mirror of
https://github.com/kyverno/kyverno.git
synced 2025-03-06 07:57:07 +00:00
44 lines
885 B
YAML
Executable file
44 lines
885 B
YAML
Executable file
apiVersion: chainsaw.kyverno.io/v1alpha1
|
|
kind: Test
|
|
metadata:
|
|
creationTimestamp: null
|
|
name: exclude-privileged-containers
|
|
spec:
|
|
steps:
|
|
- name: step-01
|
|
try:
|
|
- apply:
|
|
file: policy.yaml
|
|
- assert:
|
|
file: policy-assert.yaml
|
|
- name: step-02
|
|
try:
|
|
- apply:
|
|
file: ns.yaml
|
|
- assert:
|
|
file: ns.yaml
|
|
- name: step-03
|
|
try:
|
|
- apply:
|
|
file: exception.yaml
|
|
- name: step-04
|
|
try:
|
|
- apply:
|
|
file: pod-allowed-1.yaml
|
|
- apply:
|
|
file: pod-allowed-2.yaml
|
|
- apply:
|
|
expect:
|
|
- check:
|
|
($error != null): true
|
|
file: pod-rejected-1.yaml
|
|
- apply:
|
|
expect:
|
|
- check:
|
|
($error != null): true
|
|
file: pod-rejected-2.yaml
|
|
- apply:
|
|
expect:
|
|
- check:
|
|
($error != null): true
|
|
file: pod-rejected-3.yaml
|