PREQUEL-2025-0114
Kubernetes Deployment Memory Requests MissingMedium
PREQUEL-2025-0114View on GitHub
Description
- Detects Kubernetes Deployment resources without memory requests configured on containers.\n- Monitors deployment specifications where containers lack proper memory request definitions.\n- Identifies resource management violations that can lead to poor scheduling decisions.\n- Tracks deployments that may cause memory pressure and OOM conditions.\n
Mitigation
- Implement admission controllers to enforce memory request requirements on deployments.\n- Establish baseline memory request values based on application profiling.\n- Integrate memory validation into CI/CD pipelines before deployment.\n- Use application performance monitoring to determine appropriate memory requests.\n