Kubewarden
Change the repository type filter
All
Repositories list
96 repositories
- A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources
policy-server
PublicWebhook server that evaluates WebAssembly policies to validate Kubernetes requestskubewarden-controller
PublicManage admission policies in your Kubernetes cluster with easek8s-objects-generator
PublicCLI tool that generates Kubernetes Go types that can be used with TinyGo starting from the official OpenAPI spec- Demo policy showing how to write a raw WASI mutation policy
- A test context-aware policy written using Go Wasi
- Demo policy showing how to write a raw WASI validating policy
policy-sdk-dotnet
PublicKubewarden Policy SDK for the .NET platformkwctl
PublicGo-to CLI tool for Kubewarden userspod-privileged-policy
PublicA Kubewarden Policy that limits the ability to create privileged containersaudit-scanner
PublicReports evaluation of existing Kubernetes resources with your already deployed Kubewarden policies.kyverno-dsl-policy
Public[Experimental] Reuse Kyverno policies with Kubewarden- A collection of Rego policies that can be used to enforce best practices in Kubernetes clusters
github-actions
PublicGitHub actions used by the Kubewarden projectswift-policy-template
Public templateA template repository to quickly scaffold a Kubewarden policy written with Swift language- Policy is designed to enforce constraints on the resource requirements of Kubernetes containers
policy-evaluator
PublicCrate used by Kubewarden that is able to evaluate policies with a given input, request to evaluate and settings.kubecon-24-eu-kubewarden
Publicrancher-kubectl-builder
PublicWorkflow to rebuild and sign rancher/kubectl imagedocs
PublicKubewarden's documentationkubewarden.io
PublicKubewarden website- Policy validates that there are no services with the same set of selectors
apparmor-psp-policy
PublicA Kubewarden Pod Security Policy that controls usage of AppArmor profilespod-ndots-policy
PublicPolicy that enforces the usage of ndots in the pod's DNS configuration- Replacement for the Kubernetes Pod Security Policy that controls the usage of fsGroup in the pod security context
verify-image-signatures
PublicA Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod- A Kubewarden Policy that detects secrets (ssh private keys, API tokens, etc) leaked via environment variables
- A Kubewarden policy that enforces root filesystem to be readonly