Fabrizio Sestito's repositories
kw-policy-zig
Kubewarden policy in Zig
allow-privilege-escalation-psp-policy
A Kubewarden Pod Security Policy that controls usage of allowPrivilegeEscalation
allowed-proc-mount-types-psp-policy
Replacement for the Kubernetes Pod Security Policy that controls the usage of /proc mount types
apparmor-psp-policy
A Kubewarden Pod Security Policy that controls usage of AppArmor profiles
buck2
Build system, successor to Buck
context-aware-demo
A demo policy showing how to access Kubernetes resources at policy evaluation time
deprecated-api-versions-policy
A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources
go-policy-template
A template repository to quickly scaffold a Kubewarden policy written with Go language
hostpaths-psp-policy
Replacement for the Kubernetes Pod Security Policy that controls the usage of hostpaths
ingress-policy
Policy to enforce requirements on Kubernetes Ingress resources.
k8s-objects-generator
CLI tool that generates Kubernetes Go types that can be used with TinyGo starting from the official OpenAPI spec
namespace-label-propagator-policy
Kubewarden policy designed to automatically propagate labels defined in a Kubernetes namespace to the associated resources within that namespace
rancher-project-info-propagator
A controller that propagates Rancher Projet labels to its children Namespace objects
rancher-project-quotas-namespace-validator
Prevent the creation of Namespace under a Rancher Project that doesn't have any resource quota left
rust-policy-template
A Kubewarden rust policy template to be used with cargo-generate
rust-xcb
Rust bindings and wrapper for XCB.
rust-xcb-util
Rust bindings and wrappers for XCB utility functions.
rustler
Safe Rust bridge for creating Erlang NIF functions
rustler_precompilation_example
A sample project to demonstrate precompilation using Rustler
safe-annotations-policy
Kubewarden policy that validates Kubernetes' resource annotations
sleeping-policy
A test policy that simulates long running policy evaluations
strfmt
A stripped down version of go-openapi/strfrm that works with TinyGo
sysctl-psp-policy
A Kubewarden policy that controls usage of sysctls
trento-e2e
E2E tests repository where the complete deployment of the trento stack is tested
trusted-repos-policy
A Kubewarden policy that restricts what registries, tags and images can pods on your cluster refer to
volumes-psp-policy
Replacement for the Kubernetes Pod Security Policy that controls the usage of volumes
wapc-guest-zig
SDK for creating waPC WebAssembly Guest Modules in Zig
web
An open cloud-native web console improving on the work day of SAP Applications administrators.