search

elastisys / compliantkubernetes-apps

Elastisys Compliant Kubernetes is an open source, Certified Kubernetes distribution designed according to the ISO27001 controls: providing you with security tooling and observability from day one.
https://elastisys.io/compliantkubernetes/
Apache License 2.0
44 stars 7 forks source link

Investigate Prometheus rule upstream #905

Open aarnq opened 2 years ago

aarnq commented 2 years ago

What should be investigated. What technology/product/concept should be investigated?

With Thanos Ruler we are dependent on being able to control which Prometheus rule are evaluated where, and to ensure that they keep the cluster label in aggregations. This has led to us manually patching the rules provided by upstream/kube-prometheus-stack copied over into charts/prometheus-alerts, which will be a lot of work to maintain during upgrades.

We should investigate if we can change the upstream for these rules, possibly the upstream of kube-prometheus-stack kubernetes-mixin, and render them into the yaml we want.

What artifacts should this produce. How should the knowledge gathered from this task be captured.

A procedure to upgrade our Prometheus rules with minimal effort.

crssnd commented 6 months ago

take also a look at https://github.com/elastisys/compliantkubernetes-apps/issues/1941