Lars Hvam
27812d2f86
docs: fix anchor for resource-requirements
2022-03-12 08:38:05 +01:00
Sharmita Das
65671f2138
Update contet for PDOCS-1370
2022-02-07 17:38:16 -05:00
Sharmita Das
3513d3f237
Minor edits
2021-05-25 16:10:39 -04:00
Sharmita Das
cde6366b70
Edits
2021-05-19 17:21:37 -04:00
sharmita3
3c1e80cb73
Updated timeout seconds
2021-04-26 17:00:04 -04:00
Varsha Varadarajan
84f4b228ee
update the max timeout seconds for the webhook timeout check doc
2021-02-23 08:22:41 -08:00
Cees-Jan Kiewiet
e009c96c73
Error on images from docker.pkg.github.com
...
Since Kubernetes 1.20 containerd is used instead of Docker as the container runtime.
Containerd is due to protocol version differences/support/mismatch unabled to
pull images hosted at docker.pkg.github.com. The new check in this commit will
error when it finds an image from that registry, and suggests to use ghcr.io,
which is also hosted and operated by GitHub, and the successor of
docker.pkg.github.com.
Refs:
* https://github.com/containerd/containerd/issues/3291#issuecomment-683700425
* https://docs.github.com/en/packages/guides/migrating-to-github-container-registry-for-docker-images#domain-changes
2021-02-12 09:14:46 +01:00
Varsha Varadarajan
ae6b279dea
add dobs-pod-owner check to checks.md
2021-01-05 13:05:21 -08:00
Varsha Varadarajan
a198e0364b
Merge pull request #97 from jasimmons/jasimmons/cronjob-concurrency-check
...
Add CronJob Concurrency Check
2020-11-09 16:17:20 -08:00
Jason Simmons
8ae5d67a80
Add cronjob-concurrency to checks.md
2020-11-09 14:04:30 -05:00
Varsha Varadarajan
2edf737cb0
webhook-replacement: ensure that the webhook rules are applicable to v1, apps/*
2020-11-05 14:16:51 -08:00
Jeremy L. Morris
e6ec7b4515
Add webhook check for timeouts
...
* Update docs to include Admission Controller Webhook Timeout check with fix
* Update file naming to be more consistent for admission controller webhooks
* Fix typo in webhook replacement struct name
2020-06-15 12:07:35 -04:00
Varsha Varadarajan
aa7e326e5a
Update node labels diagnostics to mention persistent node pool labels
2020-05-28 09:15:28 -07:00
Nan Zhong
60ca69cadc
Add missing heading for check
2019-11-25 14:44:54 +00:00
Nan Zhong
08da1a28bb
Introduce basic admission webhook checks to handle error case
2019-11-25 04:57:32 +00:00
Adam Wolfe Gordon
af31dfeada
Update the DOKS admission controller webhook check
...
DOKS has improved handling of webhooks such that the only webhooks that
cause problems are those that:
* Have failurePolicy set to Fail,
* Target a service other than the Kubernetes apiserver, and
* Apply kube-system, and
* Applies to the namespace of the targeted service or are in a
single-node cluster.
Update the webhook check to reflect this improvement.
2019-10-01 11:18:21 -06:00
John Mulhausen
727b9932d1
Update checks.md
2019-09-13 15:54:39 -07:00
John Mulhausen
ae26297477
Update checks.md
2019-09-13 15:54:01 -07:00
John Mulhausen
1a5ece18c3
Update checks.md
2019-09-13 15:49:44 -07:00
John Mulhausen
7fe360e209
Update checks.md
...
Co-Authored-By: Adam Wolfe Gordon <awg+github@xvx.ca>
2019-09-13 15:02:02 -07:00
John Mulhausen
2c92a34a59
Update checks.md
...
Co-Authored-By: Adam Wolfe Gordon <awg+github@xvx.ca>
2019-09-13 15:01:38 -07:00
John Mulhausen
0ef97af0f4
Rewrite/reformat of "checks.md"
...
The DO product docs team gave this file some love.
2019-09-11 10:49:19 -07:00
Adam Wolfe Gordon
d43005ebbc
Add a DOKS check for custom node labels and taints
...
In DOKS labels and taints applied to nodes will be lost when the cluster
is upgraded or a node is otherwise replaced. This can cause problems for
workloads if labels or taints are used for scheduling.
Add a warning if any node in a cluster has custom labels or taints.
2019-09-10 11:19:06 -06:00
Varsha Varadarajan
a9b1012994
Refactor run-as-non-root user check
2019-07-23 10:03:46 -04:00
Varsha Varadarajan
f2c948af77
Check if containers are run as root user.
2019-07-23 09:23:33 -04:00
Varsha Varadarajan
1030d9d0ac
Add bare pod check to checks.md
2019-07-16 15:19:40 -04:00
Varsha Varadarajan
b39a543777
Check if resource requests and limits are set on pods
2019-07-08 11:24:05 -04:00
Varsha Varadarajan
279004da51
Check if webhook config references a service before throwing an error
2019-07-02 17:39:26 -04:00
Varsha Varadarajan
5a246761b2
Update checks.md for admission controller webhooks
2019-07-02 17:18:05 -04:00
Varsha Varadarajan
1e9e19a078
Unused secrets: check if there are unused secrets in the cluster.
2019-07-01 21:09:07 -04:00
Varsha Varadarajan
d0eb5a4b0a
Check for config map references in nodes and projected volumes
2019-07-01 10:41:37 -04:00
Varsha Varadarajan
2d097ba31a
Unused config map: check if there are unused configmaps in the cluster.
2019-07-01 09:31:09 -04:00
Varsha Varadarajan
05502e3b32
Unused PVC: Check for unused claims in the cluster.
2019-07-01 09:25:46 -04:00
Varsha Varadarajan
ae35752083
Unused PV: Check if there are unused persistent volumes in the cluster.
2019-06-26 14:40:25 -04:00
Varsha Varadarajan
d5811380e1
Update checks.md to include hostpath volume check.
2019-06-26 09:04:41 -04:00
Varsha Varadarajan
cc400b2a24
Have checks.md to provide details about each check.
...
This is especially useful in documenting the reason behind some of the best practices we recommend.
2019-06-26 08:27:47 -04:00