gatekeeper
Resource guardian
Controls access to Kubernetes resources by defining policies that can be evaluated at admission time
🐊 Gatekeeper - Policy Controller for Kubernetes
4k stars
69 watching
762 forks
Language: Go
last commit: 7 days ago
Linked from 3 awesome lists
admissioncncfgatekeeperhacktoberfestkubernetesmutationopapolicypolicy-enginesecurityvalidation
tomhuang12/awesome-k8s-resources
jatrost/awesome-kubernetes-threat-detection
spacial/awesome-systoolsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 plexsystems/konstraint | Automates policy management and constraint creation for Gatekeeper and Conftest | 383 |
| open-policy-agent/opa | An open-source policy engine enabling unified policy enforcement across the entire software stack | 9,707 |
| open-policy-agent/npm-opa-wasm | A small SDK for using WebAssembly compiled Open Policy Agent Rego policies in Node.js applications | 138 |
 openidentityplatform/openam-jee-agents | Protects and secures web applications with single sign-on capabilities | 6 |
 christophwille/dotnet-opa-wasm | An interoperability framework allowing .NET Core applications to integrate Open Policy Agent policies in WebAssembly | 45 |
 permitio/opal | Provides real-time updates and administration for policy engines in cloud-native applications. | 5,130 |
 otterize/intents-operator | Automates network policy and ACL creation in Kubernetes clusters based on user-defined client intents | 295 |
 open-cluster-management-io/policy-generator-plugin | Automates creation of policies for managing Kubernetes clusters using Open Cluster Management | 29 |
 mattfenwick/kubectl-cyclonus | A kubectl plugin that provides a way to work with network policies in Kubernetes clusters | 29 |
| openidentityplatform/openam-web-agents | A component that protects web applications and implements single sign-on (SSO) capabilities. | 5 |
 authorizon/opal | An administration layer for Open Policy Agent (OPA) that detects changes to policy and data in real-time and updates agents accordingly. | 13 |
| open-policy-agent/opa-docker-authz | An authorization plugin for Docker using OPA policy to enable policy-based access control. | 86 |
 vmware-tanzu/kubeapps | An in-cluster web-based application for deploying and managing applications on Kubernetes clusters | 4,996 |
 opcr-io/policy | A tool for managing authorization policies in container images | 223 |
 aws-cloudformation/cloudformation-guard | An evaluation tool for JSON- and YAML-formatted data against pre-defined policies written in a domain-specific language. | 1,294 |