Docs
Blog
Kubevious.io places cookies on your computer or device to make the site work better and to help us understand how you use our site. Further use of this site (by clicking, navigating or scrolling) will be considered consent. Please visit our privacy policy for more information.
Guard
Features
Application Centric UI
Health Monitoring
Cloud Native Tools
Search Engine
Time Machine
Rules Engine
Slack Bot
Built-in Validators
Container
Compute
Configuration
Unused ConfigMap
Unused Secret
Networking
Storage
RBAC
Security
Traefik Proxy
Docs
Built-in Validators
Configuration

Unused ConfigMap

One of the most common uses of ConfigMap is to mount it to a container file system or use it as environment variables. This validator detects when a ConfigMap is not mounted to a volume and not used as container environment variables. That can be an indication of a typo in a ConfigMap name or ConfigMap references in volume mount, projections, or environment variables.

Affected Resources: ConfigMap

Examples

apiVersion: v1 kind: ConfigMap metadata: name: config-foo # This ConfigMap is not used elsewhere data: my-key: my-value
kind: Deployment spec: template: spec: containers: - name: my-container env: - name: MY_ENV_VAR valueFrom: configMapKeyRef: name: config-foo-1 # This ConfigMap is not present key: my-key envFrom: - configMapRef: name: config-foo-2 # This ConfigMap is not present
kind: Deployment spec: template: spec: volumes: - name: my-config-volume configMap: name: config-bar # This ConfigMap is not present

Resolution

  • Examine applications within the namespace and determine if the ConfigMap is supposed to be mounted to the file system or used as environment variables.
  • If the ConfigMap is supposed to be used in volume maps, either correct the ConfigMap name or the reference name.
  • If the ConfigMap is indeed unused, it may need to be just removed.
  • There is a possible false positive trigger for this validator. A ConfigMap can be used by other third-party apps or using direct Kubernetes APIs. Such a condition cannot be detected using in Kubevious, so in such a case, this validator can be turned off or warning just ignored.
    • Prev
    Configuration
    Next
    Unused Secret

    Need other validation rules?

    Please let us know if there are other built-in validation rules you would like to see in Kubevious to detect misconfigurations and violations to best practices. Optionally, you can provide your details so we can reach out to you with follow-up questions.

    Share this article on:
    message
    PRODUCTGet StartedDemoOpen-Source
    COMPANYContactPrivacy PolicyTerms and Conditions
    KNOWLEDGE BASEDocumentationKubernetes Best PracticesBlog