shuting
shuting
Hi @gerardvanengelen - is your change targeting https://github.com/kyverno/kyverno/issues/10488?
Updates - tested with `v1.13.0-beta.1` release, setting orphanDownstreamOnPolicyDelete=true in one rule does preserve the corresponding configmap.
KDP is available https://github.com/kyverno/KDP/pull/52, please feel free to add comments.
With #10875 and #10888, the foreach feature is enabled for existing generate patterns `generate.foreach.data`, `generate.foreach.clone` and `generate.foreach.cloneList`. Logged a separate issue https://github.com/kyverno/kyverno/issues/10951 to support lists of resources for `foreach`.
Another similar request https://kubernetes.slack.com/archives/CLGR9BJU9/p1763110917108619.
Hi @thesuperzapper - we are working on supporting `cloneList` to clone a list of resources, see the design proposal here: https://github.com/kyverno/KDP/pull/52/files#diff-8f58d6400949cb26ad256993231c72529d9a1c8f9fb813fed26731605273b855R87 Would love to hear your feedback.
The clone rule assumes the source resource to be present when applying it. The background controller reconciles the generate and mutate existing policies and remediates any missed admission events, which...
The challenge of allowing variables in a clone rule is how background reconciliation can be handled. We will need to evaluate how it behaves under the following scenarios: 1. with...
Hi @not7cd - thanks for raising the issue, what would be the proper fix to this?
Thanks @not7cd for opening the PR! @JimBugwadia - can you help review?