This PR adds the functionality needed to exclude chart-operator ServiceAccount from custom policies automatically.
The new clusterpolicy controller will check for ClusterPolicy changes and create a custom PolicyException based on the list of Kinds defined in the chartOperatorExcemptedKinds value.
If no Kinds are defined, the controller does not run.
This PR adds the functionality needed to exclude
chart-operator
ServiceAccount from custom policies automatically.The new
clusterpolicy
controller will check for ClusterPolicy changes and create a custom PolicyException based on the list ofKinds
defined in thechartOperatorExcemptedKinds
value.If no
Kinds
are defined, the controller does not run.