feat(rules): kubernetes rule to require labels
This commit is contained in:
parent
ac86e698de
commit
aa350ccb71
|
@ -4,9 +4,8 @@ rules:
|
||||||
desc: containers must have complete resources specified
|
desc: containers must have complete resources specified
|
||||||
level: info
|
level: info
|
||||||
tags:
|
tags:
|
||||||
- cluster-health
|
|
||||||
- important
|
|
||||||
- kubernetes
|
- kubernetes
|
||||||
|
- resources
|
||||||
|
|
||||||
select: '$.spec.template.spec.containers[*]'
|
select: '$.spec.template.spec.containers[*]'
|
||||||
check:
|
check:
|
||||||
|
@ -46,7 +45,7 @@ rules:
|
||||||
level: debug
|
level: debug
|
||||||
tags:
|
tags:
|
||||||
- kubernetes
|
- kubernetes
|
||||||
- optional
|
- resources
|
||||||
|
|
||||||
select: '$.spec.template.spec.containers[*].resources'
|
select: '$.spec.template.spec.containers[*].resources'
|
||||||
# filter containers with cpu limits
|
# filter containers with cpu limits
|
||||||
|
@ -76,8 +75,9 @@ rules:
|
||||||
desc: deployments must specify a positive replica count
|
desc: deployments must specify a positive replica count
|
||||||
level: info
|
level: info
|
||||||
tags:
|
tags:
|
||||||
- important
|
|
||||||
- kubernetes
|
- kubernetes
|
||||||
|
- apps
|
||||||
|
- deployment
|
||||||
|
|
||||||
# select the root of the document
|
# select the root of the document
|
||||||
select: '$'
|
select: '$'
|
||||||
|
@ -100,3 +100,26 @@ rules:
|
||||||
replica:
|
replica:
|
||||||
type: number
|
type: number
|
||||||
minimum: 1
|
minimum: 1
|
||||||
|
|
||||||
|
- name: kubernetes-labels
|
||||||
|
desc: all resources should have labels
|
||||||
|
level: info
|
||||||
|
tags:
|
||||||
|
- kubernetes
|
||||||
|
- labels
|
||||||
|
|
||||||
|
select: '$'
|
||||||
|
check:
|
||||||
|
type: object
|
||||||
|
required: [metadata]
|
||||||
|
properties:
|
||||||
|
metadata:
|
||||||
|
type: object
|
||||||
|
required: [labels]
|
||||||
|
properties:
|
||||||
|
labels:
|
||||||
|
type: object
|
||||||
|
additionalProperties: false
|
||||||
|
patternProperties:
|
||||||
|
"^[-.a-z0-9]{1,63}$":
|
||||||
|
type: string
|
Loading…
Reference in New Issue