Prevent cluster admins from doing dangerous changes, for example deleting a Kubernetes node.
Could Polaris be extended with rules that includes the API action applied? This will only be rules that the Polaris webhook validator can handle as the Polaris dashboard only looks the current state and have no notation of actions. In theory the Polaris dashboard could be extended to show Kubernetes events related to Polaris webhook rejections, however, that would be another feature request.
A solution could be adding the action as a variable available in the GoLang templates in the custom rule definitions.
Prevent cluster admins from doing dangerous changes, for example deleting a Kubernetes node.
Could Polaris be extended with rules that includes the API action applied? This will only be rules that the Polaris webhook validator can handle as the Polaris dashboard only looks the current state and have no notation of actions. In theory the Polaris dashboard could be extended to show Kubernetes events related to Polaris webhook rejections, however, that would be another feature request.
A solution could be adding the action as a variable available in the GoLang templates in the custom rule definitions.