Disable kyverno in artifacthub values and add another flag, or rename enabled, named myNextPolicyEngineWontBeKyverno (like sways old nvidia flag --my-next-gpu-wont-be-nvidia).
Kyverno has been the reason for a couple of api server "memory leaks" by way of ginormous CR creation without cleanup, resulting in multiple crashed control planes.
For the little benefit kyverno brings it's really not worth it.
After this we should create a follow up ticket to design a replacement.
Disable kyverno in artifacthub values and add another flag, or rename
enabled, namedmyNextPolicyEngineWontBeKyverno(like sways old nvidia flag--my-next-gpu-wont-be-nvidia).Kyverno has been the reason for a couple of api server "memory leaks" by way of ginormous CR creation without cleanup, resulting in multiple crashed control planes.
For the little benefit kyverno brings it's really not worth it.
After this we should create a follow up ticket to design a replacement.