Ethern Su

> If you run `kubectl get api-resources` do these resources show up in the results? > > Gatekeeper uses kubernetes' discovery API. It can't know whether given resources are auditable...

> @ethernoy did the `--audit-match-kind-only=true` flag help? I suspect this issue was caused by a weird deployment model I used: I deployed gatekeeper on cluster 1 with namespace A, B,...

> Do you have a use case that is blocked by not having more sophisticated condition checking? Yes. For instance, I wish to use gatekeeper to enforce a rule as...

I am having exactly the same issue when using gatekeeper 3.6.0 with helm chart 3.6.0 after upgrading the helm release. Below is my value.yaml: ```yaml replicas: 2 disableValidatingWebhook: false experimentalEnableMutation:...

I just found another cluster in my environment is having the same issue for days. Below are the detailed informations: In this environment, there are two gatekeeper controller manager pods....

Attached log file: [sit-troubleshoot-logs.xlsx](https://github.com/open-policy-agent/gatekeeper/files/7543723/sit-troubleshoot-logs.xlsx)

> Thanks for digging in to this! > > Some latency is expected, but certainly not days. We rely on the core controller-runtime library to load/watch certs. The library that...

Seems there is a racing condition when enabling multiple replica of gatekeeper. Would like to know if multi-replica will cause this issue as well https://github.com/open-policy-agent/gatekeeper/issues/1045#issuecomment-968694986

> There should be no problem with any amount of replicas as far as core Gatekeeper logic is concerned, with the caveat that the more replicas you use, the longer...

> Sure, though I would go straight to Open Telemetry. Great, then let me work on it