First_agent_template

Sleeping

App Files Files Community

h2oaimichalmarszalek commited on Mar 18, 2025

Commit

466b971

1 Parent(s): 2a81d02

add helm tests

Browse files

Files changed (15) hide show

helm_test_gen.py → tools/helm_test_gen.py +0 -0
tools/templates/cm.jinja +160 -0
tools/templates/cronjob.jinja +111 -0
tools/templates/deployment.jinja +244 -0
tools/templates/hpa.jinja +30 -0
tools/templates/ingress.jinja +20 -0
tools/templates/job.jinja +103 -0
tools/templates/np.jinja +6 -0
tools/templates/pdb.jinja +6 -0
tools/templates/pvc.jinja +34 -0
tools/templates/sa.jinja +38 -0
tools/templates/scenario.jinja +39 -0
tools/templates/secret.jinja +160 -0
tools/templates/service.jinja +20 -0
tools/templates/statefulset.jinja +221 -0

helm_test_gen.py → tools/helm_test_gen.py RENAMED Viewed

File without changes

tools/templates/cm.jinja ADDED Viewed

	@@ -0,0 +1,160 @@

+{%- for workload in get_object_by_kind(document, ('Deployment', 'StatefulSet', 'Job')) %}
+{%- if workload['spec']['template']['spec'].get('volumes') %}
+{%- for volume in workload['spec']['template']['spec']['volumes'] %}
+{%- if volume.get('configMap', {'name': ''}).get('name', '') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as volume
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.template.spec.volumes
+          content:
+            name: {{ volume.name }}
+            configMap:
+              name: {{ name }}
+              {%- if 'defaultMode' in volume.configMap %}
+              defaultMode: {{ volume.configMap.defaultMode }}
+              {% endif %}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- for container in workload['spec']['template']['spec']['containers'] %}
+{%- set containerIndex = loop.index0 %}
+{%- if container.get('envFrom') %}
+{%- for env in container['envFrom'] %}
+{%- if env.get('configMapRef', {'name': ''}).get('name') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as envFrom
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.template.spec.containers[{{ containerIndex }}].envFrom
+          content:
+            configMapRef:
+              name: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- if container.get('env') %}
+{%- set envs = get_env_by_ref(container, 'configMapKeyRef', name) %}
+{%- if envs %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as env
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind'] }}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+{%- for env in envs %}
+      - contains:
+          path: spec.template.spec.containers[{{ containerIndex }}].env
+          content:
+            name: {{ env.name }}
+            valueFrom:
+              configMapKeyRef:
+                name: {{ name }}
+                key: {{ env.valueFrom.configMapKeyRef.key }}
+{%- endfor %}
+{%- endif %}
+{%- endif %}
+{%- endfor %}
+{%- for container in workload['spec']['template']['spec']['initContainers'] %}
+{%- set containerIndex = loop.index0 %}
+{%- if container.get('envFrom') %}
+{%- for env in container['envFrom'] %}
+{%- if env.get('configMapRef', {'name': ''}).get('name') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as envFrom
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.template.spec.initContainers[{{ containerIndex }}].envFrom
+          content:
+            configMapRef:
+              name: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- if container.get('env') %}
+{%- set envs = get_env_by_ref(container, 'configMapKeyRef', name) %}
+{%- if envs %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as env
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind'] }}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+{%- for env in envs %}
+      - contains:
+          path: spec.template.spec.initContainers[{{ containerIndex }}].env
+          content:
+            name: {{ env.name }}
+            valueFrom:
+              configMapKeyRef:
+                name: {{ name }}
+                key: {{ env.valueFrom.configMapKeyRef.key }}
+{%- endfor %}
+{%- endif %}
+{%- endif %}
+{%- endfor %}
+{%- endfor %}
+{#- CronJob  #}
+{%- for workload in get_object_by_kind(document, ('CronJob',)) %}
+{%- if workload['spec']['jobTemplate']['spec']['template']['spec'].get('volumes') %}
+{%- for volume in workload['spec']['jobTemplate']['spec']['template']['spec']['volumes'] %}
+{%- if volume.get('configMap', {'name': ''}).get('name', '') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as volume
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.jobTemplate.spec.template.spec.volumes
+          content:
+            name: {{ volume.name }}
+            configMap:
+              name: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- for container in workload['spec']['jobTemplate']['spec']['template']['spec']['containers'] %}
+{%- set containerIndex = loop.index0 %}
+{%- if container.get('envFrom') %}
+{%- for env in container['envFrom'] %}
+{%- if env.get('configMapRef', {'name': ''}).get('name') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as envFrom
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.jobTemplate.spec.template.spec.containers[{{ containerIndex }}].envFrom
+          content:
+            configMapRef:
+              name: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- if container.get('env') %}
+{%- set envs = get_env_by_ref(container, 'configMapKeyRef', name) %}
+{%- if envs %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as env
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind'] }}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+{%- for env in envs %}
+      - contains:
+          path: spec.jobTemplate.spec.template.spec.containers[{{ containerIndex }}].env
+          content:
+            name: {{ env.name }}
+            valueFrom:
+              configMapKeyRef:
+                name: {{ name }}
+                key: {{ env.valueFrom.configMapKeyRef.key }}
+{%- endfor %}
+{%- endif %}
+{%- endif %}
+{%- endfor %}
+{%- endfor %}

tools/templates/cronjob.jinja ADDED Viewed

	@@ -0,0 +1,111 @@

+      - equal:
+          path: spec.schedule
+          value: "{{ gyv(item, 'spec.schedule')}}"
+      - equal:
+          path: spec.concurrencyPolicy
+          value: {{ gyv(item, 'spec.concurrencyPolicy')}}
+      - equal:
+          path: spec.startingDeadlineSeconds
+          value: {{ gyv(item, 'spec.startingDeadlineSeconds')}}
+      - equal:
+          path: spec.failedJobsHistoryLimit
+          value: {{ gyv(item, 'spec.failedJobsHistoryLimit')}}
+      - equal:
+          path: spec.successfulJobsHistoryLimit
+          value: {{ gyv(item, 'spec.successfulJobsHistoryLimit')}}
+      - equal:
+          path: spec.jobTemplate.spec.backoffLimit
+          value: {{ gyv(item, 'spec.jobTemplate.spec.backoffLimit')}}
+      - equal:
+          path: spec.jobTemplate.spec.completionMode
+          value: {{ gyv(item, 'spec.jobTemplate.spec.completionMode')}}
+      - equal:
+          path: spec.jobTemplate.spec.parallelism
+          value: {{ gyv(item, 'spec.jobTemplate.spec.parallelism')}}
+      - equal:
+          path: spec.jobTemplate.spec.ttlSecondsAfterFinished
+          value: {{ gyv(item, 'spec.jobTemplate.spec.ttlSecondsAfterFinished')}}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.restartPolicy
+          value: {{ gyv(item, 'spec.jobTemplate.spec.template.spec.restartPolicy')}}
+{%- for container in gyv(item, 'spec.jobTemplate.spec.template.spec.containers') %}
+# Container {{loop.index0}}
+{%- set containerIndex = loop.index0 %}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{loop.index0}}].name
+          value: {{container.name}}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{loop.index0}}].image
+          value: {{container.image}}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{loop.index0}}].imagePullPolicy
+          value: {{container.imagePullPolicy}}
+{%- if 'lifecycle' in container %}
+#Lifecycle
+{%- if 'preStop' in container.lifecycle %}
+      - isSubset:
+          path: spec.template.spec.containers[{{loop.index0}}].lifecycle.preStop
+          content:
+            {{ container.lifecycle.preStop }}
+{%- endif %}
+{%- if 'postStart' in container.lifecycle %}
+      - isSubset:
+          path: spec.template.spec.containers[{{loop.index0}}].lifecycle.postStart
+          content:
+            {{ container.lifecycle.postStart }}
+{%- endif %}
+{%- endif %}
+{%- if 'resources' in container %}
+# Resources
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{loop.index0}}].resources.requests.cpu
+          value: {{container.resources.requests.cpu}}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{loop.index0}}].resources.requests.memory
+          value: {{container.resources.requests.memory}}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{loop.index0}}].resources.limits.memory
+          value: {{container.resources.limits.memory}}
+{%- endif%}
+{%- if 'env' in container %}
+# Env
+{%- for env in container.env%}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{containerIndex}}].env[{{loop.index0}}].name
+          value: {{ env.name }}
+{%- endfor %}
+{%- endif %}
+{%- if 'command' in container %}
+# Command
+{%- for cmd in container.command %}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{containerIndex}}].command[{{loop.index0}}]
+          value: "{{ cmd }}"
+{%- endfor %}
+{%- endif %}
+{%- if 'args' in container %}
+# Args
+{%- for arg in container.args %}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{containerIndex}}].args[{{loop.index0}}]
+          value: "{{ arg }}"
+{%- endfor %}
+{%- endif %}
+{%- if 'volumeMounts' in  container %}
+# volumeMounts
+{%- for volumeMounts in container.volumeMounts %}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].name
+          value: {{ volumeMounts.name }}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].mountPath
+          value: {{ volumeMounts.mountPath }}
+      - equal:
+          path: spec.jobTemplate.spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].readOnly
+          value: {{ bool_to_str(volumeMounts.readOnly) }}
+{%- endfor%}
+{%- endif%}
+{%- endfor %}

tools/templates/deployment.jinja ADDED Viewed

	@@ -0,0 +1,244 @@

+{%- if 'replicas' in item['spec'] %}
+      - equal:
+          path: spec.replicas
+          value: {{ gyv(item, 'spec.replicas')}}
+{%- endif %}
+{%- if 'strategy' in item.spec %}
+      - equal:
+          path: spec.strategy.type
+          value: {{ gyv(item, 'spec.strategy.type')}}
+{%- endif %}
+{%- for container in gyv(item, 'spec.template.spec.containers') %}
+# Container {{loop.index0}}
+{%- set containerIndex = loop.index0 %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].name
+          value: {{container.name}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].image
+          value: {{container.image}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].imagePullPolicy
+          value: {{container.imagePullPolicy}}
+{%- if 'lifecycle' in container %}
+#Lifecycle
+{%- if 'preStop' in container.lifecycle %}
+      - isSubset:
+          path: spec.template.spec.containers[{{loop.index0}}].lifecycle.preStop
+          content:
+            {{ container.lifecycle.preStop }}
+{%- endif %}
+{%- if 'postStart' in container.lifecycle %}
+      - isSubset:
+          path: spec.template.spec.containers[{{loop.index0}}].lifecycle.postStart
+          content:
+            {{ container.lifecycle.postStart }}
+{%- endif %}
+{%- endif %}
+{%- if 'livenessProbe' in container %}
+# LivenessProbe
+{%- if 'httpGet' in container.livenessProbe %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.httpGet.port
+          value: {{container.livenessProbe.httpGet.port}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.httpGet.path
+          value: {{container.livenessProbe.httpGet.path}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.httpGet.scheme
+          value: {{container.livenessProbe.httpGet.scheme}}
+{%- elif 'tcpSocket' in container.livenessProbe %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.tcpSocket.port
+          value: {{container.livenessProbe.tcpSocket.port}}
+{%- endif %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.initialDelaySeconds
+          value: {{container.livenessProbe.initialDelaySeconds}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.failureThreshold
+          value: {{container.livenessProbe.failureThreshold}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.successThreshold
+          value: {{container.livenessProbe.successThreshold}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.timeoutSeconds
+          value: {{container.livenessProbe.timeoutSeconds}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.periodSeconds
+          value: {{container.livenessProbe.periodSeconds}}
+{%- endif %}
+{%- if 'readinessProbe' in container %}
+# ReadinessProbe
+{%- if 'httpGet' in container.readinessProbe %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.httpGet.port
+          value: {{container.readinessProbe.httpGet.port}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.httpGet.path
+          value: {{container.readinessProbe.httpGet.path}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.httpGet.scheme
+          value: {{container.readinessProbe.httpGet.scheme}}
+{%- elif 'tcpSocket' in container.readinessProbe %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.tcpSocket.port
+          value: {{container.readinessProbe.tcpSocket.port}}
+{%- endif %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.initialDelaySeconds
+          value: {{container.readinessProbe.initialDelaySeconds}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.failureThreshold
+          value: {{container.readinessProbe.failureThreshold}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.successThreshold
+          value: {{container.readinessProbe.successThreshold}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.timeoutSeconds
+          value: {{container.readinessProbe.timeoutSeconds}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.periodSeconds
+          value: {{container.readinessProbe.periodSeconds}}
+{%- endif %}
+{%- if 'resources' in container %}
+# Resources
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].resources.requests.cpu
+          value: {{container.resources.requests.cpu}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].resources.requests.memory
+          value: {{container.resources.requests.memory}}
+{%- if 'limits' in container.resources %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].resources.limits.memory
+          value: {{container.resources.limits.memory}}
+{%- endif%}
+{%- endif%}
+{%- if 'env' in container %}
+# Env
+{%- for env in container.env%}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].env[{{loop.index0}}].name
+          value: {{ env.name }}
+{%- endfor %}
+{%- endif %}
+{%- if 'ports' in container %}
+# Ports
+{%- for port in container.ports %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].ports[{{loop.index0}}].name
+          value: {{ port.name }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].ports[{{loop.index0}}].containerPort
+          value: {{ port.containerPort }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].ports[{{loop.index0}}].protocol
+          value: {{ port.protocol }}
+{%- endfor%}
+{%- endif %}
+{%- if 'command' in container %}
+# Command
+{%- for cmd in container.command %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].command[{{loop.index0}}]
+          value: "{{ cmd }}"
+{%- endfor %}
+{%- endif %}
+{%- if 'args' in container %}
+# Args
+{%- for arg in container.args %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].args[{{loop.index0}}]
+          value: "{{ arg }}"
+{%- endfor %}
+{%- endif %}
+{%- if 'volumeMounts' in  container %}
+# volumeMounts
+{%- for volumeMounts in container.volumeMounts %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].name
+          value: {{ volumeMounts.name }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].mountPath
+          value: {{ volumeMounts.mountPath }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].readOnly
+          value: {{ bool_to_str(volumeMounts.readOnly) }}
+{%- endfor%}
+{%- endif%}
+{%- endfor %}
+{#- initContainers #}
+{%- for container in gyv(item, 'spec.template.spec').get('initContainers', []) %}
+# initContainer {{loop.index0}}
+{%- set containerIndex = loop.index0 %}
+      - equal:
+          path: spec.template.spec.initContainers[{{loop.index0}}].name
+          value: {{container.name}}
+      - equal:
+          path: spec.template.spec.initContainers[{{loop.index0}}].image
+          value: {{container.image}}
+      - equal:
+          path: spec.template.spec.initContainers[{{loop.index0}}].imagePullPolicy
+          value: {{container.imagePullPolicy}}
+{%- if 'resources' in container %}
+# Resources
+      - equal:
+          path: spec.template.spec.initContainers[{{loop.index0}}].resources.requests.cpu
+          value: {{container.resources.requests.cpu}}
+      - equal:
+          path: spec.template.spec.initContainers[{{loop.index0}}].resources.requests.memory
+          value: {{container.resources.requests.memory}}
+      - equal:
+          path: spec.template.spec.initContainers[{{loop.index0}}].resources.limits.memory
+          value: {{container.resources.limits.memory}}
+{%- endif%}
+{%- if 'env' in container %}
+# Env
+{%- for env in container.env%}
+      - equal:
+          path: spec.template.spec.initContainers[{{containerIndex}}].env[{{loop.index0}}].name
+          value: {{ env.name }}
+{%- endfor %}
+{%- endif %}
+{%- if 'command' in container %}
+# Command
+{%- for cmd in container.command %}
+      - equal:
+          path: spec.template.spec.initContainers[{{containerIndex}}].command[{{loop.index0}}]
+          value: "{{ cmd }}"
+{%- endfor %}
+{%- endif %}
+{%- if 'args' in container %}
+# Args
+{%- for arg in container.args %}
+      - equal:
+          path: spec.template.spec.initContainers[{{containerIndex}}].args[{{loop.index0}}]
+          value: "{{ arg }}"
+{%- endfor %}
+{%- endif %}
+{%- if 'volumeMounts' in  container %}
+# volumeMounts
+{%- for volumeMounts in container.volumeMounts %}
+      - equal:
+          path: spec.template.spec.initContainers[{{containerIndex}}].volumeMounts[{{loop.index0}}].name
+          value: {{ volumeMounts.name }}
+      - equal:
+          path: spec.template.spec.initContainers[{{containerIndex}}].volumeMounts[{{loop.index0}}].mountPath
+          value: {{ volumeMounts.mountPath }}
+      - equal:
+          path: spec.template.spec.initContainers[{{containerIndex}}].volumeMounts[{{loop.index0}}].readOnly
+          value: {{ bool_to_str(volumeMounts.readOnly) }}
+{%- endfor%}
+{%- endif%}
+{%- endfor %}

tools/templates/hpa.jinja ADDED Viewed

	@@ -0,0 +1,30 @@

+      - equal:
+          path: spec.maxReplicas
+          value: {{ gyv(item, 'spec.maxReplicas') }}
+      - equal:
+          path: spec.minReplicas
+          value: {{ gyv(item, 'spec.minReplicas') }}
+      - equal:
+          path: spec.scaleTargetRef.apiVersion
+          value: {{ gyv(item, 'spec.scaleTargetRef.apiVersion') }}
+      - equal:
+          path: spec.scaleTargetRef.kind
+          value: {{ gyv(item, 'spec.scaleTargetRef.kind') }}
+      - equal:
+          path: spec.scaleTargetRef.name
+          value: {{ gyv(item, 'spec.scaleTargetRef.name') }}
+{%- for metric in item['spec']['metrics'] %}
+      - equal:
+          path: spec.metrics[{{loop.index0}}].type
+          value: {{ metric.type }}
+      - equal:
+          path: spec.metrics[{{loop.index0}}].resource.name
+          value: {{ metric.resource.name }}
+      - equal:
+          path: spec.metrics[{{loop.index0}}].resource.target.type
+          value: {{ metric.resource.target.type }}
+      - equal:
+          path: spec.metrics[{{loop.index0}}].resource.target.averageUtilization
+          value: {{ metric.resource.target.averageUtilization }}
+{%- endfor %}

tools/templates/ingress.jinja ADDED Viewed

	@@ -0,0 +1,20 @@

+{%- for rule in item['spec']['rules'] %}
+{%- set ruleIndex = loop.index0 %}
+    {%- for k,v in rule.items() %}
+        {%- for path in rule[k].paths %}
+      - equal:
+          path: spec.rules[{{ruleIndex}}].{{k}}.paths[{{loop.index0}}].path
+          value: {{ path.path }}
+      - equal:
+          path: spec.rules[{{ruleIndex}}].{{k}}.paths[{{loop.index0}}].pathType
+          value: {{ path.pathType }}
+      - equal:
+          path: spec.rules[{{ruleIndex}}].{{k}}.paths[{{loop.index0}}].backend.service.name
+          value: {{ path.backend.service.name }}
+      - equal:
+          path: spec.rules[{{ruleIndex}}].{{k}}.paths[{{loop.index0}}].backend.service.port.number
+          value: {{ path.backend.service.port.number }}
+        {%- endfor %}
+    {%- endfor %}
+{%- endfor %}

tools/templates/job.jinja ADDED Viewed

	@@ -0,0 +1,103 @@

+{%-if 'backoffLimit' in spec %}
+      - equal:
+          path: spec.backoffLimit
+          value: {{ gyv(item, 'spec.backoffLimit')}}
+{%- endif%}
+{%-if 'completionMode' in spec %}
+      - equal:
+          path: spec.completionMode
+          value: {{ gyv(item, 'spec.completionMode')}}
+{%- endif%}
+{%-if 'parallelism' in spec %}
+      - equal:
+          path: spec.parallelism
+          value: {{ gyv(item, 'spec.parallelism')}}
+{%- endif%}
+{%-if 'ttlSecondsAfterFinished' in spec %}
+      - equal:
+          path: spec.ttlSecondsAfterFinished
+          value: {{ gyv(item, 'spec.ttlSecondsAfterFinished')}}
+{%- endif%}
+      - equal:
+          path: spec.template.spec.restartPolicy
+          value: {{ gyv(item, 'spec.template.spec.restartPolicy')}}
+{%- for container in gyv(item, 'spec.template.spec.containers') %}
+# Container {{loop.index0}}
+{%- set containerIndex = loop.index0 %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].name
+          value: {{container.name}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].image
+          value: {{container.image}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].imagePullPolicy
+          value: {{container.imagePullPolicy}}
+{%- if 'lifecycle' in container %}
+#Lifecycle
+{%- if 'preStop' in container.lifecycle %}
+      - isSubset:
+          path: spec.template.spec.containers[{{loop.index0}}].lifecycle.preStop
+          content:
+            {{ container.lifecycle.preStop }}
+{%- endif %}
+{%- if 'postStart' in container.lifecycle %}
+      - isSubset:
+          path: spec.template.spec.containers[{{loop.index0}}].lifecycle.postStart
+          content:
+            {{ container.lifecycle.postStart }}
+{%- endif %}
+{%- endif %}
+{%- if 'resources' in container %}
+# Resources
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].resources.requests.cpu
+          value: {{container.resources.requests.cpu}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].resources.requests.memory
+          value: {{container.resources.requests.memory}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].resources.limits.memory
+          value: {{container.resources.limits.memory}}
+{%- endif%}
+{%- if 'env' in container %}
+# Env
+{%- for env in container.env%}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].env[{{loop.index0}}].name
+          value: {{ env.name }}
+{%- endfor %}
+{%- endif %}
+{%- if 'command' in container %}
+# Command
+{%- for cmd in container.command %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].command[{{loop.index0}}]
+          value: {{ cmd }}
+{%- endfor %}
+{%- endif %}
+{%- if 'args' in container %}
+# Args
+{%- for arg in container.args %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].args[{{loop.index0}}]
+          value: {{ arg }}
+{%- endfor %}
+{%- endif %}
+{%- if 'volumeMounts' in  container %}
+# volumeMounts
+{%- for volumeMounts in container.volumeMounts %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].name
+          value: {{ volumeMounts.name }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].mountPath
+          value: {{ volumeMounts.mountPath }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].readOnly
+          value: {{ bool_to_str(volumeMounts.readOnly) }}
+{%- endfor%}
+{%- endif%}
+{%- endfor %}

tools/templates/np.jinja ADDED Viewed

	@@ -0,0 +1,6 @@

+{%- for policyType in item['spec']['policyTypes'] %}
+      - equal:
+          path: spec.policyTypes[{{loop.index0}}]
+          value: {{ policyType }}
+{%- endfor %}

tools/templates/pdb.jinja ADDED Viewed

	@@ -0,0 +1,6 @@

+{%- if 'minAvailable' in item.sepec %}
+      - equal:
+          path: spec.minAvailable
+          value: {{ gyv(item, 'spec.minAvailable')}}
+{%- endif %}

tools/templates/pvc.jinja ADDED Viewed

	@@ -0,0 +1,34 @@

+{%- for access in item['spec']['accessModes'] %}
+      - equal:
+          path: spec.accessModes[{{loop.index0}}]
+          value: {{ access }}
+{%- endfor %}
+{% if 'volumeMode' in item.spec %}
+      - equal:
+          path: spec.volumeMode
+          value: {{ gyv(item, 'spec.volumeMode')}}
+{%- endif %}
+      - equal:
+          path: spec.resources.requests.storage
+          value: {{ gyv(item, 'spec.resources.requests.storage') }}
+{%- for workload in get_object_by_kind(document, ('Deployment', 'StatefulSet')) %}
+{%- if workload['spec']['template']['spec'].get('volumes') %}
+{%- for volume in workload['spec']['template']['spec']['volumes'] %}
+{%- if volume.get('persistentVolumeClaim', {'claimName': ''}).get('claimName') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }}
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.template.spec.volumes
+          content:
+            name: {{ volume['name'] }}
+            persistentVolumeClaim:
+              claimName: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- endfor %}

tools/templates/sa.jinja ADDED Viewed

	@@ -0,0 +1,38 @@

+{%- for workload in get_object_by_kind(document, ('Deployment', 'StatefulSet')) %}
+{%- if gyv(workload, 'spec.template.spec.serviceAccountName') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }}
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - equal:
+          path: spec.template.spec.serviceAccountName
+          value: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- for workload in get_object_by_kind(document, ('RoleBinding', 'ClusterRoleBinding')) %}
+{%- set subjects = get_binding_subjects(workload.subjects, name) %}
+{%- if subjects %}
+  - it: should bind {{ name }} {{ kindDesc }} into {{ workload.metadata.name }} {{ workload['kind'].lower() }}
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+{%- for subject in subjects %}
+      - equal:
+          path: subjects[{{ loop.index0 }}].name
+          value: {{ name }}
+      - equal:
+          path: subjects[{{ loop.index0 }}].kind
+          value: ServiceAccount
+      - equal:
+          path: roleRef.kind
+          value: {{ "Role" if workload.kind == 'RoleBinding' else 'ClusterRole' }}
+      - equal:
+          path: roleRef.name
+          value: {{ workload.roleRef.name }}
+{%- endfor %}
+{%- endif %}
+{%- endfor %}

tools/templates/scenario.jinja ADDED Viewed

	@@ -0,0 +1,39 @@

+suite: {{ app }} {{ kindDesc }} tests
+release:
+  name: test-name
+  namespace: test-namespace
+tests:
+  - it: should render {{ name }} {{ kindDesc }} object
+    documentSelector:
+      path: $[?(@.kind == "{{ kind }}")].metadata.name
+      value: {{ name }}
+    asserts:
+      - isKind:
+          of: {{ kind }}
+{%- if kind == "PersistentVolumeClaim" %}
+    {%- include 'pvc.jinja' %}
+{%- elif kind == "ServiceAccount"%}
+    {%- include 'sa.jinja' %}
+{%- elif kind == "Service" %}
+    {%- include 'service.jinja' %}
+{%- elif kind == "Deployment" %}
+    {%- include 'deployment.jinja' %}
+{%- elif kind == "NetworkPolicy" %}
+    {%- include 'np.jinja' %}
+{%- elif kind == "Ingress" %}
+    {%- include 'ingress.jinja' %}
+{%- elif kind == "HorizontalPodAutoscaler" %}
+    {%- include 'hpa.jinja' %}
+{%- elif kind == "Job" %}
+    {%- include 'job.jinja' %}
+{%- elif kind == "PodDisruptionBudget" %}
+    {%- include 'pdb.jinja' %}
+{%- elif kind == "StatefulSet" %}
+    {%- include 'statefulset.jinja' %}
+{%- elif kind == "ConfigMap" %}
+    {%- include 'cm.jinja' %}
+{%- elif kind == "Secret" %}
+    {%- include 'secret.jinja' %}
+{%- elif kind == "CronJob" %}
+    {%- include 'cronjob.jinja' %}
+{% endif %}

tools/templates/secret.jinja ADDED Viewed

	@@ -0,0 +1,160 @@

+{%- for workload in get_object_by_kind(document, ('Deployment', 'StatefulSet', 'Job')) %}
+{%- if workload['spec']['template']['spec'].get('volumes') %}
+{%- for volume in workload['spec']['template']['spec']['volumes'] %}
+{%- if volume.get('secret', {'secretName': ''}).get('secretName') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as volume
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.template.spec.volumes
+          content:
+            name: {{ volume.name }}
+            secret:
+              secretName: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- for container in workload['spec']['template']['spec']['containers'] %}
+{%- set containerIndex = loop.index0 %}
+{%- if container.get('envFrom') %}
+{%- for env in container['envFrom'] %}
+{%- if env.get('secretRef', {'name': ''}).get('name') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as envFrom
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.template.spec.containers[{{ containerIndex }}].envFrom
+          content:
+            secretRef:
+              name: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- if container.get('env') %}
+{%- set envs = get_env_by_ref(container, 'secretKeyRef', name) %}
+{%- if envs %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as env
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind'] }}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+{%- for env in envs %}
+      - contains:
+          path: spec.template.spec.containers[{{ containerIndex }}].env
+          content:
+            name: {{ env.name }}
+            valueFrom:
+              secretKeyRef:
+                name: {{ name }}
+                key: {{ env.valueFrom.secretKeyRef.key }}
+                optional: {{ env.valueFrom.secretKeyRef.optional }}
+{%- endfor %}
+{%- endif %}
+{%- endif %}
+{%- endfor %}
+{%- for container in workload['spec']['template']['spec']['initContainers'] %}
+{%- set containerIndex = loop.index0 %}
+{%- if container.get('envFrom') %}
+{%- for env in container['envFrom'] %}
+{%- if env.get('secretRef', {'name': ''}).get('name') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as envFrom
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.template.spec.initContainers[{{ containerIndex }}].envFrom
+          content:
+            secretRef:
+              name: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- if container.get('env') %}
+{%- set envs = get_env_by_ref(container, 'secretKeyRef', name) %}
+{%- if envs %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as env
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind'] }}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+{%- for env in envs %}
+      - contains:
+          path: spec.template.spec.initContainers[{{ containerIndex }}].env
+          content:
+            name: {{ env.name }}
+            valueFrom:
+              secretKeyRef:
+                name: {{ name }}
+                key: {{ env.valueFrom.secretKeyRef.key }}
+                optional: {{ env.valueFrom.secretKeyRef.optional }}
+{%- endfor %}
+{%- endif %}
+{%- endif %}
+{%- endfor %}
+{%- endfor %}
+{#- CronJob #}
+{%- for workload in get_object_by_kind(document, ('CronJob',)) %}
+{%- if workload['spec']['jobTemplate']['spec']['template']['spec'].get('volumes') %}
+{%- for volume in workload['spec']['jobTemplate']['spec']['template']['spec']['volumes'] %}
+{%- if volume.get('secret', {'secretName': ''}).get('secretName') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as volume
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.jobTemplate.spec.template.spec.volumes
+          content:
+            name: {{ volume.name }}
+            secret:
+              secretName: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- for container in workload['spec']['jobTemplate']['spec']['template']['spec']['containers'] %}
+{%- set containerIndex = loop.index0 %}
+{%- if container.get('envFrom') %}
+{%- for env in container['envFrom'] %}
+{%- if env.get('secretRef', {'name': ''}).get('name') == name %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as envFrom
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind']}}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+      - contains:
+          path: spec.jobTemplate.spec.template.spec.containers[{{ containerIndex }}].envFrom
+          content:
+            secretRef:
+              name: {{ name }}
+{%- endif %}
+{%- endfor %}
+{%- endif %}
+{%- if container.get('env') %}
+{%- set envs = get_env_by_ref(container, 'secretKeyRef', name) %}
+{%- if envs %}
+  - it: should use {{ name }} {{ kindDesc }} into {{ workload['kind'].lower() }} as env
+    documentSelector:
+      path: $[?(@.kind == "{{ workload['kind'] }}" )].metadata.name
+      value: {{ workload['metadata']['name'] }}
+    asserts:
+{%- for env in envs %}
+      - contains:
+          path: spec.jobTemplate.spec.template.spec.containers[{{ containerIndex }}].env
+          content:
+            name: {{ env.name }}
+            valueFrom:
+              secretKeyRef:
+                name: {{ name }}
+                key: {{ env.valueFrom.secretKeyRef.key }}
+                optional: {{ env.valueFrom.secretKeyRef.optional }}
+{%- endfor %}
+{%- endif %}
+{%- endif %}
+{%- endfor %}
+{%- endfor %}

tools/templates/service.jinja ADDED Viewed

	@@ -0,0 +1,20 @@

+      - equal:
+          path: spec.type
+          value: {{ gyv(item, 'spec.type') }}
+      - exists:
+          path: spec.ports
+{%- for port in item['spec']['ports'] %}
+      - equal:
+          path: spec.ports[{{loop.index0}}].name
+          value: {{ port.name }}
+      - equal:
+          path: spec.ports[{{loop.index0}}].port
+          value: {{ port.port }}
+      - equal:
+          path: spec.ports[{{loop.index0}}].protocol
+          value: {{ port.protocol }}
+      - equal:
+          path: spec.ports[{{loop.index0}}].targetPort
+          value: {{ port.targetPort }}
+{%- endfor %}

tools/templates/statefulset.jinja ADDED Viewed

	@@ -0,0 +1,221 @@

+{%-if 'minReadySeconds' in spec %}
+      - equal:
+          path: spec.minReadySeconds
+          value: {{ gyv(item, 'spec.minReadySeconds')}}
+{%- endif %}
+{%-if 'podManagementPolicy' in spec %}
+      - equal:
+          path: spec.podManagementPolicy
+          value: {{ gyv(item, 'spec.podManagementPolicy')}}
+{%- endif%}
+{%- if 'serviceName' in item['spec'] %}
+      - equal:
+          path: spec.serviceName
+          value: {{ gyv(item, 'spec.serviceName')}}
+{%- endif %}
+{%- if 'persistentVolumeClaimRetentionPolicy' in item['spec'] %}
+      - equal:
+          path: spec.persistentVolumeClaimRetentionPolicy.whenDeleted
+          value: {{ gyv(item, 'spec.persistentVolumeClaimRetentionPolicy.whenDeleted')}}
+      - equal:
+          path: spec.persistentVolumeClaimRetentionPolicy.whenScaled
+          value: {{ gyv(item, 'spec.persistentVolumeClaimRetentionPolicy.whenScaled')}}
+{%- endif %}
+{%- if 'ordinals' in item['spec'] %}
+      - equal:
+          path: spec.ordinals.start
+          value: {{ gyv(item, 'spec.ordinals.start')}}
+{%- endif %}
+{%- if 'replicas' in item['spec'] %}
+      - equal:
+          path: spec.replicas
+          value: {{ gyv(item, 'spec.replicas')}}
+{%- endif %}
+{%-if 'updateStrategy' in spec %}
+      - equal:
+          path: spec.updateStrategy.type
+          value: {{ gyv(item, 'spec.updateStrategy.type')}}
+{%- endif%}
+{%- if 'securityContext' in gyv(item, 'spec.template.spec') %}
+{%- if 'fsGroup' in gyv(item, 'spec.template.spec.securityContext') %}
+      - equal:
+          path: spec.template.spec.securityContext.fsGroup
+          value: {{ gyv(item, 'spec.template.spec.securityContext.fsGroup')}}
+{%- endif %}
+{%- if 'runAsGroup' in gyv(item, 'spec.template.spec.securityContext') %}
+      - equal:
+          path: spec.template.spec.securityContext.runAsGroup
+          value: {{ gyv(item, 'spec.template.spec.securityContext.runAsGroup')}}
+{%- endif %}
+{%- if 'runAsUser' in gyv(item, 'spec.template.spec.securityContext') %}
+      - equal:
+          path: spec.template.spec.securityContext.runAsUser
+          value: {{ gyv(item, 'spec.template.spec.securityContext.runAsUser')}}
+{%- endif %}
+{%- endif %}
+{%- for container in gyv(item, 'spec.template.spec.containers') %}
+# Container {{loop.index0}}
+{%- set containerIndex = loop.index0 %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].name
+          value: {{container.name}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].image
+          value: {{container.image}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].imagePullPolicy
+          value: {{container.imagePullPolicy}}
+{%- if 'lifecycle' in container %}
+#Lifecycle
+{%- if 'preStop' in container.lifecycle %}
+      - isSubset:
+          path: spec.template.spec.containers[{{loop.index0}}].lifecycle.preStop
+          content:
+            {{ container.lifecycle.preStop }}
+{%- endif %}
+{%- if 'postStart' in container.lifecycle %}
+      - isSubset:
+          path: spec.template.spec.containers[{{loop.index0}}].lifecycle.postStart
+          content:
+            {{ container.lifecycle.postStart }}
+{%- endif %}
+{%- endif %}
+{%- if 'livenessProbe' in container %}
+# LivenessProbe
+{%- if 'httpGet' in container.livenessProbe %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.httpGet.port
+          value: {{container.livenessProbe.httpGet.port}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.httpGet.path
+          value: {{container.livenessProbe.httpGet.path}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.httpGet.scheme
+          value: {{container.livenessProbe.httpGet.scheme}}
+{%- elif 'tcpSocket' in container.livenessProbe %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.tcpSocket.port
+          value: {{container.livenessProbe.tcpSocket.port}}
+{%- endif %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.initialDelaySeconds
+          value: {{container.livenessProbe.initialDelaySeconds}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.failureThreshold
+          value: {{container.livenessProbe.failureThreshold}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.successThreshold
+          value: {{container.livenessProbe.successThreshold}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.timeoutSeconds
+          value: {{container.livenessProbe.timeoutSeconds}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].livenessProbe.periodSeconds
+          value: {{container.livenessProbe.periodSeconds}}
+{%- endif %}
+{%- if 'readinessProbe' in container %}
+# ReadinessProbe
+{%- if 'httpGet' in container.readinessProbe %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.httpGet.port
+          value: {{container.readinessProbe.httpGet.port}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.httpGet.path
+          value: {{container.readinessProbe.httpGet.path}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.httpGet.scheme
+          value: {{container.readinessProbe.httpGet.scheme}}
+{%- elif 'tcpSocket' in container.readinessProbe %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.tcpSocket.port
+          value: {{container.readinessProbe.tcpSocket.port}}
+{%- endif %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.initialDelaySeconds
+          value: {{container.readinessProbe.initialDelaySeconds}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.failureThreshold
+          value: {{container.readinessProbe.failureThreshold}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.successThreshold
+          value: {{container.readinessProbe.successThreshold}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.timeoutSeconds
+          value: {{container.readinessProbe.timeoutSeconds}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].readinessProbe.periodSeconds
+          value: {{container.readinessProbe.periodSeconds}}
+{%- endif %}
+{%- if 'resources' in container %}
+# Resources
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].resources.requests.cpu
+          value: {{container.resources.requests.cpu}}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].resources.requests.memory
+          value: {{container.resources.requests.memory}}
+{%-if 'limits' in container.resources %}
+      - equal:
+          path: spec.template.spec.containers[{{loop.index0}}].resources.limits.memory
+          value: {{container.resources.limits.memory}}
+{%- endif%}
+{%- endif%}
+{%- if 'env' in container %}
+# Env
+{%- for env in container.env%}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].env[{{loop.index0}}].name
+          value: {{ env.name }}
+{%- endfor %}
+{%- endif %}
+{%- if 'ports' in container %}
+# Ports
+{%- for port in container.ports %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].ports[{{loop.index0}}].name
+          value: {{ port.name }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].ports[{{loop.index0}}].containerPort
+          value: {{ port.containerPort }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].ports[{{loop.index0}}].protocol
+          value: {{ port.protocol }}
+{%- endfor%}
+{%- endif %}
+{%- if 'command' in container %}
+# Command
+{%- for cmd in container.command %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].command[{{loop.index0}}]
+          value: "{{ cmd }}"
+{%- endfor %}
+{%- endif %}
+{%- if 'args' in container %}
+# Args
+{%- for arg in container.args %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].args[{{loop.index0}}]
+          value: "{{ arg }}"
+{%- endfor %}
+{%- endif %}
+{%- if 'volumeMounts' in  container %}
+# volumeMounts
+{%- for volumeMounts in container.volumeMounts %}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].name
+          value: {{ volumeMounts.name }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].mountPath
+          value: {{ volumeMounts.mountPath }}
+      - equal:
+          path: spec.template.spec.containers[{{containerIndex}}].volumeMounts[{{loop.index0}}].readOnly
+          value: {{ bool_to_str(volumeMounts.readOnly) }}
+{%- endfor%}
+{%- endif%}
+{%- endfor %}