首页 发现 帮助
登录
akillibulut
/
porter
镜像自地址 https://github.com/porter-dev/porter
2
0
派生 0
文件 工单管理 0 Wiki
分支: git-data-docker-previews
分支列表 标签列表
porter
/
internal
/
opa
/
policies
/
daemonset
/
running.rego

running.rego 853 B
永久链接 文件历史 原始文件

12345678910111213141516171819202122232425 
  1. package daemonset.running
    2. 

  2. 

  3. import future.keywords.contains
    4. 

  4. import future.keywords.every
    5. 

  5. import future.keywords.if
    6. 

  6. import future.keywords.in
    7. 

  7. 

  8. POLICY_ID := "daemonset_running"
    9. 

  9. 

  10. POLICY_VERSION := "v0.0.1"
    11. 

  11. 

  12. POLICY_SEVERITY := "high"
    13. 

  13. 

  14. POLICY_TITLE := sprintf("Daemonset %s in namespace %s should have all replicas available", [input.metadata.name, input.metadata.namespace])
    15. 

  15. 

  16. POLICY_SUCCESS_MESSAGE := sprintf("Success: daemonset has %d / %d pods running", [input.status.numberReady, input.status.desiredNumberScheduled])
    17. 

  17. 

  18. allow if {
    19. 

  19. 	input.status.numberReady == input.status.desiredNumberScheduled
    20. 

  20. }
    21. 

  21. 

  22. FAILURE_MESSAGE contains msg1 if {
    23. 

  23. 	input.status.numberReady != input.status.desiredNumberScheduled
    24. 

  24. 	msg1 := sprintf("Daemonset %s only has %d out of %d pods running", [input.metadata.name, input.status.numberReady, input.status.desiredNumberScheduled])
    25. 

  25. }
    26.