open-policy-agent/gatekeeper-library

Issues

• `variables.anyObject` should be used for required labels CEL

  #531 opened 18 days ago by maxsmythe
  0

• Example of pod mutation adding init-container

  #492 opened 3 months ago by oreillymj
  4

• K8sRequiredResources ConstraintTemplate doesn't work properly

  #522 opened a month ago by rkosyk
  1

• replicalimits unit tests do not include checks for Scale resources

  #419 opened 8 months ago by skaven81
  4

• Website generator appears to only retain the final mutation sample per directory

  #446 opened 6 months ago by apeabody
  2

• poddisruptionbudget policy query

  #510 opened 2 months ago by pankajmt
  0

• The example of disallowed/allowed ingress resources in the unique ingress host example has incorrect hostnames

  #484 opened 4 months ago by WilliamRockwellEvans
  7

• Not able to create statefulset without storageclass with policy k8sallowedstorageclas is used

  #469 opened 2 months ago by Sarvindhreddy
  1

• Should apparmor always view unconfined as complaint?

  #475 opened 4 months ago by fseldow
  3

• Any interest in policies/constraints that apply to custom resources?

  #451 opened 6 months ago by Speeddymon
  3

• k8spsphostnetworkingports exemptImages does not allow hostNetwork

  #460 opened 2 months ago by whs
  4

• automount-serviceaccount-token ConstraintTemplate does not reflect ServiceAccount settings

  #462 opened 2 months ago by owwweiha
  1

• add cel-based policies

  #390 opened 10 months ago by sozercan
  4

• Example k8scontainerlimits does not throw error for a deployment but does on a plain Pod creation

  #499 opened 2 months ago by ujjwal-sophos
  2

• Add colon in message for consistency

  #489 opened 3 months ago by apeabody
  0

• Workflow Upload artifacts: overwrites the matrixed job logs

  #458 opened 3 months ago by apeabody
  1

• Consider validating pod generic ephemerals in K8sStorageClass

  #436 opened 7 months ago by apeabody
  2

• Consolidating Kubernetes PSP-related ConstraintTemplates into a Single Template for Streamlined Migration

  #441 opened 4 months ago by Ga13Ou
  1

• Constraint to block deployment of pods with containers having either `stdin: true` or `tty: true`

  #306 opened 5 months ago by tspearconquest
  13

• gatekeeper and PSS

  #342 opened 10 months ago by caduceus4
  4

• Host networking constraint template does not respect exempt images

  #374 opened 6 months ago by g-psantos
  2

• Refresh the content in Artifact-hub whenever any of the files within the policy are modified

  #375 opened 6 months ago by nilekhc
  2

• bump mutate assign api version from alpha to v1

  #444 opened 6 months ago by fseldow
  0

• Docs exclude kind: AdmissionReview

  #400 opened 7 months ago by apeabody
  0

• Update Privileged Container Policy

  #371 opened 8 months ago by michaelm-88
  3

• Apply constraints for immutable fields only to CREATE operations

  #346 opened 9 months ago by ordovicia
  10

• Match everything in a constraint

  #397 opened 9 months ago by asierraq
  2

• Problem with creating a mutation for deployments

  #401 opened 9 months ago by AleixoLucas42
  4

• enforcementAction: deny is not respected when creating/changing to an incorrect PDB

  #359 opened 9 months ago by christiancarle-bakery
  1

• docs: explicitly call out samples are provided as an example

  #376 opened 10 months ago by sozercan
  0

• Migrate require-sync CI to future gatekeeper 3.13 requires-sync-data unmarshal function

  #345 opened 10 months ago by apeabody
  0

• Extend PodDisruptionPolicy to Include MinAvailable and MaxAvailable Percentages

  #343 opened 10 months ago by pallav-G
  1

• poddisruptionbudget constraint template query

  #341 opened a year ago by pankajmt
  1

• [artifact hub] add CNCF and official labels

  #316 opened a year ago by sozercan
  1

• [Website] add some human-readable text explaining what the Mutation examples do

  #290 opened a year ago by nilekhc
  2

• [Website] Automate the process of updating sidebar to add new templates

  #293 opened a year ago by JaydipGabani
  3

• Not able to use allowedrepos and disallowedtags policies together

  #304 opened a year ago by Anto450
  2

• fix version check in Artifact Hub generation

  #331 opened a year ago by nilekhc
  0

• enable dependabot

  #321 opened a year ago by nilekhc
  1

• website: automate generation of sidebar

  #299 opened a year ago by sozercan
  2

• New policies are added to the wrong path on the website

  #314 opened a year ago by ritazh
  4

• PSP-Rules exemption based on Label or Annotations or deployment

  #288 opened a year ago by raviranjanelastisys
  2

• proc-mount rego has potential bug

  #311 opened a year ago by fseldow
  0

• k8spoddisruptionbudget not working when pdb created after deployment

  #279 opened a year ago by NissesSenap
  3

• K8sReplicaLimits violation msg has hardcoded kind

  #308 opened a year ago by apeabody
  0

• document support policy

  #277 opened a year ago by sozercan
  1

• remove storageclass and gk 3.8 check in CI

  #284 opened a year ago by sozercan
  1

• Add constraint to restrict allowed CSI drivers

  #275 opened a year ago by sathieu
  1

• bump ci to use gk 3.11 and 3.10

  #272 opened a year ago by sozercan
  0

• fix integration CI

  #276 opened a year ago by sozercan
  3