PREQUEL-2025-0112

Kubernetes Deployment CPU Requests MissingMedium

PREQUEL-2025-0112View on GitHub

Kubernetes Deployment CPU Requestsresource-managementScheduling Performance

Description

- Detects Kubernetes Deployment resources without CPU requests configured on containers.\n- Monitors deployment specifications where containers lack proper CPU request definitions.\n- Identifies resource management violations that can lead to poor cluster scheduling.\n- Tracks deployments that may cause resource contention and performance issues.\n

Mitigation

- Implement admission controllers to enforce CPU request requirements on deployments.\n- Establish baseline CPU request values for different application tiers.\n- Integrate resource validation into CI/CD pipelines before deployment.\n- Use monitoring tools to analyze actual CPU usage and set appropriate requests.\n

References

https://kubernetes.io/docs/concepts/configuration/manage-resources-containers/
https://kubernetes.io/docs/tasks/configure-pod-container/assign-cpu-resource/
https://kubernetes.io/docs/concepts/policy/resource-quotas/