Policies for Portefaix project using :
| Policy | Kyverno | OPA | Kubewarden | Kubernetes (CEL) |
|---|---|---|---|---|
portefaix-C0001 - Container must not use latest image tag |
✅ | ✅ | ❌ | ✅ |
portefaix-C0002 - Container must set liveness probe |
✅ | ✅ | ❌ | ✅ |
portefaix-C0003 - Container must set readiness probe |
✅ | ✅ | ❌ | ✅ |
portefaix-C0008 - Container resource constraints must be specified |
✅ | ✅ | ❌ | ✅ |
portefaix-M0001 - Metadata must set recommanded Kubernetes labels |
✅ | ✅ | ✅ | ✅ |
portefaix-M0002 - Metadata should have a8r.io annotations |
✅ | ✅ | ✅ | ✅ |
portefaix-M0003 - Metadata should have portefaix.xyz labels |
✅ | ✅ | ✅ | ✅ |
portefaix-N0001 - Disallow Default Namespace |
✅ | ❌ | ❌ | ✅ |
See CONTRIBUTING.md