github kyverno/policy-reporter policy-reporter-preview-3.0.0-alpha.28
on GitHub

latest releases: policy-reporter-3.0.0-rc.9, policy-reporter-chart-v3.0.0-rc.9, v3.0.0-rc.5...
6 months ago

New PolicyReport Filter Layer "SourceFilter"

This new filter options can be applied on a subset of (Cluster)PolicyReport selected by source, to optimize report processing based on the underlying engine

Filter Options:

  • Namespace Filter
  • Kind Filter
  • Disable ClustrPolicyReports
  • Process Uncontrolled Resources only
    • If enabled all PolicyReports related to an controlled scope resource like Pod and Job are skipped
    • Its useful and enabled by default for Kyverno to skip PolicyReports of Pods, Jobs or ReplicaSets if the same report exists for the related controller like Deployment, DaemonSet, Statefulset, CronJob

Side Effects:

  • Reduces/Impacts the amount of Metrics because it only processes reports of the controller resource
  • Only one Notification for the controller resource
  • Better API performance because less data in the Database

Default Configuration

# -- Source based PolicyReport filter
sourceFilters:
  # -- PolicyReport selector.
- selector:
    # -- select PolicyReport by source
    source: kyverno
  # -- Filter out PolicyReports of controlled Pods and Jobs, only works for PolicyReport with scope resource
  uncontrolledOnly: true
  # -- Filter out ClusterPolicyReports
  disableClusterReports: false
  # -- Filter out PolicyReports based on the scope resource kind
  kinds:
    exclude: [ReplicaSet]

Full Changelog: policy-reporter-preview-3.0.0-alpha.25...policy-reporter-preview-3.0.0-alpha.28

Check out latest releases or
releases around kyverno/policy-reporter policy-reporter-preview-3.0.0-alpha.28

Don't miss a new policy-reporter release

NewReleases is sending notifications on new releases.

Get notifications