Incorrect reporting for GKE autopilot cluster

[rahulracker7539]

Community Note

• Please vote on this issue by adding a 👍 reaction
  to the original issue to help the community and maintainers prioritize this request
• Please do not leave "+1" or "me too" comments, they generate extra noise for issue followers and do
  not help prioritize the request
• If you are interested in working on this issue or have submitted a pull request, please leave a comment.

Description

I noticed some inaccuracies in the reporting for the Autopilot cluster. For example, in my GKE Autopilot cluster, Intra-node visibility is enabled, yet it still appears under the "invalid" category in the report generated using gke-policy-automation.

Similarly, the policy "Ensure redundancy of the node pools" is being flagged, even though our GKE Autopilot cluster is regional by default and node pool configuration isn't user-managed in Autopilot mode. Despite this, the policy still shows up in the report generated by gke-policy-automation.

References

• #0000

[mikouaj]

Thanks for pointing this out, indeed the policies needs a bit of updating in regards to Autopilot clusters.
The overall idea is to split the existing policy library into two subsets and evaluate clusters depending on their type.