krv - Kubernetes resources validator

Tool designed to simplify the validation of Kubernetes resources using the power of JSONPath and regexp.

Get started now View it on GitHub

The krv provides a user-friendly and efficient solution to validate your in-cluster resources against custom-defined criteria to enforce best practices, security policies, and compliance standards across your Kubernetes clusters.

Say goodbye to manual resource inspection and hello to automated, error-free validation with krv.

Key Features:

  • Intuitive JSONPath-based validation: Create rules using JSONPath expressions to pinpoint specific fields in your Kubernetes resources.
  • Easy integration: Seamlessly integrate krv into your CI/CD pipelines or Kubernetes workflows for automated resource validation.
  • Comprehensive error reporting: Receive clear and actionable feedback on validation results, helping you quickly identify and resolve issues.
  • Extensive resource support: Validate any Kubernetes resource.

The krv empowers you to ensure the quality and compliance of your Kubernetes resources effortlessly, saving you time and reducing the risk of misconfigurations.

Quick start

Install latest version via helm

helm install <my-release> oci://registry-1.docker.io/stepanpelc/krv-helm

Check running pod.

kubectl get pod
NAMESPACE            NAME                                                READY   STATUS    RESTARTS        AGE
default              <my-release>-krv-helm-6b5fd4bdc7-g25ql              1/1     Running   0               5h39m

Check for value in pod resource.

kubectl get pod -n kube-system          etcd-kind-control-plane  -ojson | jq '.spec.containers[0].imagePullPolicy'
"IfNotPresent"

Create first validation

apiVersion: krv.sizek.cz/v1
kind: Validation
metadata:
  name: etcd-pullpolicy
spec:
  name: "etcd-kind-control-plane"
  resource: "Pod"
  namespace: "kube-system"
  validation:
    - jsonPath: "spec.containers[0].imagePullPolicy"
      value: "IfNotPresent"

Apply validation and check existence

NAME              RESOURCE-NAMESPACE   RESOURCE   STATE     AGE
etcd-pullpolicy   kube-system          Pod                  4s

Validations are checked in configured interval (default 5 minutes).

NAME              RESOURCE-NAMESPACE   RESOURCE   STATE     AGE
etcd-pullpolicy   kube-system          Pod        OK        5m24s

About the project

krv is © 2022-2023 by SIZEK s.r.o..

License

krv is distributed by an GPLv3 license.

Contributing

When contributing to this repository, please first discuss the change you wish to make via issue, email, or any other method with the owners of this repository before making a change. Read more about becoming a contributor in our GitHub repo.

Thank you to the contributors of krv!

  • stepanpelc

Code of Conduct

krv is committed to fostering a welcoming community.

View our Code of Conduct on our GitHub repository.