An open source, general-purpose policy engine.
-
Updated
Jun 28, 2023 - Go
#
Open Policy Agent
The Open Policy Agent (OPA, pronounced “oh-pa”) is an open source, general-purpose policy engine that unifies policy enforcement across the stack. OPA provides a high-level declarative language that lets you specify policy as code and simple APIs to offload policy decision-making from your software. You can use OPA to enforce policies in microservices, Kubernetes, CI/CD pipelines, API gateways, and more.
Community & Support
What is OPA
Here are 105 public repositories matching this topic...
Write tests against structured configuration data using the Open Policy Agent Rego query language
-
Updated
Jun 19, 2023 - Go
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
kubernetes
security
policy
pod
certification
seccomp
apparmor
falco
exam-objectives
mitre-attack
open-policy-agent
kernel-hardening
kube-bench
pod-security-policy
cks
kubernetes-security
trivy
kube-hunter
ckss
os-footprint
-
Updated
May 6, 2023 - AGS Script
Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
microservices
websocket
realtime
pubsub
policy
authorization
opa
opal
cedar
oso
open-policy-agent
policy-as-code
-
Updated
Jun 27, 2023 - Python
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
golang
security
iac
infrastructure-as-code
cloudnative
appsec
vulnerability-detection
hacktoberfest
vulnerability-scanners
security-tools
devsecops
open-policy-agent
-
Updated
Jun 28, 2023 - Open Policy Agent
Find, install and publish Kubernetes packages
kubernetes
helm
cncf
gatekeeper
falco
coredns-plugin
open-policy-agent
keptn
tekton
krew-index
olm-operators
tinkerbell-actions
kyverno
kubewarden
keda-scalers
-
Updated
Jun 28, 2023 - TypeScript
A curated list of OPA related tools, frameworks and articles
-
Updated
Jun 28, 2023
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
go
golang
security
cis
software-supply-chain
vulnera
security-tools
devsecops
misconfiguration
open-policy-agent
software-supply-chain-security
-
Updated
Mar 19, 2023 - Go
A policy management tool for interacting with Gatekeeper
-
Updated
Jun 19, 2023 - Go
Integrations, examples, and proof-of-concepts that are not part of OPA proper.
-
Updated
Jun 14, 2023 - Go
Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.
kubernetes
devops
dashboard
ci
helm
opa
scan-tool
scanning
best-practice
open-policy-agent
openpolicyagent
kustomize
conftest
configuration-scan
helm-scan
helmscan
-
Updated
Mar 3, 2023 - JavaScript
Flux v1: Manage a multi-tenant cluster with Flux and Kustomize
-
Updated
Jan 20, 2021 - Open Policy Agent
Style guide for Rego
-
Updated
May 24, 2023
This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations. The policies are developed in accordance with the CIS Kubernetes benchmark.
kubernetes
security
benchmark
cis
gatekeeper
open-policy-agent
violation
conftest
kubernetes-clusters
cis-kubernetes-benchmark
raspbernetes
kubesec
rego-policy
rego-files
-
Updated
May 29, 2023 - Open Policy Agent
Regal is a linter for Rego, with the goal of making your Rego magnificent!
lint
linter
static-analysis
opa
code-quality
linters
magnificent
open-policy-agent
policy-as-code
rego
-
Updated
Jun 27, 2023 - Open Policy Agent
Open Policy Agent WebAssembly NPM module (opa-wasm)
-
Updated
Jun 24, 2023 - JavaScript
Kubernetes Operator to manage Dynamic Admission Controllers using Open Policy Agent
-
Updated
Jan 17, 2019 - Go
DevSpace Cloud
kubernetes
development
sandbox
provisioning
sandboxing
opa
rbac
cloud-native
gatekeeper
namespaces
sandbox-environment
devspace
open-policy-agent
provision-namespaces
namespace-isolation
-
Updated
Jan 5, 2023 - Open Policy Agent
The Container Security Book—a free book for practitioners
-
Updated
Mar 27, 2020
Create Kubernetes AdmissionReview requests from Kubernetes resource manifests
kubernetes
opa
k8s
kubectl
admission-controller
open-policy-agent
admission-webhook
policy-as-code
mutating-admission-webhook
validating-admission-webhook
kube-review
admission-review
-
Updated
Jun 13, 2023 - Go
- Followers
- 12 followers
- Repository
- open-policy-agent/opa
- Website
- www.openpolicyagent.org