kubernetes / pod-security-admission
Kubernetes Pod Security Standards implementation - https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/2579-psp-replacement/README.md
โ100Updated this week
Alternatives and similar repositories for pod-security-admission:
Users that are interested in pod-security-admission are comparing it to the libraries listed below
- ๐ฎ โ๏ธ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sigโฆโ78Updated last year
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable suppโฆโ131Updated this week
- This repo addresses further work involving Kubernetes network security beyond the initial NetworkPolicy resourceโ65Updated last week
- Octant plugin for viewing Starboard security informationโ57Updated 3 years ago
- A simple WebUI with latest events from Falcoโ120Updated 2 weeks ago
- Tools for understanding, measuring, and applying network policies effectively in kubernetesโ116Updated 9 months ago
- An admission controller service and kubectl plugin to handle container drift in K8s clustersโ124Updated 3 years ago
- Plugins for Sonobuoyโ63Updated 3 months ago
- Kubernetes ClusterInventory APIโ67Updated last month
- โ100Updated this week
- Security risk analysis for Kubernetes resourcesโ74Updated 3 months ago
- approver-policy is a cert-manager approver that allows users to define policies that restrict what certificates can be requested.โ81Updated this week
- Prometheus Metrics Exporter for Falco output eventsโ122Updated 2 weeks ago
- This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controlsโฆโ55Updated 2 weeks ago
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloadsโ90Updated 3 weeks ago
- K8s Node Health Check Operatorโ107Updated 2 weeks ago
- Add digests to container and init container images in Kubernetes pod and pod template specs. Use either as a mutating admission webhook, โฆโ142Updated last month
- Addon operators for Kubernetes clusters.โ157Updated 2 years ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstoreโ81Updated 2 weeks ago
- A kubectl plugin which triggers a Sysdig captureโ100Updated last year
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).โ61Updated this week
- Sidecar for managing OPA instances in Kubernetes.โ243Updated 2 weeks ago
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-uโฆโ65Updated this week
- pspmigrator is a tool to migrate from PSP to PSAโ29Updated last year
- Kubernetes network policiesโ54Updated last week
- Administrative tooling for Falcoโ102Updated this week
- Kubernetes production-ready admission webhook exampleโ75Updated 2 years ago
- A kubectl plugin to visualize network policies rules.โ96Updated last year
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReportsโ59Updated this week
- Instructions and issue tracking for Service Mesh capabilities of Ciliumโ104Updated 2 years ago