Skip to content

kubectl.kubernetes.io/last-applied-configuration annotation causes false positive on deprecated api report #495

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
2 tasks done
chauncey-garrett opened this issue Jun 28, 2023 · 4 comments · Fixed by #498
Closed
2 tasks done

kubectl.kubernetes.io/last-applied-configuration annotation causes false positive on deprecated api report #495

chauncey-garrett opened this issue Jun 28, 2023 · 4 comments · Fixed by #498
Assignees
@sudermanjr
Labels
documentation Improvements or additions to documentation

Comments

@chauncey-garrett
Copy link

What happened?

We have a CronJob that showed up in the pluto report.

For this resource, the kind has been updated to a current API but the kubectl.kubernetes.io/last-applied-configuration still shows the deprecated API.

apiVersion: batch/v1
kind: CronJob
metadata:
  annotations:
    kubectl.kubernetes.io/last-applied-configuration: |
      {"apiVersion":"batch/v1beta1","kind":"CronJob",...

Here you can see that batch/v1 is used but batch/v1beta1 still exists on the annotation. Pluto marks this as a resource in need of update.

I consider this to be a false positive.

Pluto report:

NAME                                           NAMESPACE               KIND                       VERSION                        REPLACEMENT               DEPRECATED   DEPRECATED IN   REMOVED   REMOVED IN   REPL AVAIL   REPL AVAIL IN  
my-cronjob                                     my-namespace            CronJob                    batch/v1beta1                  batch/v1                  true         v1.21.0         true      v1.25.0      true         v1.21.0

What did you expect to happen?

I'd expect the pluto report to not include results from the kubectl.kubernetes.io/last-applied-configuration annotation since this would require a 2nd deployment to clear items from the report.

How can we reproduce this?

Add a deprecated api to the kubectl.kubernetes.io/last-applied-configuration annotation while using a current one on the resource.

Version

Version:5.16.3 Commit:02eccc41292c2b4380fa05f6406628fd1afe6cb9

Search

  • I did search for other open and closed issues before opening this.

Code of Conduct

  • I agree to follow this project's Code of Conduct

Additional context

No response
@chauncey-garrett chauncey-garrett added bug Something isn't working triage This bug needs triage labels Jun 28, 2023
@sudermanjr
Copy link
Member

Yes, unfortunately this is entirely possible due to the nature of the last-applied-configuration annotation. If this is an issue, I recommend either using Pluto with your Infra-as-Code, or only using the in-cluster helm detection.

We allude to some of the uncertainty of that annotation in the docs here but we could probably expand that to include this issue as well.

@sudermanjr sudermanjr added the documentation Improvements or additions to documentation label Jun 28, 2023
@sudermanjr sudermanjr assigned sudermanjr and unassigned sudermanjr Jun 28, 2023
@sudermanjr
Copy link
Member

Would you be willing to add this to the documentation?

@csimplestring
Copy link

so what is the status now? Any coding task is needed?

@sudermanjr
Copy link
Member

@csimplestring No, there is no coding task needed as far as I can tell, just some better documentation.

@sudermanjr sudermanjr mentioned this issue Jul 11, 2023
Merged
2 tasks
@sudermanjr sudermanjr removed the triage This bug needs triage label Jul 11, 2023
@sudermanjr sudermanjr self-assigned this Jul 11, 2023
@sudermanjr sudermanjr removed the bug Something isn't working label Jul 11, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@sudermanjr sudermanjr

Labels
documentation Improvements or additions to documentation
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Update FAQ with more details about last-applied-configuration issues FairwindsOps/pluto
3 participants
@chauncey-garrett @csimplestring @sudermanjr