Kubernetes Rules
Deploy, scale, and manage containerized applications. Master kubectl commands for pods, services, and cluster operations.
3 rules
Standard Pod Labels Convention
Beginner
Apply consistent labels to all Kubernetes resources using the recommended label taxonomy — app.kubernetes.io labels for identification, versioning, and component classification.
globs: **/*.yaml, **/*.yml, **/k8s/**, **/kubernetes/**, **/manifests/**
labels, conventions, resource-management, selectors
View Rule
Always Set Resource Requests and Limits
Beginner
Every container in a Kubernetes pod specification must define CPU and memory requests and limits to ensure predictable scheduling, prevent resource starvation, and enable cluster autoscaling.
globs: **/*.yaml, **/*.yml, **/k8s/**, **/kubernetes/**, **/manifests/**, **/helm/**
resource-requests, resource-limits, scheduling, oomkilled
View Rule
Mandatory Security Context for All Pods
Intermediate
Every pod must define a securityContext with non-root user, dropped capabilities, read-only root filesystem, and no privilege escalation to meet the Restricted Pod Security Standard.
globs: **/*.yaml, **/*.yml, **/k8s/**, **/kubernetes/**, **/manifests/**, **/helm/**
security-context, non-root, capabilities, read-only-filesystem
View Rule