☑️ Prevent use of removed APIs in Kubernetes v1.24
Kubernetes version 1.24 stopped serving several APIs for different resource types.
When deploying a resource with a removed API version, the Kubernetes engine will reject it.
The following resources are removed in version 1.24:
| API version | Resource kind |
|---|---|
client.authentication.k8s.io/v1alpha1 | ExecCredential |
node.k8s.io/v1alpha1 | RuntimeClass |
Targeted objects by this rule (types of kind): (See table above)
Complexity: easy (What does this mean?)
Policy as code identifier: K8S_REMOVED_APIVERSION_1.24
This rule will fail
If one of the removed API versions is used:
apiVersion: client.authentication.k8s.io/v1alpha1
kind: ExecCredential
Rule output in the CLI
$ datree test *.yaml
>> File: failExample.yaml
❌ Prevent use of removed APIs in Kubernetes v1.24 [1 occurrence]
💡 Incorrect value for key `apiVersion` - the version of the resource you are trying to use is removed in k8s v1.24
How to fix this failure
Use a supported API version instead of the removed one:
| Removed API version | Supported API version |
|---|---|
client.authentication.k8s.io/v1alpha1 | client.authentication.k8s.io/v1 |
node.k8s.io/v1alpha1 | node.k8s.io/v1 |
Example:
apiVersion: client.authentication.k8s.io/v1
kind: ExecCredential