policy-as-code
There are 240 repositories under policy-as-code topic.
permitio/opal
Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
octelium/octelium
A next-gen FOSS self-hosted unified zero trust secure access platform that can operate as a remote access VPN, a ZTNA platform, API/AI/MCP gateway, a PaaS, an ngrok-alternative and a homelab infrastructure.
someengineering/fixinventory
Fix Inventory helps you identify and remove the most critical risks in AWS, GCP, Azure and Kubernetes.
kptdev/kpt
Automate Kubernetes Configuration Editing
aws-cloudformation/cloudformation-guard
Guard offers a policy-as-code domain-specific language (DSL) to write rules and validate JSON- and YAML-formatted data such as CloudFormation Templates, K8s configurations, and Terraform JSON plans/configurations against those rules. Take this survey to provide feedback about cfn-guard: https://amazonmr.au1.qualtrics.com/jfe/form/SV_bpyzpfoYGGuuUl0
tmobile/pacbot
PacBot (Policy as Code Bot)
open-policy-agent/awesome-opa
A curated list of OPA related tools, frameworks and articles
safedep/vet
Protect against malicious open source packages 🤖
openmobilityfoundation/mobility-data-specification
A data specification to enable right-of-way regulation, digital policy, geofencing, and two-way communication between mobility companies and public agencies worldwide.
opengovern/opensecurity
opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.
selefra/selefra
The open-source policy-as-code software that provides analysis for Multi-Cloud and SaaS environments, you can get insight with natural language (powered by OpenAI).
globalbao/awesome-azure-policy
A curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @JesseLoudon
open-policy-agent/regal
Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
mondoohq/cnspec
An open source, cloud-native security to protect everything from build to runtime
noqdev/iambic
IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, human-readable, bi-directional representation of IAM in Git.
microsoft/regorus
Regorus - A fast, lightweight Rego (OPA policy language) interpreter written in Rust.
kubewarden/kubewarden-controller
Manage admission policies in your Kubernetes cluster with ease
open-policy-agent/rego-style-guide
Style guide for Rego
hysnsec/awesome-policy-as-code
A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
stakpak/devx
A tool for generating, validating & sharing all your configurations, powered by CUE. Works with Kubernetes, Terraform, Compose, GitHub actions and much more...
globalbao/azure-policy-as-code
Bicep and Terraform code examples for policy-as-code workflows. Azure governance guardrails and automation - by @JesseLoudon
permitio/cedar-agent
Cedar-agent is the easiest way to deploy and run Cedar
anderseknert/kube-review
Create Kubernetes AdmissionReview requests from Kubernetes resource manifests
kubewarden/policy-server
Webhook server that evaluates WebAssembly policies to validate Kubernetes requests
tmobile/magtape
MagTape Policy-as-Code for Kubernetes
aipotheosis-labs/gate22
Open-source MCP gateway and control plane for teams to govern which tools agents can use, what they can do, and how it’s audited—across agentic IDEs like Cursor, or other agents and AI tools.
aws-cloudformation/aws-guard-rules-registry
Rules Registry for Compliance Frameworks
gjyoung1974/soc2-policy-templates
Template SOC2 Policy Authority - documentation pipeline
open-policy-agent/vscode-opa
An extension for VS Code which provides support for OPA and the Rego policy language
chef/cookstyle
A linting tool that helps you to write better Chef Infra cookbooks and InSpec profiles by detecting and automatically correcting style, syntax, and logic mistakes in your code.
hexa-org/policy-orchestrator
Hexa Policy Orchestrator enables you to manage all of your access policies consistently across software providers.
augur-ai/mantis
Mantis is a unified infrastructure as code framework that replaces Terraform and Helm
kubewarden/kwctl
Go-to CLI tool for Kubewarden users
xfhg/intercept
INTERCEPT / Policy as Code Auditing & Compliance
dod-advana/gamechanger
GAMECHANGER aspires to be the Department’s trusted solution for evidence-based, data-driven decision-making across the universe of DoD requirements
developer-guy/policy-as-code-war
OPA Gatekeeper vs Kyverno