1
0
Fork 0
mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00
Cloud Native Policy Management
Find a file
2024-03-08 14:30:23 +08:00
.devcontainer feat: add arm64 support in devcontainers (#8675) 2023-10-19 07:47:31 +00:00
.github chore(deps): bump sigstore/scaffolding from 0.6.16 to 0.6.17 (#9862) 2024-03-07 08:57:56 +00:00
.vscode fix launch.json (#9239) 2023-12-21 10:53:16 +00:00
api fix: add podSecurity validation checks for exceptions (#9817) 2024-02-28 08:21:10 +00:00
charts fix(globalcontext): old WaitGroup not stopping (#9813) 2024-02-27 18:24:39 +00:00
cmd [Bug] [CLI] PSS report does not show properties with control details (#9785) 2024-03-07 13:54:00 -08:00
config fix(globalcontext): old WaitGroup not stopping (#9813) 2024-02-27 18:24:39 +00:00
data feat: update built-in resource schemas (#7014) 2023-04-27 05:11:31 +00:00
docs fix(globalcontext): old WaitGroup not stopping (#9813) 2024-02-27 18:24:39 +00:00
ext refactor: move resource loader package to ext (#8780) 2023-10-30 17:27:02 +00:00
hack feat: improve instrumented clients (#7006) 2023-04-25 15:31:09 +00:00
img upload logo (#1560) 2021-02-08 13:09:37 -08:00
litmuschaos [Chore] Bump to Go 1.20 (#6683) 2023-04-03 11:40:47 +00:00
pkg [Bug] [CLI] PSS report does not show properties with control details (#9785) 2024-03-07 13:54:00 -08:00
scripts ci: add load testing workflow (#9515) 2024-01-29 12:30:51 +00:00
test fix: add missing unit tests for podSecurity.hostpathVolume check (#9845) 2024-03-04 15:23:06 +00:00
.chainsaw.yaml [Bug] [CLI] PSS report does not show properties with control details (#9785) 2024-03-07 13:54:00 -08:00
.codeclimate.yml remove arm from goreleaser (#903) 2020-06-04 11:45:37 -07:00
.directory Implemented validation across same yaml 2019-06-20 18:21:55 +03:00
.gitignore Unit tests for Pod Security Admission Integrations (#8585) 2023-12-26 22:28:08 +08:00
.golangci.yml chore: increase linter timeout (#7767) 2023-07-06 13:39:52 +00:00
.goreleaser.yml fix: release archive name template (#8475) 2023-09-20 22:35:49 +00:00
.ko.yaml feat: template background controller (#6157) 2023-01-31 17:12:34 +01:00
.krew.yaml Remove s390X (#4063) 2022-06-03 08:11:12 +00:00
.nancy-ignore fix: nancy ignore (#9574) 2024-01-31 00:51:11 +00:00
ADOPTERS.md docs: Add new adopter to ADOPTERS.md (#9841) 2024-03-03 21:59:25 -08:00
CHANGELOG.md chore: enable policy exceptions by default (#8545) 2023-09-27 17:40:13 +00:00
CODE_OF_CONDUCT.md Fix typos (#2860) 2021-12-18 20:03:16 +00:00
CODEOWNERS Adding myself to CODEOWNERS (#7755) 2023-07-05 15:29:57 +02:00
CONTRIBUTING.md chore: remove reference to kuttl (#9539) 2024-01-27 23:01:32 +00:00
CONTRIBUTORS.md Update CONTRIBUTORS.md (#9760) 2024-02-21 17:18:27 +00:00
DEVELOPMENT.md fix: modify the conformance config name (#9691) 2024-02-07 11:02:31 +00:00
go.mod chore(deps): bump gopkg.in/go-jose/go-jose.v2 from 2.6.2 to 2.6.3 (#9867) 2024-03-08 14:30:23 +08:00
go.sum chore(deps): bump gopkg.in/go-jose/go-jose.v2 from 2.6.2 to 2.6.3 (#9867) 2024-03-08 14:30:23 +08:00
GOVERNANCE.md governance added (#6488) 2023-03-10 10:52:50 +00:00
LICENSE Create LICENSE 2019-06-05 23:00:32 -04:00
MAINTAINERS.md chore: add myself to the maintainers list (#9130) 2023-12-11 09:09:53 -08:00
Makefile chore: bump kind and k8s images (#9680) 2024-02-07 00:41:22 +00:00
OWNERS.md chore: add myself in approvers (#4990) 2022-10-15 23:55:00 +00:00
README.md update README for new features and OSS security index card (#9467) 2024-01-21 09:24:56 +00:00
ROADMAP.md Add Roadmap.md and link to active releases / roadap (#6564) 2023-03-14 10:21:17 +00:00
SECURITY-INSIGHTS.yml [Feature] Security Improvements based on CLOMonitor Checks (#9395) 2024-01-19 10:50:17 +00:00
SECURITY.md feat: security.md 2021-09-19 09:50:26 +05:30
sonar-project.properties Integrate Sonarcloud and Nancy github action (#3491) 2022-09-14 07:25:14 +00:00

Kyverno Tweet

Cloud Native Policy Management 🎉

build releaser Go Report Card License: Apache-2.0 GitHub Repo stars CII Best Practices OpenSSF Scorecard codecov Artifact HUB FOSSA Status

logo

Kyverno is a policy engine designed for Kubernetes platform engineering teams. It enables security, automation, compliance, and governance using policy-as-code. Kyverno can validate, mutate, generate, and cleanup configurations using Kubernetes admission controls, background scans, and source code respository scans. Kyverno policies can be managed as Kubernetes resources and do not require learning a new language. Kyverno is designed to work nicely with tools you already use like kubectl, kustomize, and Git.

Open Source Security Index - Fastest Growing Open Source Security Projects

📙 Documentation

Kyverno installation and reference documents are available at kyverno.io.

👉 Quick Start

👉 Installation

👉 Sample Policies

🙋‍♂️ Getting Help

We are here to help!

👉 For feature requests and bugs, file an issue.

👉 For discussions or questions, join the Kyverno Slack channel.

👉 For community meeting access, join the mailing list.

👉 To get updates star this repository.

Contributing

Thanks for your interest in contributing to Kyverno! Here are some steps to help get you started:

✔ Read and agree to the Contribution Guidelines.

✔ Browse through the GitHub discussions.

✔ Read Kyverno design and development details on the GitHub Wiki.

✔ Check out the good first issues list. Add a comment with /assign to request assignment of the issue.

✔ Check out the Kyverno Community page for other ways to get involved.

Software Bill of Materials

All Kyverno images include a Software Bill of Materials (SBOM) in CycloneDX JSON format. SBOMs for Kyverno images are stored in a separate repository at ghcr.io/kyverno/sbom. More information on this is available at Fetching the SBOM for Kyverno.

Contributors

Kyverno is built and maintained by our growing community of contributors!

Made with contributors-img.

License

Copyright 2023, the Kyverno project. All rights reserved. Kyverno is licensed under the Apache License 2.0.

Kyverno is a Cloud Native Computing Foundation (CNCF) Incubating project and was contributed by Nirmata.