PREQUEL-2025-0112

Kubernetes Deployment CPU Requests MissingMedium

PREQUEL-2025-0112View on GitHub

KubernetesDeploymentCPU Requestsresource-managementSchedulingPerformance

Description

• Detects Kubernetes Deployment resources without CPU requests configured on containers.
• Monitors deployment specifications where containers lack proper CPU request definitions.
• Identifies resource management violations that can lead to poor cluster scheduling.
• Tracks deployments that may cause resource contention and performance issues.

Cause

• Deployment manifests created without proper resource request specifications.
• Development teams unaware of Kubernetes resource management best practices.
• CI/CD pipelines deploying applications without resource governance.
• Helm charts or templates missing default CPU request configurations.
• Legacy applications migrated to Kubernetes without resource planning.
• Infrastructure automation scripts lacking resource request validation.

Mitigation

• Implement admission controllers to enforce CPU request requirements on deployments.
• Establish baseline CPU request values for different application tiers.
• Integrate resource validation into CI/CD pipelines before deployment.
• Use monitoring tools to analyze actual CPU usage and set appropriate requests.

References

• https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
• https://kubernetes.io/docs/tasks/configure-pod-container/assign-cpu-resource/
• https://kubernetes.io/docs/concepts/policy/resource-quotas/