kubewarden-controller icon indicating copy to clipboard operation
kubewarden-controller copied to clipboard

Published 20 hours ago verified publisher icon kubewarden

Feature Request: Ability to have dedicated policy servers for Audit Scanning

Open brunorene opened this issue 8 months ago • 0 comments

Is your feature request related to a problem?

Yes. Whenever the audit scanner starts there is a degradation of service on the validating/mutating webhooks due to the added load on the policy servers.

Solution you'd like

At this moment it is possible to have policies dedicated to webhooks, or used for webhooks and audit scan. It would be good that we could also have the ability to have them dedicated to audit scanning too. Now we have the backgroundAudit boolean field. You could introduce a foregroundWebhook (🤷🏻 ?) boolean field that would control if this policy is configured for webhooks or not - that would be true by default.

Alternatives you've considered

At the moment there are no alternatives :(

Anything else?

No response

brunorene avatar May 28 '24 08:05 brunorene