spec:
           containers:
+          - resources:
+              requests:
+                memory: "?*"
+                cpu: "?*"
+              limits:
+                memory: "?*"
+          =(initContainers):
+          - resources:
+              requests:
+                memory: "?*"
+                cpu: "?*"
+              limits:
+                memory: "?*"
+          =(ephemeralContainers):
           - resources:
               requests:
                 memory: "?*"