In the emojivoto-demo deployment YAML that we released with v0.6.0, the namespace is explicitly set to the empty string.
While this is valid for Kubernetes (empty string is synonym to the default namespace), genpolicy can't handle these empty strings and will enforce in the policy the literal empty string, leading to the deployment being unable to start.
Backport of #465 to
release/v0.6.Original description:
In the emojivoto-demo deployment YAML that we released with v0.6.0, the namespace is explicitly set to the empty string. While this is valid for Kubernetes (empty string is synonym to the default namespace), genpolicy can't handle these empty strings and will enforce in the policy the literal empty string, leading to the deployment being unable to start.