Patrick.Sy/website-and-documentation
1
0
Fork 0
forked from DevFW-CICD/website-and-documentation
Code Pull requests Activity
website-and-documentation/content/en/docs/v1/solution/tools/kyverno integration/_index.md
Stephan Lo fb0ec3fd57 fix(lint): improve markdown quality and exclude legacy v1 documentation 
Added .markdownlintignore to exclude legacy v1 documentation and blog posts
from markdown linting. This allows the team to focus on maintaining quality
for actively maintained documentation while avoiding the need to fix 200+
pre-existing lint errors in historical content.

Excluded paths:
- content/en/docs/v1/** (legacy v1 documentation with historical lint debt)
- content/en/blog/** (blog posts with varied formatting styles)

Fixed markdown linting errors in current documentation:
- content/en/docs/_index.md: Removed excessive blank lines
- content/en/docs/decisions/0001-pipeline-tools.md:
  * Converted emphasis (**Pro**, **Con**) to proper h4 headings
  * Improves document structure and accessibility
  * Maintains visual hierarchy while meeting markdown standards

Fixed sample v1 files that were blocking CI:
- content/en/docs/v1/solution/tools/Crossplane/provider-kind/_index.md:
  * Replaced hard tabs with spaces (MD010)
  * Added language tags to code blocks (bash)
- content/en/docs/v1/solution/tools/kyverno integration/_index.md:
  * Added blank line before list items (MD032)
  * Added language tags to code blocks (bash)

Impact:
- task test:quick now passes cleanly
- CI pipeline markdown validation succeeds
- New documentation maintains high quality standards
- Legacy content preserved without blocking development

This approach balances:
1. Maintaining quality for actively developed docs
2. Not requiring massive refactoring of legacy content
3. Enabling clean CI/CD pipeline
4. Providing clear quality standards for future contributions
2025-11-07 11:52:12 +01:00

1.8 KiB
Raw Blame History

title description
Kyverno Kyverno is a policy engine for Kubernetes designed to enforce, validate, and mutate configurations of Kubernetes resources

Kyverno Overview

Kyverno is a policy engine for Kubernetes designed to enforce, validate, and mutate configurations of Kubernetes resources. It allows administrators to define policies as Kubernetes custom resources (CRDs) without requiring users to learn a new language or system.

Key Uses

  1. Policy Enforcement: Kyverno ensures resources comply with security, operational, or organizational policies, such as requiring specific labels, annotations, or resource limits.
  2. Validation: It checks resources against predefined rules, ensuring configurations are correct before they are applied to the cluster.
  3. Mutation: Kyverno can automatically modify resources on-the-fly, adding missing fields or values to Kubernetes objects.
  4. Generation: It can generate resources like ConfigMaps or Secrets automatically when needed, helping to maintain consistency.

Kyverno simplifies governance and compliance in Kubernetes environments by automating policy management and ensuring best practices are followed.

Prerequisites

Same as for idpbuilder installation

  • Docker Engine
  • Go
  • kubectl
  • kind

Installation

Build process

For building idpbuilder the source code needs to be downloaded and compiled:

git clone https://github.com/cnoe-io/idpbuilder.git
cd idpbuilder
go build

Start idpbuilder

To start the idpbuilder with kyverno integration execute the following command:

idpbuilder create --use-path-routing -p https://github.com/cnoe-io/stacks//ref-implementation -p https://github.com/cnoe-io/stacks//kyverno-integration

After this step, you can see in ArgoCD that kyverno was installed