From 67a47528cc64209974b20e2b4529c8e4703bbf7a Mon Sep 17 00:00:00 2001
From: Danijel Simeunovic <danijel.simeunovic@trumf.no>
Date: Wed, 18 Feb 2026 12:19:19 +0100
Subject: [PATCH] fix2

---
 cluster-resources/policies/deployment-verifier.yaml | 9 +++------
 1 file changed, 3 insertions(+), 6 deletions(-)

diff --git a/cluster-resources/policies/deployment-verifier.yaml b/cluster-resources/policies/deployment-verifier.yaml
index fba5da9..421faa2 100644
--- a/cluster-resources/policies/deployment-verifier.yaml
+++ b/cluster-resources/policies/deployment-verifier.yaml
@@ -28,12 +28,9 @@ spec:
         jmesPath: "@"
     preconditions:
       all:
-      - key: "{{request.object.metadata.ownerReferences || `[]`}}"
-        operator: NotEquals
-        value: "[]"
-      - key: "{{request.object.metadata.ownerReferences[0].kind}}"
-        operator: Equals
-        value: ReplicaSet
+      - key: "{{request.object.metadata.ownerReferences[?kind=='ReplicaSet'] | length(@)}}"
+        operator: GreaterThanOrEquals
+        value: 1
     validate:
       message: "Pods must be created through a Deployment resource."
       deny: