mirror of
https://github.com/stefanprodan/podinfo.git
synced 2026-04-22 02:36:40 +00:00
7e36892e26
- validate kustomize build with kubeval strict mode - deny containers with latest image tag - deny deployments and services without app label selector - warn if deployments have no prometheus pod annotations
18 lines
463 B
YAML
18 lines
463 B
YAML
on: [push, pull_request]
|
|
name: kustomize
|
|
jobs:
|
|
validate:
|
|
runs-on: ubuntu-latest
|
|
steps:
|
|
- uses: actions/checkout@v1
|
|
- name: kubeval
|
|
uses: stefanprodan/kube-tools@v1
|
|
with:
|
|
command: |
|
|
kustomize build ./kustomize | kubeval --strict
|
|
- name: conftest
|
|
uses: stefanprodan/kube-tools@v1
|
|
with:
|
|
command: |
|
|
kustomize build ./kustomize | conftest test -p .github/policy -
|