Kubernetes Best Practices policies are written using Kyverno patterns and JMESPath, which means they cannot be executed as ValidatingAdmissionPolicy resources in the API server.
Solution Description
Convert Kubernetes Best Practices policies, and other validating policies, to CEL wherever possible.
Problem Statement
Kubernetes Best Practices policies are written using Kyverno patterns and JMESPath, which means they cannot be executed as ValidatingAdmissionPolicy resources in the API server.
Solution Description
Convert Kubernetes Best Practices policies, and other validating policies, to CEL wherever possible.
Example "Good" Resource
No response
Example "Bad" Resource
No response
Other Comments
No response
Slack discussion
No response
Troubleshooting