gatekeeper
gatekeeper copied to clipboard
🐊 Gatekeeper - Policy Controller for Kubernetes
for example 3.6 adds `gatekeeper-update-crds-hook` without any explanation on who needs it / what it does / how to monitor it
We should use a GitHub action that lets us be sure the docs build (and maybe also preview them to check that they aren't wonky). A lot of projects use...
**Describe the solution you'd like** I would like to be able to define multiple values for the same location when using AssignMetadata, like this: ``` apiVersion: mutations.gatekeeper.sh/v1alpha1 kind: AssignMetadata metadata:...
In the gatekeeper helm chart, this job if enabled does not use many of the common values or expose its own that might affect scheduling that the rest of the...
**Describe the solution you'd like** A clear documentation on replica setting (e.g. will 1 replica work? will 3 replica work? any implication on replica setting?) **Anything else you would like...
**Describe the solution you'd like** The [replicating data](https://open-policy-agent.github.io/gatekeeper/website/docs/sync) feature requires explicitly specifying resource versions. I'd like to be able to sync *all* versions of a resource, without having to specify...
I want to have: - some constraints that are only audited and not enforced (trialing them or only using them to gather data) - some constraints that are only enforced...
We want to audit a large list of resources (5k+). Putting the violations onto the rules will not scale since we'd hit etcd object limit. So we need gatekeeper_violations to...
**What steps did you take and what happened:** Deployed OPA Gatekeeper along with --audit-from-cache=true set. The Gatekeeper Audit pod seems to start and get all the relevant metadata from the...
**What steps did you take and what happened:** [A clear and concise description of what the bug is.] Deployed gatekeeper and created a constraint template. In Gatekeeper controller pod logs,...