From ac56ea21d84fac379355e8986094554962ab2d62 Mon Sep 17 00:00:00 2001 From: davidweisse <98460960+davidweisse@users.noreply.github.com> Date: Mon, 15 Jun 2026 15:32:16 +0200 Subject: [PATCH] genpolicy: support pod-level resources Add support for resource requests and limits in the PodSpec. Fixes #12816 Signed-off-by: davidweisse <98460960+davidweisse@users.noreply.github.com> --- src/tools/genpolicy/src/pod.rs | 3 +++ .../kubernetes/runtimeclass_workloads/k8s-policy-pod.yaml | 7 +++++++ 2 files changed, 10 insertions(+) diff --git a/src/tools/genpolicy/src/pod.rs b/src/tools/genpolicy/src/pod.rs index 09482ed799..c1f2b6b3a8 100644 --- a/src/tools/genpolicy/src/pod.rs +++ b/src/tools/genpolicy/src/pod.rs @@ -107,6 +107,9 @@ pub struct PodSpec { #[serde(skip_serializing_if = "Option::is_none")] schedulerName: Option, + + #[serde(skip_serializing_if = "Option::is_none")] + resources: Option, } /// See Reference / Kubernetes API / Workload Resources / Pod. diff --git a/tests/integration/kubernetes/runtimeclass_workloads/k8s-policy-pod.yaml b/tests/integration/kubernetes/runtimeclass_workloads/k8s-policy-pod.yaml index b6008a44ec..105496b2e2 100644 --- a/tests/integration/kubernetes/runtimeclass_workloads/k8s-policy-pod.yaml +++ b/tests/integration/kubernetes/runtimeclass_workloads/k8s-policy-pod.yaml @@ -88,3 +88,10 @@ spec: operator: In values: - not-a-real-hostname + resources: + limits: + memory: "1Gi" + cpu: "1" + requests: + memory: "1Gi" + cpu: "1"