sundowndev
/
clusterlint
mirror of https://github.com/sundowndev/clusterlint.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
123 Commits
7 Branches
13 Tags
11 MiB
Commit Graph

60 Commits (6aab1337967984238dfb4483655abb03df7dde10)

Author SHA1 Message Date
Varsha Varadarajan 2e791b3ad5 Fix check filter bug: check if includeGroups and excludeGroups are mutually exclusive 2019-07-15 15:53:43 -04:00
Varsha Varadarajan 848515cb45 Introduce DiagnosticFilter to store fields based on which diagnostics will be filtered 2019-07-11 15:20:05 -04:00
Varsha Varadarajan 7b76406624 Move run checks into the checks package 2019-07-11 15:05:45 -04:00
Varsha Varadarajan b39a543777 Check if resource requests and limits are set on pods 2019-07-08 11:24:05 -04:00
Varsha Varadarajan 98cd5d2b7a Filter diagnostics based on enabled checks while writing diagnostics to stdout 2019-07-02 19:20:26 -04:00
Varsha Varadarajan 5f62173e0b Check for clusterlint specific annotation to disable checks for special objects. 2019-07-02 19:17:53 -04:00
Varsha Varadarajan 279004da51 Check if webhook config references a service before throwing an error 2019-07-02 17:39:26 -04:00
Varsha Varadarajan 92e0e9dfe2 Admission webhook check: Add a doks specific error is webhook applies to objects in kube-system namespace 2019-07-02 17:18:05 -04:00
Varsha Varadarajan dc2b0df5c3 Rename unused-pvc.go => unused_pvc.go 2019-07-02 17:16:40 -04:00
Adam Wolfe Gordon 2b080d1b9a Add license header to all files 2019-07-02 13:30:42 -06:00
Varsha Varadarajan 9dc3f3f18c Check for references to secret in projected volume. 2019-07-01 21:15:14 -04:00
Varsha Varadarajan 1e9e19a078 Unused secrets: check if there are unused secrets in the cluster. 2019-07-01 21:09:07 -04:00
Varsha Varadarajan 74152bddb0 Use empty struct in map while checking for object references 2019-07-01 21:05:56 -04:00
Varsha Varadarajan d0eb5a4b0a Check for config map references in nodes and projected volumes 2019-07-01 10:41:37 -04:00
Varsha Varadarajan 2d097ba31a Unused config map: check if there are unused configmaps in the cluster. 2019-07-01 09:31:09 -04:00
Varsha Varadarajan 05502e3b32 Unused PVC: Check for unused claims in the cluster. 2019-07-01 09:25:46 -04:00
Varsha Varadarajan eee7b8c4a8 Use constructor to initialize instances of CheckFilter 2019-06-30 14:10:34 -04:00
Varsha Varadarajan ad278622e4 Show an error if group not found. 2019-06-28 13:44:46 -04:00
Varsha Varadarajan 4fdebb22d3 Use check filter to store groups and checks to run/ignore 2019-06-28 13:40:52 -04:00
Varsha Varadarajan 4dbcbefec6 Run command: provide option to whitelist and blacklist checks 2019-06-28 10:44:53 -04:00
Varsha Varadarajan 1b032d145b Run command: Provide options to whitelist and blacklist groups 2019-06-28 10:01:02 -04:00
Varsha Varadarajan d97a10d1b3 List command: Provide option to whitelist and blacklist groups for listing 2019-06-28 09:42:21 -04:00
Varsha Varadarajan f0618e9133 Fix golint errors. 2019-06-28 08:33:20 -04:00
Varsha Varadarajan 975a255a50 Improve default namespace check for secrets: Use upstream constant to exclude default secret sa token from check. 2019-06-27 11:12:55 -04:00
Varsha Varadarajan 3384e0b25d Use long names for k8s object constants 2019-06-27 08:07:35 -04:00
Varsha Varadarajan ae35752083 Unused PV: Check if there are unused persistent volumes in the cluster. 2019-06-26 14:40:25 -04:00
Varsha Varadarajan 8bacdc73a0 Change desc assertion in all tests, rename variables to conform to convention 2019-06-26 09:25:07 -04:00
Varsha Varadarajan 85fdefe8b1 Show volume name in errors. 2019-06-26 08:43:06 -04:00
Varsha Varadarajan 28e57071f5 Hostpath check: Checks if there are pods which use hostpath volumes 2019-06-26 08:29:06 -04:00
Varsha Varadarajan 695765302e Add level flag to filter output based on severity: error, warning, or suggestion 2019-06-25 14:19:41 -04:00
Varsha Varadarajan 171ba02f4e Remove TypeMeta from Diagnostic. 
* The k8s API does not set TypeMeta on objects when the list API is used
 2019-06-25 14:19:20 -04:00
Varsha Varadarajan 4be81f8fca Add cli flag for output format 
* Displays json if flag is provided, else display human readable string.
 2019-06-25 14:19:20 -04:00
Varsha Varadarajan 65ba22e8d8 Use owner references to indicate the objects that refer to the problematic object. 
* Change output format to json
 2019-06-25 14:19:20 -04:00
Varsha Varadarajan 0320c5633a Introduce Diagnostic struct to store check output 2019-06-25 09:42:27 -04:00
Varsha Varadarajan 19c60903e8 Remove quotas and limits from default-namespace check. 
* It is perfectly reasonable to have resource quotas and limit ranges in the default namespace in order to avoid resource monopolization.
 2019-06-24 11:51:32 -04:00
Varsha Varadarajan 3e49be5d62 Refactor latest-tag check to use docker distribution package. 2019-06-21 12:08:30 -04:00
Varsha Varadarajan 500858d2d1 Change group for pod-state check to workload-health 2019-06-20 15:28:24 -04:00
Varsha Varadarajan 4a3e055e13 Pod state check: Checks the cluster for pods in unknown or failed state. 2019-06-20 15:14:44 -04:00
Varsha Varadarajan e8223d9204 Separate messages for malformed image and fully qualified image. 2019-06-20 15:13:43 -04:00
Varsha Varadarajan d1469a006c Fully qualified image: Check if container uses fully qualified image names 2019-06-20 10:17:56 -04:00
Varsha Varadarajan b2768bdb56 Change assertion order in tests. 2019-06-19 19:19:09 -04:00
Varsha Varadarajan 2da3158afa Privileged container check: Add warning if a privileged container container is found. 2019-06-19 08:41:46 -04:00
Varsha Varadarajan 716f6d8efd Fix image names in test. 2019-06-18 17:00:17 -04:00
Varsha Varadarajan 159ca8317a Rename latest_go_test to latest_tag_test 2019-06-18 16:20:00 -04:00
Varsha Varadarajan 283bf23c49 Add tests around metadata for each check 2019-06-18 14:06:58 -04:00
Varsha Varadarajan e2ef830747 Latest tag check: Check if containers and initContainers in a pod use image with latest tag. 2019-06-18 11:54:23 -04:00
Varsha Varadarajan ef42156f40
Merge pull request #9 from digitalocean/varsha/node-name 
Add node name check: Checks for pods which use node name in the node selector.
 2019-06-16 08:32:05 -04:00
Varsha Varadarajan baa0bf739c Add node name check: Checks for pods which use node name in the node selector. 2019-06-16 08:31:25 -04:00
Timo Reimann 880c78e9a5 Use Kubernetes upstream constant for default namespace 2019-06-14 22:41:21 +02:00
Varsha Varadarajan edca20d2a0 Iterate over each type of object list to check namespace 2019-06-14 14:10:28 -04:00