Remediations

Remediations are possible fixes that are suggested for Kubernetes resources when they have a violation against the best practices policies.

Remediation in Policy Reports

To view Remediations in Policy Reports:

1. Go to Policies>Policy Reports. The Policy Reports can be viewed based on collections such as Categories, Clusters, or Namespaces. Under each collection, there is a Remediation column that shows the number of remediations available for that category, cluster, or namespace.
2. Click on the Remediations Available button available beside the search bar to filter the list to only contain the rows that have remediations available.

3. Click on any of the Cluster Name (example, eks-production) link to view the list of namespaces containing policy reports that have remediations available.
4. Click on any of the remediation available namespaces to get the list of findings. Go to the Resources tab to find the list of impacted resources in the namespace and filter the ones with remediations available by checking the Remediations Available button. The page also shows the namespace grade along with the total number of resources and violations associated with the resources.

5. Now, click on any of the impacted resources to view the findings related to that particular resource, their severity, status, and whether remediations are available for those findings. The page also summarizes the number of remediations available out of the violations, the namespace grade impact after the remediation is applied, and the number of affected child resources that can be fixed with the applied remediations.

6. Click on the View Remediation Diffs button located at the top right-hand section of the screen to get a side-by-side view of the resource YAML and the remediated resource YAML. Both of the resources YAML can be downloaded by clicking on the download button.

7. Click on any of the findings link with remediation available to view the detailed report, the remediation suggestions, and the list of impacted resources.