kubewarden-policy
There are 53 repositories under kubewarden-policy topic.
kubewarden/deprecated-api-versions-policy
A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources
kubewarden/verify-image-signatures
A Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod
kubewarden/pod-privileged-policy
A Kubewarden Policy that limits the ability to create privileged containers
kubewarden/allowed-proc-mount-types-psp-policy
Replacement for the Kubernetes Pod Security Policy that controls the usage of /proc mount types
kubewarden/user-group-psp-policy
This Kubewarden Policy is a replacement for the Kubernetes Pod Security Policy that controls containers user and groups
kubewarden/allow-privilege-escalation-psp-policy
A Kubewarden Pod Security Policy that controls usage of allowPrivilegeEscalation
kubewarden/apparmor-psp-policy
A Kubewarden Pod Security Policy that controls usage of AppArmor profiles
kubewarden/trusted-repos-policy
A Kubewarden policy that restricts what registries, tags and images can pods on your cluster refer to
kubewarden/capabilities-psp-policy
A Pod Security Policy that controls Container Capabilities
kubewarden/cel-policy
A policy that can run CEL expressions
kubewarden/env-variable-secrets-scanner-policy
A Kubewarden Policy that detects secrets (ssh private keys, API tokens, etc) leaked via environment variables
kubewarden/safe-labels-policy
Kubewarden policy that validates Kubernetes' resource labels
kubewarden/allowed-fsgroups-psp-policy
Replacement for the Kubernetes Pod Security Policy that controls the usage of fsGroup in the pod security context
kubewarden/ingress-policy
Policy to enforce requirements on Kubernetes Ingress resources.
kubewarden/safe-annotations-policy
Kubewarden policy that validates Kubernetes' resource annotations
kubewarden/seccomp-psp-policy
A Kubewarden Pod Security Policy that controls usage of Seccomp profiles
kubewarden/hostpaths-psp-policy
Replacement for the Kubernetes Pod Security Policy that controls the usage of hostpaths
kubewarden/pod-runtime-class-policy
A Kubewarden Policy that controls the usage of Pod runtimeClass
kubewarden/disallow-service-loadbalancer-policy
A policy that prevents the creation of Service resources with type LoadBalancer
kubewarden/disallow-service-nodeport-policy
A policy that prevents the creation of Service resources with type NodePort
kubewarden/environment-variable-policy
A Kubewarden Policy that controls the usage of environment variables
kubewarden/readonly-root-filesystem-psp-policy
A Kubewarden policy that enforces root filesystem to be readonly
kubewarden/sysctl-psp-policy
A Kubewarden policy that controls usage of sysctls
kubewarden/volumeMounts-policy
A Kubewarden Policy that controls the usage of `volumeMounts`
kubewarden/volumes-psp-policy
Replacement for the Kubernetes Pod Security Policy that controls the usage of volumes
fabriziosestito/kw-policy-zig
Kubewarden policy in Zig
kubewarden/context-aware-demo
A demo policy showing how to access Kubernetes resources at policy evaluation time
kubewarden/echo
A Kubewarden Policy that echoes Kubernetes' AdmissionReview objects
kubewarden/go-wasi-context-aware-test-policy
A test context-aware policy written using Go Wasi
kubewarden/kyverno-dsl-policy
[Experimental] Reuse Kyverno policies with Kubewarden
kubewarden/namespace-label-propagator-policy
Kubewarden policy designed to automatically propagate labels defined in a Kubernetes namespace to the associated resources within that namespace
kubewarden/persistentvolumeclaim-storageclass-policy
Policy that validates and adjusts the usage of StorageClasses in PersistentVolumeClaims
kubewarden/psa-label-enforcer-policy
Kubewarden policy that ensures that namespaces have the required PSA labels
kubewarden/rancher-project-quotas-namespace-validator
Prevent the creation of Namespace under a Rancher Project that doesn't have any resource quota left
nlamirault/disallow-default-namespace-policy
A Kubewarden policy to disallow usage of the default namespace
nlamirault/probes-policy
A Kubewarden policy to check liveness and readiness probes