Kyverno - v1.9.2
⚠️ Changed ⚠️
- Burst limit (
--clientRateLimitBurst
) has its defaults increased from50
to300
and QPS (--clientRateLimitQPS
) from20
to300
which should fix issues in very large clusters with admission reports not getting aggregated quickly enough to the final Policy Report (#6540, #6532) - Report controller workers have been increased from 2 to 10 which, along with the burst and QPS increases listed above, should help reconcile reports much faster (#6532)
- Included a message on how to bypass Kyverno policy schema validation (
spec.schemaValidation
) when Kyverno is not able to validate if a rule is correct (#6604)
🐛 Fixed 🐛
- Policies in
Audit
mode are processed correctly when admission reports are disabled (#6545) - Fixed duplicate messages in a policy report message field when using a podSecurity subrule (#6634)
- Fixed a controller duration computation (#6569)
Click to expand all PRs
#6545 fix: process audit policies when admission reports are disabled #6540 fix: increase burst #6532 fix: improve reports controller default values and workers #6531 fix: process audit policies when admission reports are disabled #6522 fix: improve reports controller default values and workers #6332 More kuttl standard generate tests #6634 fix: skip duplicate PSa checks for the latest version #6604 fix: add message to bypass schema validation when it fails #6569 fix: controller duration computationDetails
date
March 22, 2023, 4:21 a.m.
name
v1.9.2
type
Patch
official page
👇
Register or login to:
- 🔍View and search all Kyverno releases.
- 🛠️Create and share lists to track your tools.
- 🚨Setup notifications for major, security, feature or patch updates.
- 🚀Much more coming soon!