Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-27919

No namespace-scope policy exclusions for platform components

Create Feature from Fe...Move to CloseXMLWordPrintable

    • Icon: Feature Feature
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • None
    • None
    • BU Product Work
    • False
    • Hide

      None

      Show
      None
    • False
    • Not Selected
    • 0

      Description: Remove namespace-scope exclusions from built-in policies for namespaces that define platform components

      Goal Summary:

      Namespace-scope policy exclusions attempt to battle noise and are susceptible to missing important signals. With the introduction of the Platform Components filter for policy violations, there is no need for noise suppression any more as it is now solved on a different level. With that, we can remove all namespace-scope exclusions that are part of the Platform Components definition.

      Notifiers should become platform component-aware as well to truly separate the noise from the signal.

      Goals and expected user outcomes:

      More signal and hence transparency for policy violations on platform workloads yet no increase in noise levels.

      Acceptance Criteria:

      TBD

      Success Criteria or KPIs measured:

      TBD

              Unassigned Unassigned
              aruklets@redhat.com Alexander Rukletsov
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: