infra

Viktor Barzin 7e540292ad kyverno: bump background-controller memory 384Mi → 2Gi (OOMKilled processing keel URs) The mutateExistingOnPolicyUpdate=true on inject-keel-annotations produced 176 UpdateRequests for the initial bulk scan across enrolled namespaces. At the existing 384Mi limit, kyverno-background-controller OOMKilled while processing them — no annotations got injected on existing workloads (count stuck at 30). Live state already bumped via kubectl set resources; this commit makes it durable through Terraform. Also lowered the request to 256Mi (the 384Mi floor was tight against limit; 2Gi headroom for bulk scans, 256Mi steady state). Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>	2026-05-22 14:16:55 +00:00
..
kyverno	kyverno: bump background-controller memory 384Mi → 2Gi (OOMKilled processing keel URs)	2026-05-22 14:16:55 +00:00

Viktor Barzin 7e540292ad kyverno: bump background-controller memory 384Mi → 2Gi (OOMKilled processing keel URs)

The mutateExistingOnPolicyUpdate=true on inject-keel-annotations produced
176 UpdateRequests for the initial bulk scan across enrolled namespaces.
At the existing 384Mi limit, kyverno-background-controller OOMKilled while
processing them — no annotations got injected on existing workloads (count
stuck at 30).

Live state already bumped via kubectl set resources; this commit makes it
durable through Terraform. Also lowered the request to 256Mi (the 384Mi
floor was tight against limit; 2Gi headroom for bulk scans, 256Mi steady
state).

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>

2026-05-22 14:16:55 +00:00

kyverno

kyverno: bump background-controller memory 384Mi → 2Gi (OOMKilled processing keel URs)

2026-05-22 14:16:55 +00:00