This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations. The policies are developed in accordance with the CIS Kubernetes benchmark.
☆175Nov 21, 2025Updated 3 months ago
Alternatives and similar repositories for k8s-security-policies
Users that are interested in k8s-security-policies are comparing it to the libraries listed below
Sorting:
- A policy management tool for interacting with Gatekeeper☆391Nov 20, 2025Updated 3 months ago
- 📚 The OPA Gatekeeper policy library☆694Mar 2, 2026Updated last week
- Rego policies collection☆169Updated this week
- A set of shared policies for use with Conftest and other Open Policy Agent tools☆66Jan 20, 2021Updated 5 years ago
- A simple to use web-based OPA Gatekeeper policy manager☆327Updated this week
- CLI for searching Rego policies☆105Feb 5, 2022Updated 4 years ago
- Rego policies to monitor Kubernetes APIs deprecations.☆143Jul 28, 2021Updated 4 years ago
- conftest plugin that transforms k8s input object to be compatible with gatekeeper policies☆14Jan 26, 2024Updated 2 years ago
- Kubernetes security tool for policy enforcement☆441Jan 12, 2023Updated 3 years ago
- Kubernetes cluster managed by Flux and using git as a "single source of truth."☆13Feb 7, 2026Updated last month
- A curated list of OPA related tools, frameworks and articles☆865Jan 16, 2026Updated last month
- MKIT is a Managed Kubernetes Inspection Tool that validates several common security-related configuration settings of managed Kubernetes …☆397Sep 16, 2021Updated 4 years ago
- Security configuration checks for popular cloud native applications and infrastructure.☆119Feb 16, 2022Updated 4 years ago
- ☆32Dec 1, 2019Updated 6 years ago
- 🐊 Policy Controller for Kubernetes☆4,157Updated this week
- 🏡 My homelab☆19Mar 3, 2026Updated last week
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,130Updated this week
- An experimental package manager for distributing Kubernetes configuration as OCI artifacts.☆302Jul 22, 2023Updated 2 years ago
- Superseded by https://github.com/aquasecurity/trivy-operator☆1,374Feb 3, 2026Updated last month
- Archived: Use github.com/stolostron/gatekeeper-operator☆39Sep 26, 2023Updated 2 years ago
- Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.☆205Mar 3, 2023Updated 3 years ago
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆79Dec 4, 2025Updated 3 months ago
- ☆14Sep 20, 2023Updated 2 years ago
- Webhook service for Kubernetes LDAP authentication with the Webhook Token authentication plugin☆10Jun 17, 2020Updated 5 years ago
- 🖥️ 👓 Monitor your OPA Gatekeeper via Grafana Dashboard☆14Dec 17, 2020Updated 5 years ago
- ☆34Jul 11, 2019Updated 6 years ago
- ☆27Aug 31, 2022Updated 3 years ago
- A curated list of Falco related tools, frameworks, blogs, podcasts, and articles☆202Jul 28, 2021Updated 4 years ago
- Kubernetes RBAC static analysis & visualisation tool☆739Feb 13, 2026Updated 3 weeks ago
- Plugin for Helm to integrate the sigstore ecosystem☆68Feb 27, 2026Updated last week
- Security risk analysis for Kubernetes resources☆1,442Feb 16, 2026Updated 3 weeks ago
- A collection of templates for CAPI + Talos☆15Mar 1, 2026Updated last week
- A faster and easier way to manage the lifecycle of applications and tools, running and living around your Kubernetes platform☆182May 13, 2022Updated 3 years ago
- ☆20Jun 21, 2020Updated 5 years ago
- Sidecar for managing OPA instances in Kubernetes.☆256Mar 1, 2026Updated last week
- Demos for several kubernetes security features☆64Jan 9, 2025Updated last year
- Security risk analysis for Kubernetes resources☆515Jan 23, 2025Updated last year
- Kubernetes utility for exposing image versions in use, compared to latest available upstream, as metrics.☆765Mar 1, 2026Updated last week
- Show who has RBAC permissions to perform actions on different resources in Kubernetes☆905Jul 17, 2024Updated last year