Kubewarden
Change the repository type filter
All
Repositories list
96 repositories
raw-mutation-wasi-policy
PublicDemo policy showing how to write a raw WASI mutation policy- Demo policy showing how to write a raw WASI validating policy
- A test context-aware policy written using Go Wasi
- Reports evaluation of existing Kubernetes resources with your already deployed Kubewarden policies.
kwctl
PublicGo-to CLI tool for Kubewarden usersswift-policy-template
Public templateA template repository to quickly scaffold a Kubewarden policy written with Swift languagepod-privileged-policy
PublicA Kubewarden Policy that limits the ability to create privileged containers- A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources
rego-policies-library
PublicA collection of Rego policies that can be used to enforce best practices in Kubernetes clusterskyverno-dsl-policy
Public[Experimental] Reuse Kyverno policies with Kubewarden- Policy is designed to enforce constraints on the resource requirements of Kubernetes containers
policy-evaluator
PublicCrate used by Kubewarden that is able to evaluate policies with a given input, request to evaluate and settings.kubecon-24-eu-kubewarden
Publicgithub-actions
PublicGitHub actions used by the Kubewarden projectrancher-kubectl-builder
PublicWorkflow to rebuild and sign rancher/kubectl imagedocs
PublicKubewarden's documentationkubewarden.io
PublicKubewarden websitekubewarden-controller
PublicManage admission policies in your Kubernetes cluster with easepolicy-server
PublicWebhook server that evaluates WebAssembly policies to validate Kubernetes requests- Policy validates that there are no services with the same set of selectors
apparmor-psp-policy
PublicA Kubewarden Pod Security Policy that controls usage of AppArmor profilespod-ndots-policy
PublicPolicy that enforces the usage of ndots in the pod's DNS configuration- Replacement for the Kubernetes Pod Security Policy that controls the usage of fsGroup in the pod security context
verify-image-signatures
PublicA Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod- A Kubewarden Policy that detects secrets (ssh private keys, API tokens, etc) leaked via environment variables
- A Kubewarden policy that enforces root filesystem to be readonly
image-cve-policy
PublicPolicy that validates workloads based on the vulnerability of the images they make use oftrusted-repos-policy
PublicA Kubewarden policy that restricts what registries, tags and images can pods on your cluster refer to