Do Not Allow Volume Claims To Be Read-write By Many Nodes

Ensure not allowing volume claims to be read-write by many nodes.

Policy Details

Policy Subtype
Build
Severity
Medium
Template Type
Kubernetes

Build Rules

do not allow volume claims to be read-write by many nodes.
JSON Query:
$.spec.volumeClaimTemplates[*].spec.accessModes contains ReadWriteMany
Recommendation:
Recommended solution for not allowing volume claims to be read-write by many nodes.
It is recommended not to allow volume claims to be read-write by many nodes. Please make sure "accessModes" is not set to "ReadWriteMany".
For example:
"spec": { "accessModes": [ "ReadWriteOnce" ], "storageClassName": "my-storage-class", "resources": { "requests": { "storage": "1Gi" } } }

Recommended For You