Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add InitContainers and EphermalContainers to Require Limits and Requests #1103

Merged
merged 5 commits into from
Aug 2, 2024
Merged

Add InitContainers and EphermalContainers to Require Limits and Requests #1103

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
cb060c6
updated require-pod-requests-limits.yaml
nikhilmaheshwari24 Jul 31, 2024
529b43d
updated require-pod-requests-limits.yaml
nikhilmaheshwari24 Jul 31, 2024
28b7432
Merge branch 'main' into require-pod-requests-limits-with-all-containers
nikhilmaheshwari24 Aug 2, 2024
ecfb236
Updated best-practices/require-pod-requests-limits/artifacthub-pkg.yml
nikhilmaheshwari24 Aug 2, 2024
5f68f89
Merge branch 'main' into require-pod-requests-limits-with-all-containers
chipzoller Aug 2, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion best-practices/require-pod-requests-limits/artifacthub-pkg.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,4 +19,4 @@ readme: |
annotations:
kyverno/category: "Best Practices, EKS Best Practices"
kyverno/subject: "Pod"
digest: 6fba669ac94197333cb28249ab01deb6461cc6f909645b721fe66bef78d674ec
digest: bc2fa8b9aed1893274a8bc60abd34fdbe5fbc25d032b7be74214cc1496b77ce1
18 changes: 16 additions & 2 deletions best-practices/require-pod-requests-limits/require-pod-requests-limits.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@ metadata:
This policy validates that all containers have something specified for memory and CPU
requests and memory limits.
spec:
validationFailureAction: audit
validationFailureAction: Audit
background: true
rules:
- name: validate-resources
Expand All @@ -26,10 +26,24 @@ spec:
kinds:
- Pod
validate:
message: "CPU and memory resource requests and limits are required."
message: "CPU and memory resource requests and memory limits are required for containers."
pattern:
spec:
containers:
- resources:
requests:
memory: "?*"
cpu: "?*"
limits:
memory: "?*"
=(initContainers):
- resources:
requests:
memory: "?*"
cpu: "?*"
limits:
memory: "?*"
=(ephemeralContainers):
- resources:
requests:
memory: "?*"
Expand Down
Loading