open-policy-agent

There are 20 repositories under open-policy-agent topic.

open-policy-agent / opa
Open Policy Agent (OPA) is an open source, general-purpose policy engine.
authorization cloud-native compliance declarative json opa open-policy-agent policy
Language:Go 10824
opal
permitio / opal
Policy and data administration, distribution, and real-time updates on top of Policy Agents (OPA, Cedar, ...)
authorization cedar hacktoberfest microservices opa opal open-policy-agent openfga policy policy-as-code pubsub realtime websocket
Language:Python 5385
open-policy-agent / conftest
Write tests against structured configuration data using the Open Policy Agent Rego query language
kubernetes open-policy-agent openpolicyagent rego testing
Language:Go 3066
Checkmarx / kics
Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructure-as-code with KICS by Checkmarx.
appsec cloudnative devsecops golang hacktoberfest iac infrastructure-as-code open-policy-agent security security-tools vulnerability-detection vulnerability-scanners
Language:Open Policy Agent 2502
cisagov / ScubaGear
Automation to assess the state of your M365 tenant against CISA's baselines
assessment-tool cisa cybersecurity m365 open-policy-agent open-source powershell rego scuba security security-automation contributions-welcome scubaconnect
Language:PowerShell 2341
Certified-Kubernetes-Security-Specialist
walidshaari / Certified-Kubernetes-Security-Specialist
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
apparmor certification cks ckss exam-objectives falco kernel-hardening kube-bench kube-hunter kubernetes kubernetes-security mitre-attack open-policy-agent os-footprint pod pod-security-policy policy seccomp security trivy
Language:AGS Script 2084
open-policy-agent / awesome-opa
A curated list of OPA related tools, frameworks and articles
opa open-policy-agent openpolicyagent opa-library awesome awesome-list security policy-as-code
846
aquasecurity / chain-bench
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
devsecops software-supply-chain software-supply-chain-security security vulnera go cis golang misconfiguration open-policy-agent security-tools
Language:Go 758
plexsystems / konstraint
A policy management tool for interacting with Gatekeeper
gatekeeper policy conftest opa kubernetes rego open-policy-agent
Language:Go 392
regal
open-policy-agent / regal
Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
linter opa open-policy-agent rego code-quality static-analysis policy-as-code magnificent language-server lsp
Language:Go 345
open-policy-agent / contrib
Integrations, examples, and proof-of-concepts that are not part of OPA proper.
open-policy-agent opa contrib integrations proof-of-concept hack
Language:Go 340
cisagov / ScubaGoggles
SCuBA Secure Configuration Baselines and assessment tool for Google Workspace
cisa cybersecurity google google-workspace gws opa open-policy-agent open-source python scuba scubaconnect security security-automation
Language:Open Policy Agent 269
alcideio / skan
Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.
kubernetes configuration-scan scanning scan-tool devops ci open-policy-agent opa openpolicyagent helm kustomize conftest best-practice dashboard helm-scan helmscan
Language:JavaScript 206
open-policy-agent / rego-style-guide
Style guide for Rego
rego style-guide best-practices opa open-policy-agent policy-as-code styra
203
multi-tenancy
fluxcd / multi-tenancy
Flux v1: Manage a multi-tenant cluster with Flux and Kustomize
gitops multi-tenancy kubernetes kustomize flux flagger open-policy-agent
Language:Open Policy Agent 180
raspbernetes / k8s-security-policies
This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations. The policies are developed in accordance with the CIS Kubernetes benchmark.
raspbernetes security conftest open-policy-agent cis kubernetes rego-policy rego-files gatekeeper benchmark cis-kubernetes-benchmark kubesec kubernetes-clusters violation
Language:Open Policy Agent 174
anderseknert / kube-review
Create Kubernetes AdmissionReview requests from Kubernetes resource manifests
kubernetes k8s kube-review kubectl admission-webhook admission-controller admission-review validating-admission-webhook mutating-admission-webhook policy-as-code open-policy-agent opa
Language:Go 161
open-policy-agent / npm-opa-wasm
Open Policy Agent WebAssembly NPM module (opa-wasm)
authorization browser declarative deno nodejs opa open-policy-agent policy wasm webassembly
Language:JavaScript 152
traefik-plugins / traefik-jwt-plugin
Traefik plugin which checks JWT tokens for required fields. Supports Open Policy Agent (OPA) and signature validation with JWKS
traefik-plugin jwt opa open-policy-agent
Language:Go 129
open-policy-agent / vscode-opa
An extension for VS Code which provides support for OPA and the Rego policy language
opa open-policy-agent policy-as-code rego vscode-extension
Language:TypeScript 123
devspace-cloud / devspace-cloud
DevSpace Cloud ⚡ Turn Kubernetes into a Powerful Developer Platform (new on-premise edition)
devspace kubernetes development provisioning provision-namespaces namespace-isolation namespaces sandbox sandboxing sandbox-environment cloud-native open-policy-agent opa gatekeeper rbac
Language:Open Policy Agent 111
replicatedhq / gatekeeper
Kubernetes Operator to manage Dynamic Admission Controllers using Open Policy Agent
admission-controllers crd kubebuilder kubernetes kubernetes-operator open-policy-agent
Language:Go 106
jlucaspains / go-rest-template
Golang REST API Template
docker docker-compose golang jwt-auth kubernetes open-policy-agent rest-api template
Language:Go 90
the-container-security-book
mhausenblas / the-container-security-book
The Container Security Book—a free book for practitioners
aws book containers ecs kubernetes open-policy-agent policy security service-mesh
82
quicsec / quicsec
HTTP/3-enable existing HTTP apps. Leverage HTTP3 native features and auto-enable workload identity (SPIFFE), AuthN (mTLS/x509, OIDC/Auth0-Okta), AuthZ (OPA), defense-in-depth (WAAP/WAF), and observability (metrics, logs, alerting, dashboard).
cloud-native http http3 kubernetes mtls security spiffe zero-trust cert-manager quic grafana loki metrics prometheus authentication auth0 oidc okta open-policy-agent waf
Language:Go 77
developer-guy / policy-as-code-war
OPA Gatekeeper vs Kyverno
kubernetes minikube kyverno opa open-policy-agent policy-as-code
66
instrumenta / policies
A set of shared policies for use with Conftest and other Open Policy Agent tools
conftest open-policy-agent
Language:Open Policy Agent 66
busykoala / fastapi-opa
Fastapi OPA middleware incl. auth flow.
authentication-flow authorization fastapi fastapi-opa open-policy-agent
Language:Python 65
developer-guy / container-image-sign-and-verify-with-cosign-and-opa
This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
cosign opa go golang open-policy-agent cosign-http-wrapper proof-of-concept
Language:Go 63
StyraOSS / opa-kafka-plugin
Open Policy Agent (OPA) plug-in for Kafka authorization
opa-kafka-plugin opa kafka kafka-authorization authorization openpolicyagent rego open-policy-agent
Language:Scala 63
Turall / OPA-python-client
Python client for Open Policy Agent
python opa open-policy-agent opa-client python-opa-client open-policy-agent-python policy
Language:Python 61
zotoio / sls-lambda-opa
Experimental AWS ApiGateway Authorizer Go Lambda with embedded Open Policy Agent
authorizer go golang lambda opa open-policy-agent serverless-framework
Language:Go 53
kove
cmacrae / kove
Watch your in cluster Kubernetes manifests for OPA policy violations and export them as Prometheus metrics
prometheus-exporter kubernetes opa rego metrics monitoring go golang open-policy-agent prometheus observability
Language:Go 48
open-policy-agent / opa-envoy-spire-ext-authz
OPA-Envoy-SPIRE External Authorization Example.
authorization service-mesh envoyproxy open-policy-agent authentication spiffe spire
Language:Go 47
christophwille / dotnet-opa-wasm
Call Open Policy Agent (OPA) policies in WASM (Web Assembly) from .NET Core
csharp dotnet-core opa open-policy-agent wasm wasmtime web-assembly webassembly
Language:C# 45
aws-samples / aws-infra-policy-as-code-with-terraform
Implements OPA-based preventive security controls for AWS Infrastructure using Terraform Infrastructure as Code (IaC), that can establish a security baseline and safeguard resources before deployment into the AWS Accounts and reduce security risks.
aws compliance compliance-as-code infra opa open-policy-agent policy-as-code rego terraform
Language:Open Policy Agent 43

Related Topics

authorization open-source-policy policy policy-as-code