kyverno

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-10 18:06:55 +00:00

History

Mariam Fahmy c796bb765c fix: return policies with either audit or enforce rules from the cache (#10667 ) * fix: return policies with either audit or enforce rules from the cache Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * feat: introduce validationFailureAction under verifyImage rules Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * feat: add chainsaw tests Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> * fix Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> --------- Signed-off-by: Mariam Fahmy <mariam.fahmy@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com>		2024-08-06 18:24:28 +00:00
..
chainsaw-test.yaml	chore: convert chainsaw tests to Test resource (#9109 )	2023-12-07 14:08:04 +00:00
policy-assert.yaml	chore: all chainsaw tests (#9011 )	2023-11-24 11:17:58 +01:00
policy.yaml	fix: return policies with either audit or enforce rules from the cache (#10667 )	2024-08-06 18:24:28 +00:00
policy_exception.yaml	chore: use v2 for exceptions in chainsaw tests (#10529 )	2024-06-24 11:54:57 +00:00
README.md	chore: all chainsaw tests (#9011 )	2023-11-24 11:17:58 +01:00
resource.yaml	chore: all chainsaw tests (#9011 )	2023-11-24 11:17:58 +01:00

README.md

Description

This test is attempting to create a resource with the label "app: my-test-app", which would typically violate the policy defined. However, there is a policy exception defined for resources with the same label, which should bypass the policy. Since the Policy Exception feature has not been enabled, the resource will be blocked by the policy instead of being allowed.

Expected Behavior

The Pod should be blocked.