open-policy-agent
There are 148 repositories under open-policy-agent topic.
open-policy-agent/opa
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
permitio/opal
Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
open-policy-agent/conftest
Write tests against structured configuration data using the Open Policy Agent Rego query language
Checkmarx/kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
cisagov/ScubaGear
Automation to assess the state of your M365 tenant against CISA's baselines
walidshaari/Certified-Kubernetes-Security-Specialist
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
StyraInc/awesome-opa
A curated list of OPA related tools, frameworks and articles
aquasecurity/chain-bench
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
plexsystems/konstraint
A policy management tool for interacting with Gatekeeper
open-policy-agent/contrib
Integrations, examples, and proof-of-concepts that are not part of OPA proper.
StyraInc/regal
Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
cisagov/ScubaGoggles
SCuBA Secure Configuration Baselines and assessment tool for Google Workspace
alcideio/skan
Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.
StyraInc/rego-style-guide
Style guide for Rego
fluxcd/multi-tenancy
Flux v1: Manage a multi-tenant cluster with Flux and Kustomize
raspbernetes/k8s-security-policies
This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations. The policies are developed in accordance with the CIS Kubernetes benchmark.
anderseknert/kube-review
Create Kubernetes AdmissionReview requests from Kubernetes resource manifests
open-policy-agent/npm-opa-wasm
Open Policy Agent WebAssembly NPM module (opa-wasm)
traefik-plugins/traefik-jwt-plugin
Traefik plugin which checks JWT tokens for required fields. Supports Open Policy Agent (OPA) and signature validation with JWKS
open-policy-agent/vscode-opa
An extension for VS Code which provides support for OPA and the Rego policy language
devspace-cloud/devspace-cloud
DevSpace Cloud ⚡ Turn Kubernetes into a Powerful Developer Platform (new on-premise edition)
replicatedhq/gatekeeper
Kubernetes Operator to manage Dynamic Admission Controllers using Open Policy Agent
jlucaspains/go-rest-template
Golang REST API Template
mhausenblas/the-container-security-book
The Container Security Book—a free book for practitioners
quicsec/quicsec
HTTP/3-enable existing HTTP apps. Leverage HTTP3 native features and auto-enable workload identity (SPIFFE), AuthN (mTLS/x509, OIDC/Auth0-Okta), AuthZ (OPA), defense-in-depth (WAAP/WAF), and observability (metrics, logs, alerting, dashboard).
instrumenta/policies
A set of shared policies for use with Conftest and other Open Policy Agent tools
developer-guy/policy-as-code-war
OPA Gatekeeper vs Kyverno
developer-guy/container-image-sign-and-verify-with-cosign-and-opa
This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
StyraInc/opa-kafka-plugin
Open Policy Agent (OPA) plug-in for Kafka authorization
busykoala/fastapi-opa
Fastapi OPA middleware incl. auth flow.
Turall/OPA-python-client
Python client for Open Policy Agent
zotoio/sls-lambda-opa
Experimental AWS ApiGateway Authorizer Go Lambda with embedded Open Policy Agent
christophwille/dotnet-opa-wasm
Call Open Policy Agent (OPA) policies in WASM (Web Assembly) from .NET Core
cmacrae/kove
Watch your in cluster Kubernetes manifests for OPA policy violations and export them as Prometheus metrics
open-policy-agent/opa-envoy-spire-ext-authz
OPA-Envoy-SPIRE External Authorization Example.
aws-samples/aws-infra-policy-as-code-with-terraform
Implements OPA-based preventive security controls for AWS Infrastructure using Terraform Infrastructure as Code (IaC), that can establish a security baseline and safeguard resources before deployment into the AWS Accounts and reduce security risks.