PREQUEL-2025-0116

Kubernetes Deployment Liveness Probe MissingMedium

PREQUEL-2025-0116View on GitHub

KubernetesDeploymentLiveness ProbeHealth ChecksReliabilityAvailability

Description

- Detects Kubernetes Deployment resources without liveness probes configured on containers.\n- Monitors deployment specifications where containers lack proper health check definitions.\n- Identifies reliability violations that can lead to undetected application failures.\n- Tracks deployments that may run unhealthy containers without automatic recovery.\n

Mitigation

- Implement admission controllers to enforce liveness probe requirements on deployments.\n- Establish standard health check endpoints for all application services.\n- Integrate health check validation into CI/CD pipelines before deployment.\n- Implement application-specific health check logic for accurate status reporting.\n

References

• https://kubernetes.io/docs/tasks/configure-pod-container/configure-liveness-readiness-startup-probes/
• https://kubernetes.io/docs/concepts/workloads/pods/pod-lifecycle/#container-probes
• https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.28/#probe-v1-core