Update policy seccomp-psp-policy to target high level resources #25
Labels
Comments
19 tasks
jvanz
changed the title
jvanz
added
kind/enhancement
|
This is an issue we see too. It would be really good for the policies to check pod started by higher level objects like deployments, statefulsets and so on. Is this something on the planning to be looked at / picked up? |
|
So far, we are not planning to work on that. However, as you are interested on this. I've added this issue to the Kubewarden board and I'll bring this issue to discussion in our next planning/daily call. I let you know about that asap. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Update the policy from targeting Pod resource to target higher level objects like deployments. This is a better practice because we prevent the resources to be created instead of failing in the deployment phase when the pods are created.
The text was updated successfully, but these errors were encountered: