Policy definitions as Kubernetes resources
Validate, mutate, or generate Kubernetes resources
Match resources using label selectors and wildcards
Mutate using overlays (like Kustomize) or JSON Patch
Validate using overlays and powerful conditionals
Policy violation reporting for existing resources
Kubernetes events for resource changes and policy enforcement
Test using kubectl