Do Not Allow Volume Claims To Be Read By Many Nodes

Ensure not allowing volume claims to be read by many nodes.

Policy Details

Policy Subtype
Build
Severity
Low
Template Type
Kubernetes

Build Rules

Do not allow volume claims to be read by many nodes.
JSON Query:
$.spec.volumeClaimTemplates[*].spec.accessModes contains ReadOnlyMany
Recommendation:
Recommended solution for not allowing volume claims to be read by many nodes.
It is recommended not to allow volume claims to be read by many nodes. Please make sure "accessModes" is not set to "ReadOnlyMany".
For example:
"spec": { "accessModes": [ "ReadWriteOnce" ], "storageClassName": "my-storage-class", "resources": { "requests": { "storage": "1Gi" } } }

Recommended For You