kubescape / cel-admission-libraryLinks
This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls, see here a comlete list https://hub.armosec.io/docs/controls
☆78Updated last week
Alternatives and similar repositories for cel-admission-library
Users that are interested in cel-admission-library are comparing it to the libraries listed below
Sorting:
- A pane of glass between you and your Kubernetes clusters.☆46Updated last year
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆60Updated last week
- Plugin for Helm to integrate the sigstore ecosystem☆67Updated 3 weeks ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆85Updated 2 months ago
- K8s-shredder - an opinionated way of parking in Kubernetes☆84Updated this week
- approver-policy is a cert-manager approver that allows users to define policies that restrict what certificates can be requested.☆85Updated this week
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆126Updated 3 years ago
- A kubectl plugin to visualize network policies rules.☆97Updated last year
- Kubernetes Operator to sync secrets between different secret backends and Kubernetes☆163Updated 3 months ago
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated last week
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆79Updated last year
- Enterprise Distribution for Flux CD☆80Updated last week
- Lock for K8s☆56Updated last year
- Tracking Kubernetes Operators out in the wild.☆31Updated last year
- Alternate reports storage in Kubernetes outside etcd☆39Updated this week
- streamline multi arch k8s runtimes☆56Updated last month
- Kube State Metrics `CustomResourceState` configurations for Gateway API resources☆24Updated this week
- A multi-tenancy focused solution, that facilitates collection of telemetry data from Kubernetes workloads transparently.☆49Updated last week
- Add digests to container and init container images in Kubernetes pod and pod template specs. Use either as a mutating admission webhook, …☆154Updated 7 months ago
- The Helm Charts OCI Proxy, will proxy and transform Helm Chart into OCI images on the fly. Address any Helm Chart as OCI image.☆138Updated last month
- Resize Kubernetes PersistentVolumes automatically based on Kubecost recommendations.☆76Updated last week
- [alpha] Controller to override image sources in the event that an image cannot be pulled.☆124Updated last week
- Recreation of common Pod Security Policy configuration in other common Kubernetes policy engines☆51Updated this week
- Watch and print changes in k8s☆95Updated last year
- Kubernetes network policies reference implementation☆63Updated last week
- Converts a Terraform module to a Helm Chart☆50Updated 2 months ago
- Automatically taint nodes and evict pods based on cpu pressure☆51Updated 2 years ago
- Contains documentation for projectsveltos☆107Updated this week
- A CLI to nicely display resources/helm charts deployed in Cluster managed by Sveltos. Collect tech-support from managed Kubernetes cluste…☆28Updated last week
- Scans SBOMs for vulnerabilities with Grype☆85Updated last week