Kyverno Policy Tests
Test suites for every Kyverno policy. Every policy in baseline/, restricted/, and custom/ must have a corresponding test directory here.
Test Structure
tests/<policy-name>/
βββ policy.yaml # Copy of the policy being tested
βββ resource-pass.yaml # Resource that SHOULD be allowed
βββ resource-fail.yaml # Resource that SHOULD be denied
βββ kyverno-test.yaml # Test definition linking policy, resources, and expected results
Running Tests
# Test all policies
kyverno test policies/tests/
# Test a single policy
kyverno test policies/tests/<policy-name>/
# Via task runner
task validate