kubescape / cel-admission-library
This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls, see here a comlete list https://hub.armosec.io/docs/controls
☆55Updated this week
Alternatives and similar repositories for cel-admission-library:
Users that are interested in cel-admission-library are comparing it to the libraries listed below
- ☆48Updated 2 years ago
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆78Updated last year
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆81Updated 3 weeks ago
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆61Updated this week
- Plugin for Helm to integrate the sigstore ecosystem☆62Updated last week
- A pane of glass between you and your Kubernetes clusters.☆45Updated last year
- approver-policy is a cert-manager approver that allows users to define policies that restrict what certificates can be requested.☆81Updated this week
- Enterprise Distribution for Flux CD☆72Updated 2 weeks ago
- Creates PolicyReports based on the different Trivy Operator CRDs like VulnerabilityReports☆59Updated last week
- Alternate reports storage in Kubernetes outside etcd☆32Updated 2 months ago
- pspmigrator is a tool to migrate from PSP to PSA☆29Updated last year
- Operator for Multi-Cluster Monitoring with Thanos.☆132Updated this week
- streamline multi arch k8s runtimes☆53Updated 3 months ago
- Hydrophone is a lightweight Kubernetes conformance tests runner☆85Updated this week
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- An implementation of Karpenter that uses Cluster API as the infrastructure provider.☆50Updated last week
- Kubernetes ClusterInventory API☆67Updated last month
- Container Storage Interface components for SPIFFE☆61Updated 2 weeks ago
- Contains documentation for projectsveltos☆85Updated this week
- A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes☆79Updated this week
- The Helm Charts OCI Proxy, will proxy and transform Helm Chart into OCI images on the fly. Address any Helm Chart as OCI image.☆123Updated last month
- K8s-shredder - an opinionated way of parking in Kubernetes☆79Updated this week
- A @crossplane provider for Terraform☆100Updated 2 weeks ago
- Kubernetes network policies☆54Updated last week
- A kubectl plugin to visualize network policies rules.☆96Updated last year
- Kube State Metrics `CustomResourceState` configurations for Gateway API resources☆22Updated 2 months ago
- The Kamaji Control Plane provider implementation of the Cluster Management API☆101Updated this week
- A flexible and scalable platform for running Kubernetes control plane APIs.☆60Updated 2 weeks ago
- Outreach and central subproject docs site for SIG-Multicluster☆29Updated 3 weeks ago
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…☆131Updated this week