mirrors/kyverno: Cloud Native Policy Management

mirror of https://github.com/kyverno/kyverno.git synced 2025-03-06 16:06:56 +00:00

Cloud Native Policy Management

Find a file

Johann Schley 02c54490bc Fix default value for apiCall context (#11733 ) * chore(deps): bump golang.org/x/crypto from 0.29.0 to 0.30.0 (#11712) Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.29.0 to 0.30.0. - [Commits](https://github.com/golang/crypto/compare/v0.29.0...v0.30.0) --- updated-dependencies: - dependency-name: golang.org/x/crypto dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Signed-off-by: Johann Schley <johann.schley@swisscom.com> * add test for apiCall default value Signed-off-by: Johann Schley <johann.schley@swisscom.com> * move fallback to default into fetch function Signed-off-by: Johann Schley <johann.schley@swisscom.com> * Update pkg/engine/apicall/apiCall.go improved log message text Signed-off-by: Jim Bugwadia <jim@nirmata.com> Signed-off-by: Johann Schley <johann.schley@swisscom.com> * Update pkg/engine/apicall/apiCall.go Signed-off-by: Jim Bugwadia <jim@nirmata.com> Signed-off-by: Johann Schley <johann.schley@swisscom.com> * address comments Signed-off-by: Johann Schley <johann.schley@swisscom.com> --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Johann Schley <johann.schley@swisscom.com> Signed-off-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Johann Schley <johann.schley@swisscom.com> Co-authored-by: Jim Bugwadia <jim@nirmata.com> Co-authored-by: shuting <shuting@nirmata.com> Co-authored-by: Vishal Choudhary <vishal.choudhary@nirmata.com>		2025-01-24 04:54:32 +00:00
.devcontainer	chore(deps): bump ubuntu from `278628f` to `80dd3c3` in /.devcontainer (#11697 )	2024-12-03 07:56:42 +00:00
.github	chore: add 1.13.1 and 1.13.2 to issue templates (#11930 )	2025-01-15 14:28:27 +00:00
.vscode	chore: add --reportsServiceAccountName in launch.json (#10943 )	2024-08-28 20:49:10 +00:00
api	feat: add generic policy interface (#11922 )	2025-01-20 08:28:13 +00:00
charts	feat: register webhook configurations for validatingpolicies (#11892 )	2025-01-17 11:33:47 +02:00
cmd	refactor: reduce generic policy interface (#11977 )	2025-01-22 16:32:30 +00:00
config	feat: register webhook configurations for validatingpolicies (#11892 )	2025-01-17 11:33:47 +02:00
data	feat: update built-in resource schemas (#7014 )	2023-04-27 05:11:31 +00:00
docs	fix: cli schema generation (#11959 )	2025-01-20 22:00:41 +08:00
ext	chore: bump k8s libs to 0.30 (#10285 )	2024-06-04 15:09:44 +08:00
hack	chore: bump a couple of deps (#11879 )	2025-01-09 16:53:05 +01:00
img	upload logo (#1560 )	2021-02-08 13:09:37 -08:00
litmuschaos	[Chore] Bump to Go 1.20 (#6683 )	2023-04-03 11:40:47 +00:00
pkg	Fix default value for apiCall context (#11733 )	2025-01-24 04:54:32 +00:00
scripts	feat(ci): test upgrade conformance (#11498 )	2024-11-15 11:53:44 +00:00
test	fix: cli schema generation (#11959 )	2025-01-20 22:00:41 +08:00
.chainsaw.yaml	fix: update chainsaw test apply timeout to 30s (#11794 )	2024-12-20 09:59:42 +00:00
.codeclimate.yml
.directory
.gitignore	Unit tests for Pod Security Admission Integrations (#8585 )	2023-12-26 22:28:08 +08:00
.golangci.yml	feat: bump to k8s 1.31 (#10938 )	2024-08-28 17:09:58 +00:00
.goreleaser.yml	fix: go releaser config (#11135 )	2024-09-13 07:51:51 +05:30
.ko.yaml	feat: template background controller (#6157 )	2023-01-31 17:12:34 +01:00
.krew.yaml	Remove s390X (#4063 )	2022-06-03 08:11:12 +00:00
.nancy-ignore	extend timestamp (#10679 )	2024-07-19 16:59:28 +08:00
ADOPTERS.md	Add OVHcloud in ADOPTERS.md (#11966 )	2025-01-21 10:49:33 +00:00
CHANGELOG.md	feat: add flag to pass tuf root directly (#11103 )	2024-09-12 12:45:07 +08:00
CODE_OF_CONDUCT.md	update governance (#10669 )	2024-07-17 07:09:46 +00:00
CODEOWNERS	chore: remove MarcelMue (#11066 )	2024-09-10 10:26:25 +00:00
CONTRIBUTING.md	update governance (#10669 )	2024-07-17 07:09:46 +00:00
CONTRIBUTORS.md	move governance (#11138 )	2024-09-13 15:34:11 +08:00
DEVELOPMENT.md	Updated the outdated example mentioned in Development.md file with latest one (#10706 )	2024-07-24 07:18:39 +00:00
go.mod	chore(deps): bump github.com/go-git/go-git/v5 from 5.13.1 to 5.13.2 (#11981 )	2025-01-23 08:02:02 +00:00
go.sum	chore(deps): bump github.com/go-git/go-git/v5 from 5.13.1 to 5.13.2 (#11981 )	2025-01-23 08:02:02 +00:00
GOVERNANCE.md	update governance (#10669 )	2024-07-17 07:09:46 +00:00
LICENSE
MAINTAINERS.md	move governance (#11138 )	2024-09-13 15:34:11 +08:00
Makefile	fix: cli schema generation (#11959 )	2025-01-20 22:00:41 +08:00
OWNERS.md	chore: add myself in approvers (#4990 )	2022-10-15 23:55:00 +00:00
README.md	update governance (#10669 )	2024-07-17 07:09:46 +00:00
ROADMAP.md	Update ROADMAP.md (#10420 )	2024-06-10 11:12:31 +00:00
SECURITY-INSIGHTS.yml	[Feature] Security Improvements based on CLOMonitor Checks (#9395 )	2024-01-19 10:50:17 +00:00
SECURITY.md	change security to point to org repo (#10716 )	2024-07-25 07:40:38 +00:00
sonar-project.properties	chore: fix sonar exclusions (#11119 )	2024-09-12 09:06:48 +00:00

README.md

Cloud Native Policy Management 🎉

Kyverno is a policy engine designed for cloud native platform engineering teams. It enables security, automation, compliance, and governance using policy-as-code. Kyverno can validate, mutate, generate, and cleanup configurations using Kubernetes admission controls, background scans, and source code respository scans. Kyverno policies can also be used to verify OCI images, for software supply chain security. Kyverno policies can be managed as Kubernetes resources and do not require learning a new language. Kyverno is designed to work nicely with tools you already use like kubectl, kustomize, and Git.

📙 Documentation

Kyverno installation and reference documents are available at [kyverno.io] (https://kyverno.io).

👉 Quick Start

👉 Installation

👉 Sample Policies

🙋‍♂️ Getting Help

We are here to help!

👉 For feature requests and bugs, file an issue.

👉 For discussions or questions, join the Kyverno Slack channel.

👉 For community meeting access, see mailing list.

👉 To get follow updates ⭐️ star this repository.

➕ Contributing

Thanks for your interest in contributing to Kyverno! Here are some steps to help get you started:

✔ Read and agree to the Contribution Guidelines.

✔ Browse through the GitHub discussions.

✔ Read Kyverno design and development details on the GitHub Wiki.

✔ Check out the good first issues list. Add a comment with /assign to request assignment of the issue.

✔ Check out the Kyverno Community page for other ways to get involved.

Software Bill of Materials

All Kyverno images include a Software Bill of Materials (SBOM) in CycloneDX JSON format. SBOMs for Kyverno images are stored in a separate repository at ghcr.io/kyverno/sbom. More information on this is available at Fetching the SBOM for Kyverno.

Contributors

Kyverno is built and maintained by our growing community of contributors!

Made with contributors-img.

License

Kyverno is a Cloud Native Computing Foundation (CNCF) Incubating project and was contributed by Nirmata.

README.md Unescape Escape

Kyverno