Carlos R.F.

I deleted all the pods in the kube armor namespace, and some hours later, it was already misapplying policies. A very simple policy: ``` apiVersion: security.kubearmor.com/v1 kind: KubeArmorPolicy metadata: name:...

It looks like the bug is right here? https://github.com/kubearmor/KubeArmor/blob/7e7b1c390316970b42ddfc13b725187ef0c4b9f1/KubeArmor/core/kubeUpdate.go#L1016 It adds the policy to the return if this returns true `|| matchClusterSecurityPolicyRule(policy)` ...but that function doesn't check whether the passed...

> It looks like the bug is right here? > > https://github.com/kubearmor/KubeArmor/blob/7e7b1c390316970b42ddfc13b725187ef0c4b9f1/KubeArmor/core/kubeUpdate.go#L1016 > > It adds the policy to the return if this returns true `|| matchClusterSecurityPolicyRule(policy)` > > ...but...

> > It looks like the bug is right here? > > https://github.com/kubearmor/KubeArmor/blob/7e7b1c390316970b42ddfc13b725187ef0c4b9f1/KubeArmor/core/kubeUpdate.go#L1016 > > > > It adds the policy to the return if this returns true `|| matchClusterSecurityPolicyRule(policy)`...

> > > It looks like the bug is right here? > > > https://github.com/kubearmor/KubeArmor/blob/7e7b1c390316970b42ddfc13b725187ef0c4b9f1/KubeArmor/core/kubeUpdate.go#L1016 > > > > > > It adds the policy to the return if this...

This is somewhat related to this PR: https://github.com/kubearmor/policy-templates/pull/1050

The change to the operator CRD is also desirable to be able to set the log level in the `values.yaml` in the helm chart for the controller: https://github.com/kubearmor/KubeArmor/pull/1849

More details for the Proposal: ``` kubearmor: image: repository: ? tag: ? pullPolicy: ? args: [] resources: limits: cpu: ? memory: ? requests: cpu: ? memory: ? kubearmorRelay: image: repository:...