Kubewarden

All

96 repositories

rancher-kubectl-builder
Public
Workflow to rebuild and sign rancher/kubectl image
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security
Shell
•2•1•1•2•Updated Jan 15, 2025Jan 15, 2025
policy-server
Public
Webhook server that evaluates WebAssembly policies to validate Kubernetes requests
rust webassembly policy hacktoberfest policy-as-code kubernetes-webhook kubernetes-security kubernetes
Rust
•
Apache License 2.0
•18•142•18•0•Updated Jan 15, 2025Jan 15, 2025
policy-evaluator
Public
Crate used by Kubewarden that is able to evaluate policies with a given input, request to evaluate and settings.
hacktoberfest
Rust
•
Apache License 2.0
•8•15•22•0•Updated Jan 15, 2025Jan 15, 2025
policy-fetcher
Public
Crate used by Kubewarden that is able to pull policies from OCI registries and HTTP servers.
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security
Rust
•
Apache License 2.0
•8•8•6•0•Updated Jan 15, 2025Jan 15, 2025
kubewarden-controller
Public
Manage admission policies in your Kubernetes cluster with ease
webassembly hacktoberfest policy-as-code kubernetes-security kubernetes
Go
•
Apache License 2.0
•33•197•72•0•Updated Jan 15, 2025Jan 15, 2025
audit-scanner
Public
Reports evaluation of existing Kubernetes resources with your already deployed Kubewarden policies.
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security
Go
•
Apache License 2.0
•8•8•9•0•Updated Jan 15, 2025Jan 15, 2025
allowed-fsgroups-psp-policy
Public
Replacement for the Kubernetes Pod Security Policy that controls the usage of fsGroup in the pod security context
kubernetes webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•5•4•3•0•Updated Jan 14, 2025Jan 14, 2025
kwctl
Public
Go-to CLI tool for Kubewarden users
webassembly hacktoberfest policy-as-code kubernetes-security kubernetes
Rust
•
Apache License 2.0
•16•76•20•0•Updated Jan 14, 2025Jan 14, 2025
docs
Public
Kubewarden's documentation
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security
MDX
•
Creative Commons Attribution 4.0 International
•23•13•18•3•Updated Jan 14, 2025Jan 14, 2025
env-variable-secrets-scanner-policy
Public
A Kubewarden Policy that detects secrets (ssh private keys, API tokens, etc) leaked via environment variables
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•3•5•1•0•Updated Jan 14, 2025Jan 14, 2025
kubecon-24-eu-kubewarden
Public
Experiment for Kubewarden booth at Kubecon EU 2024
JavaScript
•
Apache License 2.0
•2•2•1•22•Updated Jan 14, 2025Jan 14, 2025
opa-policy-template
Public template
A template repository to quickly port a Open Policy Agent policy to Kubewarden
kubernetes webassembly opa hacktoberfest open-policy-agent openpolicyagent policy-as-code kubernetes-security kubewarden-policy-template
Makefile
•
Apache License 2.0
•1•4•1•0•Updated Jan 14, 2025Jan 14, 2025
github-actions
Public
GitHub actions used by the Kubewarden project
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security
Apache License 2.0
•7•4•5•0•Updated Jan 14, 2025Jan 14, 2025
allow-privilege-escalation-psp-policy
Public
A Kubewarden Pod Security Policy that controls usage of allowPrivilegeEscalation
webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy kubernetes
Rust
•
Apache License 2.0
•7•6•2•0•Updated Jan 14, 2025Jan 14, 2025
gatekeeper-policy-template
Public template
A template repository to quickly port a Gatekeeper policy to Kubewarden
kubernetes webassembly gatekeeper hacktoberfest policy-as-code rego kubernetes-security gatekeeper-policies gatekeeper-v2 kubewarden-policy-template
Makefile
•1•1•1•0•Updated Jan 14, 2025Jan 14, 2025
environment-variable-policy
Public
A Kubewarden Policy that controls the usage of environment variables
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•2•2•2•0•Updated Jan 14, 2025Jan 14, 2025
psa-label-enforcer-policy
Public
Kubewarden policy that ensures that namespaces have the required PSA labels
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•3•1•1•0•Updated Jan 14, 2025Jan 14, 2025
pod-ndots-policy
Public
Policy that enforces the usage of ndots in the pod's DNS configuration
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•0•0•1•0•Updated Jan 14, 2025Jan 14, 2025
rancher-project-propagate-labels
Public
Propagate Rancher Project labels to the Namespaces it owns
Rust
•
Apache License 2.0
•3•3•1•0•Updated Jan 14, 2025Jan 14, 2025
user-group-psp-policy
Public
This Kubewarden Policy is a replacement for the Kubernetes Pod Security Policy that controls containers user and groups
webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy kubernetes
Rust
•
Apache License 2.0
•4•7•2•0•Updated Jan 14, 2025Jan 14, 2025
raw-validation-policy
Public
Demo policy showing how to write a raw validating policy
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•1•0•1•0•Updated Jan 14, 2025Jan 14, 2025
selinux-psp-policy
Public
Replacement for the Kubernetes Pod Security Policy that controls the usage of SELinux
kubernetes webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•3•1•3•0•Updated Jan 14, 2025Jan 14, 2025
readonly-root-filesystem-psp-policy
Public
A Kubewarden policy that enforces root filesystem to be readonly
kubernetes webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•3•2•3•0•Updated Jan 14, 2025Jan 14, 2025
persistentvolumeclaim-storageclass-policy
Public
Policy that validates and adjusts the usage of StorageClasses in PersistentVolumeClaims
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•2•1•3•0•Updated Jan 14, 2025Jan 14, 2025
host-namespaces-psp-policy
Public
Replacement for the Kubernetes Pod Security Policy that controls the usage of host namespaces
kubernetes webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•4•1•3•0•Updated Jan 14, 2025Jan 14, 2025
share-pid-namespace-policy
Public
Policy validates pods sharing processes PID namespace
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•1•0•1•0•Updated Jan 14, 2025Jan 14, 2025
disallow-service-loadbalancer-policy
Public
A policy that prevents the creation of Service resources with type LoadBalancer
kubernetes webassembly gatekeeper hacktoberfest open-policy-agent policy-as-code kubernetes-security kubewarden-policy
Makefile
•
Apache License 2.0
•2•2•1•0•Updated Jan 14, 2025Jan 14, 2025
disallow-service-nodeport-policy
Public
A policy that prevents the creation of Service resources with type NodePort
kubernetes webassembly gatekeeper hacktoberfest open-policy-agent policy-as-code kubernetes-security kubewarden-policy
Makefile
•
Apache License 2.0
•2•2•1•0•Updated Jan 14, 2025Jan 14, 2025
unique-ingress-policy
Public
Prevent the creation of Ingress resources with duplicated hosts
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Open Policy Agent
•
Apache License 2.0
•1•0•1•0•Updated Jan 14, 2025Jan 14, 2025
volumeMounts-policy
Public
A Kubewarden Policy that controls the usage of `volumeMounts`
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•4•2•1•0•Updated Jan 14, 2025Jan 14, 2025