mirrors/kyverno: Cloud Native Policy Management

mirror of https://github.com/kyverno/kyverno.git synced 2024-12-14 11:57:48 +00:00

Cloud Native Policy Management

Find a file

shuting 7cc8e7463a chore: add new versions (#10309 ) Signed-off-by: ShutingZhao <shuting@nirmata.com>		2024-05-27 04:19:15 +00:00
.devcontainer	chore(deps): bump ubuntu from `562456a` to `3f85b7c` in /.devcontainer (#10158 )	2024-05-02 12:47:56 +00:00
.github	chore: add new versions (#10309 )	2024-05-27 04:19:15 +00:00
.vscode	fix launch.json (#9239 )	2023-12-21 10:53:16 +00:00
api	feat: add TSA cert chain support in cosign (#9961 )	2024-03-30 20:50:07 +00:00
charts	chore: bump tools and add kubernetes v1.30 to conformance (#10300 )	2024-05-24 07:37:49 +00:00
cmd	chore: bump tools and add kubernetes v1.30 to conformance (#10300 )	2024-05-24 07:37:49 +00:00
config	chore: bump tools and add kubernetes v1.30 to conformance (#10300 )	2024-05-24 07:37:49 +00:00
data	feat: update built-in resource schemas (#7014 )	2023-04-27 05:11:31 +00:00
docs	allow kyverno apply command to continue on failure (#10036 )	2024-05-06 09:00:54 +00:00
ext	refactor: move resource loader package to ext (#8780 )	2023-10-30 17:27:02 +00:00
hack	feat: improve instrumented clients (#7006 )	2023-04-25 15:31:09 +00:00
img
litmuschaos	[Chore] Bump to Go 1.20 (#6683 )	2023-04-03 11:40:47 +00:00
pkg	feat: add support for background scanning of existing resource in image verification (#10287 )	2024-05-24 09:41:04 +00:00
scripts	feat(audit): use a worker pool for Audit policies (#10048 )	2024-04-17 15:46:18 +08:00
test	feat: add support for background scanning of existing resource in image verification (#10287 )	2024-05-24 09:41:04 +00:00
.chainsaw.yaml	[Bug] [CLI] PSS report does not show properties with control details (#9785 )	2024-03-07 13:54:00 -08:00
.codeclimate.yml
.directory
.gitignore	Unit tests for Pod Security Admission Integrations (#8585 )	2023-12-26 22:28:08 +08:00
.golangci.yml	feat(perf): add new linter `prealloc` to enforce slice declarations best practice (#10250 )	2024-05-20 14:46:35 +05:30
.goreleaser.yml	fix: release archive name template (#8475 )	2023-09-20 22:35:49 +00:00
.ko.yaml	feat: template background controller (#6157 )	2023-01-31 17:12:34 +01:00
.krew.yaml	Remove s390X (#4063 )	2022-06-03 08:11:12 +00:00
.nancy-ignore	chore: fix nancy ignore (#9908 )	2024-03-15 14:24:49 +08:00
ADOPTERS.md	Update ADOPTERS.md (#9986 )	2024-04-02 22:46:21 +00:00
CHANGELOG.md	chore: enable policy exceptions by default (#8545 )	2023-09-27 17:40:13 +00:00
CODE_OF_CONDUCT.md
CODEOWNERS	chore(codeowners): add KhaledEmaraDev to CODEOWNERS (#9851 )	2024-03-08 09:51:29 +00:00
CONTRIBUTING.md	chore: remove reference to kuttl (#9539 )	2024-01-27 23:01:32 +00:00
CONTRIBUTORS.md	adding myself in the contributors list (#10149 )	2024-05-11 11:33:01 +00:00
DEVELOPMENT.md	update dev docs (#10089 )	2024-04-23 13:47:16 +08:00
go.mod	chore(deps): bump sigs.k8s.io/kustomize/kyaml from 0.17.0 to 0.17.1 (#10302 )	2024-05-24 10:15:17 +00:00
go.sum	chore(deps): bump sigs.k8s.io/kustomize/kyaml from 0.17.0 to 0.17.1 (#10302 )	2024-05-24 10:15:17 +00:00
GOVERNANCE.md	governance added (#6488 )	2023-03-10 10:52:50 +00:00
LICENSE
MAINTAINERS.md	chore: add myself to the maintainers list (#9130 )	2023-12-11 09:09:53 -08:00
Makefile	chore: bump tools and add kubernetes v1.30 to conformance (#10300 )	2024-05-24 07:37:49 +00:00
OWNERS.md	chore: add myself in approvers (#4990 )	2022-10-15 23:55:00 +00:00
README.md	fix: updated copyrights year from 2023 to 2024 (#10243 )	2024-05-16 10:10:35 +00:00
ROADMAP.md	Add Roadmap.md and link to active releases / roadap (#6564 )	2023-03-14 10:21:17 +00:00
SECURITY-INSIGHTS.yml	[Feature] Security Improvements based on CLOMonitor Checks (#9395 )	2024-01-19 10:50:17 +00:00
SECURITY.md
sonar-project.properties	Integrate Sonarcloud and Nancy github action (#3491 )	2022-09-14 07:25:14 +00:00

README.md

Cloud Native Policy Management 🎉

Kyverno is a policy engine designed for Kubernetes platform engineering teams. It enables security, automation, compliance, and governance using policy-as-code. Kyverno can validate, mutate, generate, and cleanup configurations using Kubernetes admission controls, background scans, and source code respository scans. Kyverno policies can be managed as Kubernetes resources and do not require learning a new language. Kyverno is designed to work nicely with tools you already use like kubectl, kustomize, and Git.

📙 Documentation

Kyverno installation and reference documents are available at kyverno.io.

👉 Quick Start

👉 Installation

👉 Sample Policies

🙋‍♂️ Getting Help

We are here to help!

👉 For feature requests and bugs, file an issue.

👉 For discussions or questions, join the Kyverno Slack channel.

👉 For community meeting access, join the mailing list.

👉 To get updates ⭐️ star this repository.

➕ Contributing

Thanks for your interest in contributing to Kyverno! Here are some steps to help get you started:

✔ Read and agree to the Contribution Guidelines.

✔ Browse through the GitHub discussions.

✔ Read Kyverno design and development details on the GitHub Wiki.

✔ Check out the good first issues list. Add a comment with /assign to request assignment of the issue.

✔ Check out the Kyverno Community page for other ways to get involved.

Software Bill of Materials

All Kyverno images include a Software Bill of Materials (SBOM) in CycloneDX JSON format. SBOMs for Kyverno images are stored in a separate repository at ghcr.io/kyverno/sbom. More information on this is available at Fetching the SBOM for Kyverno.

Contributors

Kyverno is built and maintained by our growing community of contributors!

Made with contributors-img.

License

Kyverno is a Cloud Native Computing Foundation (CNCF) Incubating project and was contributed by Nirmata.

README.md Unescape Escape

Kyverno