kyverno/test/conformance/chainsaw/exceptions/conditions/policy.yaml

apiVersion: kyverno.io/v1
kind: ClusterPolicy
metadata:
  name: max-containers
spec:
  validationFailureAction: Enforce
  background: false
  rules:
  - name: max-two-containers
    match:
      any:
      - resources:
          kinds:
          - Pod
    validate:
      message: "A maximum of 2 containers are allowed inside a Pod."
      deny:
        conditions:
          any:
          - key: "{{request.object.spec.containers[] | length(@)}}"
            operator: GreaterThan
            value: "2"
chore: migrate tests to chainsaw (#8997) * chore: migrate tests to chainsaw Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * cleanup Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * fix: exec timeout Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * exceptions Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * exceptions Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> * filter Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> --------- Signed-off-by: Charles-Edouard Brétéché <charles.edouard@nirmata.com> 2023-11-24 01:02:22 +01:00			`apiVersion: kyverno.io/v1`
			`kind: ClusterPolicy`
			`metadata:`
			`name: max-containers`
			`spec:`
			`validationFailureAction: Enforce`
			`background: false`
			`rules:`
			`- name: max-two-containers`
			`match:`
			`any:`
			`- resources:`
			`kinds:`
			`- Pod`
			`validate:`
			`message: "A maximum of 2 containers are allowed inside a Pod."`
			`deny:`
			`conditions:`
			`any:`
			`- key: "{{request.object.spec.containers[] \| length(@)}}"`
			`operator: GreaterThan`
			`value: "2"`