Kubewarden

All

96 repositories

kubecon-24-eu-kubewarden
Public
Experiment for Kubewarden booth at Kubecon EU 2024
JavaScript
•
Apache License 2.0
•2•2•1•22•Updated Feb 10, 2025Feb 10, 2025
policy-server
Public
Webhook server that evaluates WebAssembly policies to validate Kubernetes requests
rust webassembly policy hacktoberfest policy-as-code kubernetes-webhook kubernetes-security kubernetes
Rust
•
Apache License 2.0
•18•142•19•1•Updated Feb 10, 2025Feb 10, 2025
policy-sdk-go
Public
Kubewarden Policy SDK for the Go programming language
kubernetes webassembly hacktoberfest policy-as-code tinygo kubernetes-security kubewarden-policy-sdk go
Go
•
Apache License 2.0
•7•8•9•0•Updated Feb 10, 2025Feb 10, 2025
kwctl
Public
Go-to CLI tool for Kubewarden users
webassembly hacktoberfest policy-as-code kubernetes-security kubernetes
Rust
•
Apache License 2.0
•16•77•19•0•Updated Feb 10, 2025Feb 10, 2025
pod-privileged-policy
Public
A Kubewarden Policy that limits the ability to create privileged containers
webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy kubernetes
Rust
•
Apache License 2.0
•6•8•1•0•Updated Feb 10, 2025Feb 10, 2025
helm-charts
Public
Helm charts for the Kubewarden project
hacktoberfest
Smarty
•
Apache License 2.0
•16•26•17•5•Updated Feb 10, 2025Feb 10, 2025
pod-ndots-policy
Public
Policy that enforces the usage of ndots in the pod's DNS configuration
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•0•0•1•1•Updated Feb 10, 2025Feb 10, 2025
allowed-proc-mount-types-psp-policy
Public
Replacement for the Kubernetes Pod Security Policy that controls the usage of /proc mount types
webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy kubernetes
Rust
•
Apache License 2.0
•5•7•3•1•Updated Feb 10, 2025Feb 10, 2025
allow-privilege-escalation-psp-policy
Public
A Kubewarden Pod Security Policy that controls usage of allowPrivilegeEscalation
webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy kubernetes
Rust
•
Apache License 2.0
•7•6•2•1•Updated Feb 10, 2025Feb 10, 2025
psa-label-enforcer-policy
Public
Kubewarden policy that ensures that namespaces have the required PSA labels
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•3•1•1•1•Updated Feb 10, 2025Feb 10, 2025
github-actions
Public
GitHub actions used by the Kubewarden project
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security
Apache License 2.0
•7•4•4•1•Updated Feb 10, 2025Feb 10, 2025
echo
Public
A Kubewarden Policy that echoes Kubernetes' AdmissionReview objects
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•3•1•1•1•Updated Feb 10, 2025Feb 10, 2025
volumeMounts-policy
Public
A Kubewarden Policy that controls the usage of `volumeMounts`
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•4•2•1•1•Updated Feb 10, 2025Feb 10, 2025
context-aware-demo
Public
A demo policy showing how to access Kubernetes resources at policy evaluation time
webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy kubernetes
Rust
•
Apache License 2.0
•2•1•1•1•Updated Feb 10, 2025Feb 10, 2025
host-namespaces-psp-policy
Public
Replacement for the Kubernetes Pod Security Policy that controls the usage of host namespaces
kubernetes webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•4•1•3•1•Updated Feb 10, 2025Feb 10, 2025
ingress-policy
Public
Policy to enforce requirements on Kubernetes Ingress resources.
kubernetes ingress webassembly hacktoberfest policy-as-code kubernetes-security ingresses-resources kubewarden-policy
Go
•
Apache License 2.0
•3•4•1•1•Updated Feb 10, 2025Feb 10, 2025
fleet-example
Public
Example of Rancher Fleet bundle for Kubewarden
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security
Creative Commons Attribution 4.0 International
•3•1•2•2•Updated Feb 10, 2025Feb 10, 2025
disallow-service-nodeport-policy
Public
A policy that prevents the creation of Service resources with type NodePort
kubernetes webassembly gatekeeper hacktoberfest open-policy-agent policy-as-code kubernetes-security kubewarden-policy
Makefile
•
Apache License 2.0
•2•2•1•1•Updated Feb 10, 2025Feb 10, 2025
opa-policy-template
Public template
A template repository to quickly port a Open Policy Agent policy to Kubewarden
kubernetes webassembly opa hacktoberfest open-policy-agent openpolicyagent policy-as-code kubernetes-security kubewarden-policy-template
Makefile
•
Apache License 2.0
•1•4•1•1•Updated Feb 10, 2025Feb 10, 2025
namespace-label-propagator-policy
Public
Kubewarden policy designed to automatically propagate labels defined in a Kubernetes namespace to the associated resources within that namespace
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Go
•
Apache License 2.0
•3•1•2•1•Updated Feb 10, 2025Feb 10, 2025
verify-image-signatures
Public
A Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod
kubernetes webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•9•13•2•1•Updated Feb 10, 2025Feb 10, 2025
selinux-psp-policy
Public
Replacement for the Kubernetes Pod Security Policy that controls the usage of SELinux
kubernetes webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•3•1•3•1•Updated Feb 10, 2025Feb 10, 2025
sysctl-psp-policy
Public
A Kubewarden policy that controls usage of sysctls
webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy kubernetes
Go
•
Apache License 2.0
•3•2•2•1•Updated Feb 10, 2025Feb 10, 2025
image-cve-policy
Public
Policy that validates workloads based on the vulnerability of the images they make use of
kubernetes webassembly cve hacktoberfest vulnerability-scanner sbom policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•1•0•1•1•Updated Feb 10, 2025Feb 10, 2025
safe-annotations-policy
Public
Kubewarden policy that validates Kubernetes' resource annotations
webassembly hacktoberfest policy-as-code kubernetes-security kubernetes-compliance kubewarden-policy kubernetes
Go
•
Apache License 2.0
•4•4•2•1•Updated Feb 10, 2025Feb 10, 2025
raw-validation-opa-policy
Public
Demo policy showing how to write a raw OPA validating policy
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Shell
•
Apache License 2.0
•1•0•1•1•Updated Feb 10, 2025Feb 10, 2025
allowed-fsgroups-psp-policy
Public
Replacement for the Kubernetes Pod Security Policy that controls the usage of fsGroup in the pod security context
kubernetes webassembly hacktoberfest policy-as-code pod-security-policy kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•5•4•3•1•Updated Feb 10, 2025Feb 10, 2025
rancher-project-quotas-namespace-validator
Public
Prevent the creation of Namespace under a Rancher Project that doesn't have any resource quota left
webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy kubernetes
Go
•
Apache License 2.0
•3•1•1•1•Updated Feb 10, 2025Feb 10, 2025
unique-service-selector-policy
Public
Policy validates that there are no services with the same set of selectors
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•1•0•1•1•Updated Feb 10, 2025Feb 10, 2025
share-pid-namespace-policy
Public
Policy validates pods sharing processes PID namespace
kubernetes webassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy
Rust
•
Apache License 2.0
•1•0•1•1•Updated Feb 10, 2025Feb 10, 2025