policy-as-code

There are 195 repositories under policy-as-code topic.

  • opal

    permitio/opal

    Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)

    Language:Python5.2k31147186

  • kptdev/kpt

    Automate Kubernetes Configuration Editing

    Language:Go1.7k451.8k228
  • fixinventory

    someengineering/fixinventory

    Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.

    Language:Python1.6k1815588

  • aws-cloudformation/cloudformation-guard

    Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpyzpfoYGGuuUl0

    Language:Rust1.3k40224183
  • pacbot

    tmobile/pacbot

    PacBot (Policy as Code Bot)

    Language:Java1.3k82197277

  • StyraInc/awesome-opa

    A curated list of OPA related tools, frameworks and articles

    79421576
  • mobility-data-specification

    openmobilityfoundation/mobility-data-specification

    A data standard to enable right-of-way regulation and two-way communication between mobility companies and local governments.

    69490391232

  • selefra/selefra

    The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).

    Language:Go52671439
  • awesome-azure-policy

    globalbao/awesome-azure-policy

    A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @JesseLoudon

    494271110

  • noqdev/iambic

    IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, human-readable, bi-directional representation of IAM in Git.

    Language:Python28689326

  • mondoohq/cnspec

    An open source, cloud-native security to protect everything from build to runtime

    Language:Go2821624417
  • regal

    StyraInc/regal

    Regal is a linter and language server for Rego, bringing your policy development experience to the next level!

    Language:Go2691148537
  • vet

    safedep/vet

    Tool to achieve policy driven vetting of open source dependencies

    Language:Go24488024
  • rego-style-guide

    StyraInc/rego-style-guide

    Style guide for Rego

    19720810

  • kubewarden/kubewarden-controller

    Manage admission policies in your Kubernetes cluster with ease

    Language:Go1961038833

  • hysnsec/awesome-policy-as-code

    A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.

    18418025

  • globalbao/azure-policy-as-code

    Bicep and Terraform code examples for policy-as-code workflows. Azure governance guardrails and automation - by @JesseLoudon

    Language:HCL175191083

  • stakpak/devx

    A tool for generating, validating & sharing all your configurations, powered by CUE. Works with Kubernetes, Terraform, Compose, GitHub actions and much more...

    Language:Go1745165

  • microsoft/regorus

    Regorus - A fast, lightweight Rego (OPA policy language) interpreter written in Rust.

    Language:Open Policy Agent156710335

  • permitio/cedar-agent

    Cedar-agent is the easiest way to deploy and run Cedar

    Language:Rust15151113
  • magtape

    tmobile/magtape

    MagTape Policy-as-Code for Kubernetes

    Language:Python147145728

  • kubewarden/policy-server

    Webhook server that evaluates WebAssembly policies to validate Kubernetes requests

    Language:Rust142815118

  • open-policy-agent/vscode-opa

    An extension for VS Code which provides support for OPA and the Rego policy language

    Language:TypeScript11497131

  • anderseknert/kube-review

    Create Kubernetes AdmissionReview requests from Kubernetes resource manifests

    Language:Go110455

  • aws-cloudformation/aws-guard-rules-registry

    Rules Registry for Compliance Frameworks

    Language:Python1101219124

  • chef/cookstyle

    A linting tool that helps you to write better Chef Infra cookbooks and InSpec profiles by detecting and automatically correcting style, syntax, and logic mistakes in your code.

    Language:Ruby1093134454

  • gjyoung1974/soc2-policy-templates

    Template SOC2 Policy Authority - documentation pipeline

    Language:HTML10410036

  • hexa-org/policy-orchestrator

    Hexa Policy Orchestrator enables you to manage all of your access policies consistently across software providers.

    Language:Shell98826815

  • narval-xyz/armory

    Secure, advanced, and flexible access management stack for web3.

    Language:TypeScript86504
  • intercept

    xfhg/intercept

    INTERCEPT / Policy as Code Auditing & Compliance

    Language:Go828209

  • kubewarden/kwctl

    Go-to CLI tool for Kubewarden users

    Language:Rust75813416

  • augur-ai/mantis

    Mantis is a unified infrastructure as code framework that replaces Terraform and Helm

    Language:Go66410

  • dod-advana/gamechanger

    GAMECHANGER aspires to be the Department’s trusted solution for evidence-based, data-driven decision-making across the universe of DoD requirements

    Language:Shell6516521

  • developer-guy/policy-as-code-war

    OPA Gatekeeper vs Kyverno

    62327
  • psp-migration

    appvia/psp-migration

    Recreation of common Pod Security Policy configuration in other common Kubernetes policy engines

    Language:TypeScript516154

  • rode/rode

    Rode facilitates Automated Governance in your software supply chain. This repository contains the rode API which is the primary interface between the rode UI or rode Collectors and metadata storage in Grafeas. The rode API provides functions for metadata search and storage as well as policy creation and evaluation.

    Language:Go4924210