Varsha Varadarajan
a198e0364b
Merge pull request #97 from jasimmons/jasimmons/cronjob-concurrency-check
...
Add CronJob Concurrency Check
2020-11-09 16:17:20 -08:00
Jason Simmons
8ae5d67a80
Add cronjob-concurrency to checks.md
2020-11-09 14:04:30 -05:00
Varsha Varadarajan
2edf737cb0
webhook-replacement: ensure that the webhook rules are applicable to v1, apps/*
2020-11-05 14:16:51 -08:00
Jeremy L. Morris
e6ec7b4515
Add webhook check for timeouts
...
* Update docs to include Admission Controller Webhook Timeout check with fix
* Update file naming to be more consistent for admission controller webhooks
* Fix typo in webhook replacement struct name
2020-06-15 12:07:35 -04:00
Varsha Varadarajan
aa7e326e5a
Update node labels diagnostics to mention persistent node pool labels
2020-05-28 09:15:28 -07:00
Nan Zhong
60ca69cadc
Add missing heading for check
2019-11-25 14:44:54 +00:00
Nan Zhong
08da1a28bb
Introduce basic admission webhook checks to handle error case
2019-11-25 04:57:32 +00:00
Adam Wolfe Gordon
af31dfeada
Update the DOKS admission controller webhook check
...
DOKS has improved handling of webhooks such that the only webhooks that
cause problems are those that:
* Have failurePolicy set to Fail,
* Target a service other than the Kubernetes apiserver, and
* Apply kube-system, and
* Applies to the namespace of the targeted service or are in a
single-node cluster.
Update the webhook check to reflect this improvement.
2019-10-01 11:18:21 -06:00
John Mulhausen
727b9932d1
Update checks.md
2019-09-13 15:54:39 -07:00
John Mulhausen
ae26297477
Update checks.md
2019-09-13 15:54:01 -07:00
John Mulhausen
1a5ece18c3
Update checks.md
2019-09-13 15:49:44 -07:00
John Mulhausen
7fe360e209
Update checks.md
...
Co-Authored-By: Adam Wolfe Gordon <awg+github@xvx.ca>
2019-09-13 15:02:02 -07:00
John Mulhausen
2c92a34a59
Update checks.md
...
Co-Authored-By: Adam Wolfe Gordon <awg+github@xvx.ca>
2019-09-13 15:01:38 -07:00
John Mulhausen
0ef97af0f4
Rewrite/reformat of "checks.md"
...
The DO product docs team gave this file some love.
2019-09-11 10:49:19 -07:00
Adam Wolfe Gordon
d43005ebbc
Add a DOKS check for custom node labels and taints
...
In DOKS labels and taints applied to nodes will be lost when the cluster
is upgraded or a node is otherwise replaced. This can cause problems for
workloads if labels or taints are used for scheduling.
Add a warning if any node in a cluster has custom labels or taints.
2019-09-10 11:19:06 -06:00
Varsha Varadarajan
a9b1012994
Refactor run-as-non-root user check
2019-07-23 10:03:46 -04:00
Varsha Varadarajan
f2c948af77
Check if containers are run as root user.
2019-07-23 09:23:33 -04:00
Varsha Varadarajan
1030d9d0ac
Add bare pod check to checks.md
2019-07-16 15:19:40 -04:00
Varsha Varadarajan
b39a543777
Check if resource requests and limits are set on pods
2019-07-08 11:24:05 -04:00
Varsha Varadarajan
279004da51
Check if webhook config references a service before throwing an error
2019-07-02 17:39:26 -04:00
Varsha Varadarajan
5a246761b2
Update checks.md for admission controller webhooks
2019-07-02 17:18:05 -04:00
Varsha Varadarajan
1e9e19a078
Unused secrets: check if there are unused secrets in the cluster.
2019-07-01 21:09:07 -04:00
Varsha Varadarajan
d0eb5a4b0a
Check for config map references in nodes and projected volumes
2019-07-01 10:41:37 -04:00
Varsha Varadarajan
2d097ba31a
Unused config map: check if there are unused configmaps in the cluster.
2019-07-01 09:31:09 -04:00
Varsha Varadarajan
05502e3b32
Unused PVC: Check for unused claims in the cluster.
2019-07-01 09:25:46 -04:00
Varsha Varadarajan
ae35752083
Unused PV: Check if there are unused persistent volumes in the cluster.
2019-06-26 14:40:25 -04:00
Varsha Varadarajan
d5811380e1
Update checks.md to include hostpath volume check.
2019-06-26 09:04:41 -04:00
Varsha Varadarajan
cc400b2a24
Have checks.md to provide details about each check.
...
This is especially useful in documenting the reason behind some of the best practices we recommend.
2019-06-26 08:27:47 -04:00