search

Azure / azure-policy

Repository for Azure Resource Policy built-in definitions and samples
MIT License
1.5k stars 1.09k forks source link

Allow `csi` volumes in the Kubernetes restricted initiative #1249

Closed aelij closed 7 months ago

aelij commented 10 months ago

According to Pod Security Standards Restricted policy, csi volume types are allowed: https://kubernetes.io/docs/concepts/security/pod-security-standards/#restricted

This volume type is required to use the Key Vault CSI driver.

Is there a reason it's excluded from the initiative?

https://github.com/Azure/azure-policy/blob/886c4dfa908118cce206e537c5b0b6ed441c7d9b/built-in-policies/policySetDefinitions/Kubernetes/Kubernetes_PSPRestrictedStandard.json#L191-L200

fseldow commented 10 months ago

thx for feedback. ack will fix it. But due to Chirsmas, the ETA will be around Jan

aelij commented 7 months ago

Looks like it has been fixed, thanks!