GoogleCloudPlatform / gke-application-security-demo
This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engine. You will deploy multiple instances of the same container image with a variety of security settings to illustrate the use of RBAC, security contexts, and AppArmor policies.
☆70Updated 6 months ago
Alternatives and similar repositories for gke-application-security-demo:
Users that are interested in gke-application-security-demo are comparing it to the libraries listed below
- This project demonstrates a series of best practices for improving the security of containerized applications deployed to Kubernetes Engi…☆95Updated 6 months ago
- In this project, you will leverage Kubernetes Engine and Google Compute Engine to explore how Istio can manage services that reside outsi…☆53Updated last year
- This guide demonstrates how to improve the security of your Kubernetes Engine by applying fine-grained restrictions to network communicat…☆100Updated last year
- This is the shared project for two Kubernetes Engine demos☆18Updated last year
- Implementation steps and assets for Google Cloud Anthos blueprints https://cloud.google.com/architecture/blueprints/anthos-security-blue…☆44Updated 9 months ago
- This project demonstrates a different upgrade procedures best suited for clusters containing stateless and stateful workloads. You will p…☆53Updated last year
- Report OPA Gatekeeper audit violations in Security Command Center.☆42Updated 2 months ago
- This project demonstrates how to use an Istio service mesh in a single Kubernetes Engine cluster alongside Prometheus, Jaeger, and Grafan…☆60Updated last year
- This project walks you through setting up monitoring and visualizing metrics from a Kubernetes Engine cluster. The logs from the Kubernet…☆109Updated 2 years ago
- This project demonstrates how a third party solution, like Datadog, can be used to monitor a Kubernetes Engine cluster and its workloads.…☆24Updated last year
- This repository guides you through deploying a private GKE cluster and provides a base platform for hands-on exploration of several GKE r…☆53Updated 5 years ago
- This project demonstrates how Istio's mesh expansion feature can be used to link services accross a VPN. The feature allows for a non-Kub…☆46Updated last year
- This project introduces you to Stackdriver's tracing feature, and provides a distributed tracing example that can serve as a basis for y…☆62Updated 6 months ago
- PCI on GKE Blueprint: PCI Deployable Architecture on Google Cloud and GKE☆128Updated 4 years ago
- This demo builds two GKE Clusters and guides you through using secrets in Vault, using Kubernetes authentication from within a pod to log…☆72Updated 6 months ago
- Golang library which provides functionality to evaluate GCP resources against Rego-based policies☆44Updated this week
- ☆81Updated last year
- This project covers two use cases for RBAC within a Kubernetes Engine cluster. First, assigning different permissions to user personas. S…☆162Updated 6 months ago
- [Deprecated] Automated Anthos Installation via Terraform for Equinix Metal with vSphere☆63Updated 5 months ago
- An application to help with IP Address Management (IPAM) for Google Kubernetes Engine (GKE) clusters. Easily allows the calculation of th…☆59Updated this week
- 📦 Demo generator for Google Kubernetes Engine!☆93Updated 3 months ago
- Creates SLOs on Google Cloud from custom Stackdriver metrics capability to export SLOs to Google Cloud services and other systems☆63Updated 3 weeks ago
- gke-tf was created to streamline the creation of customized Terraform source files that build GKE clusters and supporting resources in GC…☆55Updated 5 years ago
- GKE ingress with GCP managed certificates☆25Updated 2 years ago
- A library of constraint templates and sample constraints for Constraint Framework tools☆225Updated 8 months ago
- ☆39Updated 3 years ago
- Manages Google Cloud organization policies☆88Updated last week
- Anthos Config Management Examples☆72Updated 3 years ago
- Creates a regional TCP proxy load balancer for Compute Engine by using target pools and forwarding rules☆93Updated 3 weeks ago
- An end-to-end operating model for onboarding and continually deploying services with Anthos.☆85Updated 9 months ago