mirrors/kyverno
mirrors/kyverno
1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2025-03-10 18:06:55 +00:00
Code Activity
kyverno/test/conformance/chainsaw/policy-validation/cluster-policy/invalid-pod-security-exceptions/exception-1.yaml
Mariam Fahmy 07a6bf42f5
fix: add podSecurity validation checks for exceptions (#9817) 
Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com>
2024-02-28 08:21:10 +00:00

23 lines
482 B
YAML
Raw Blame History

apiVersion: kyverno.io/v2
kind: PolicyException
metadata:
creationTimestamp: null
name: exception-1
spec:
exceptions:
- policyName: psa
ruleNames:
- restricted
match:
all:
- resources:
kinds:
- Pod
podSecurity:
- controlName: Capabilities
- controlName: Host Namespaces
- controlName: HostPath Volumes
- controlName: Privilege Escalation
- controlName: Running as Non-root
- controlName: Seccomp
- controlName: Volume Types
View git blame Copy permalink