You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
the audit process doesn't trigger a violation for the constraints created from the template, because the operation is not set when the audit process runs.
IMPORTANT: the Admission is not affected, this is only an audit issue. For example, pods that didn't comply with a policy get properly rejected because the review.operation is set.
The text was updated successfully, but these errors were encountered:
ralgozino
changed the title
Provided ConstraintTemplates don't get triggered when audit runs
Provided ConstraintTemplates don't get trigger violations when audit runs
May 16, 2022
Since we added the check for the
review.operation
to the provided ConstraintTemplates, like this:fury-kubernetes-opa/katalog/gatekeeper/rules/templates/livenessprobe_template.yml
Lines 29 to 32 in a745c66
the audit process doesn't trigger a violation for the constraints created from the template, because the
operation
is not set when the audit process runs.Related: open-policy-agent/gatekeeper#333
IMPORTANT: the Admission is not affected, this is only an audit issue. For example, pods that didn't comply with a policy get properly rejected because the
review.operation
is set.The text was updated successfully, but these errors were encountered: