INTERCEPT / Policy as Code Auditing / SAST for Code & APIs
-
Updated
Jun 1, 2024 - Go
INTERCEPT / Policy as Code Auditing / SAST for Code & APIs
aws cdk work with cloudformation guard demo.
Recreation of common Pod Security Policy configuration in other common Kubernetes policy engines
Manage admission policies in your Kubernetes cluster with ease
Validated policy sets for Nirmata Enterprise for Kyverno
Crate used by Kubewarden that is able to pull policies from OCI registries and HTTP servers.
Go-to CLI tool for Kubewarden users
Webhook server that evaluates WebAssembly policies to validate Kubernetes requests
Reports evaluation of existing Kubernetes resources with your already deployed Kubewarden policies.
An open source, cloud-native security to protect everything from build to runtime
Regal is a linter for Rego, with the goal of making your Rego magnificent!
Kubewarden Policy SDK for the Go programming language
Files used to run Kubewarden end-to-end tests
This repository has a policy file of the Open Policy Agent to check that resources defined in CloudFormation templates are tagged.
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpyzpfoYGGuuUl0
A Kubewarden Policy that echoes Kubernetes' AdmissionReview objects
Replacement for the Kubernetes Pod Security Policy that controls the usage of host namespaces
A Kubewarden Policy that controls the usage of `volumeMounts`
A Kubewarden Policy that limits the ability to create privileged containers
A Kubewarden Pod Security Policy that controls usage of Seccomp profiles
Add a description, image, and links to the policy-as-code topic page so that developers can more easily learn about it.
To associate your repository with the policy-as-code topic, visit your repo's landing page and select "manage topics."