Skip to content
/ OPA-Security-Rules Public

A series of OPA rules for the static analysis of Docker and Kubernetes configuration files, aimed at enhancing security.

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hojatsajadinia/OPA-Security-Rules

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
opa-docker-rules.rego
opa-docker-rules.rego
 
 

Repository files navigation

OPA Security Rules

A set of OPA rules designed for the static analysis of Docker and Kubernetes configuration files with the goal of improving security. Integrate these rules into your conftest commands to prevent security misconfigurations in Docker and Kubernetes configuration files.

How to use?

Clone the repository and incorporate it into your - conftest command, as illustrated below:

# Dockerfile
$ conftest test -p opa-docker-rules.rego Dockerfile

Be carefull that if abow command fails, it will return exit code of 0. If you want to bypass it, use below command instead:

# Dockerfile
$ conftest test --no-fail -p opa-docker-rules.rego Dockerfile

And if you want a json output, use below command:

# Dockerfile
$ conftest test -o json -p opa-docker-rules.rego Dockerfile

About

A series of OPA rules for the static analysis of Docker and Kubernetes configuration files, aimed at enhancing security.

Topics

security opa security-automation devsecops rule-set conftest

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages