policy-as-code
There are 205 repositories under policy-as-code topic.
permitio/opal
Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
someengineering/fixinventory
Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.
kptdev/kpt
Automate Kubernetes Configuration Editing
aws-cloudformation/cloudformation-guard
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpyzpfoYGGuuUl0
tmobile/pacbot
PacBot (Policy as Code Bot)
StyraInc/awesome-opa
A curated list of OPA related tools, frameworks and articles
safedep/vet
Protect against malicious open source packages 🤖
openmobilityfoundation/mobility-data-specification
A data specification to enable right-of-way regulation, digital policy, geofencing, and two-way communication between mobility companies and public agencies worldwide.
opengovern/opensecurity
opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.
selefra/selefra
The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).
globalbao/awesome-azure-policy
A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @JesseLoudon
mondoohq/cnspec
An open source, cloud-native security to protect everything from build to runtime
StyraInc/regal
Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
noqdev/iambic
IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, human-readable, bi-directional representation of IAM in Git.
microsoft/regorus
Regorus - A fast, lightweight Rego (OPA policy language) interpreter written in Rust.
kubewarden/kubewarden-controller
Manage admission policies in your Kubernetes cluster with ease
StyraInc/rego-style-guide
Style guide for Rego
stakpak/devx
A tool for generating, validating & sharing all your configurations, powered by CUE. Works with Kubernetes, Terraform, Compose, GitHub actions and much more...
hysnsec/awesome-policy-as-code
A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
globalbao/azure-policy-as-code
Bicep and Terraform code examples for policy-as-code workflows. Azure governance guardrails and automation - by @JesseLoudon
permitio/cedar-agent
Cedar-agent is the easiest way to deploy and run Cedar
anderseknert/kube-review
Create Kubernetes AdmissionReview requests from Kubernetes resource manifests
kubewarden/policy-server
Webhook server that evaluates WebAssembly policies to validate Kubernetes requests
tmobile/magtape
MagTape Policy-as-Code for Kubernetes
aws-cloudformation/aws-guard-rules-registry
Rules Registry for Compliance Frameworks
open-policy-agent/vscode-opa
An extension for VS Code which provides support for OPA and the Rego policy language
chef/cookstyle
A linting tool that helps you to write better Chef Infra cookbooks and InSpec profiles by detecting and automatically correcting style, syntax, and logic mistakes in your code.
gjyoung1974/soc2-policy-templates
Template SOC2 Policy Authority - documentation pipeline
hexa-org/policy-orchestrator
Hexa Policy Orchestrator enables you to manage all of your access policies consistently across software providers.
narval-xyz/armory
Secure, advanced, and flexible access management stack for web3.
xfhg/intercept
INTERCEPT / Policy as Code Auditing & Compliance
kubewarden/kwctl
Go-to CLI tool for Kubewarden users
dod-advana/gamechanger
GAMECHANGER aspires to be the Department’s trusted solution for evidence-based, data-driven decision-making across the universe of DoD requirements
augur-ai/mantis
Mantis is a unified infrastructure as code framework that replaces Terraform and Helm
developer-guy/policy-as-code-war
OPA Gatekeeper vs Kyverno
appvia/psp-migration
Recreation of common Pod Security Policy configuration in other common Kubernetes policy engines