Top Rating
- Top Contributors
  Discover the Top Open Source contributors by country or by language
- Interviews
  Discover real stories from Open Source developers
Discover

Discover your Favorite Language
Discover the top trending repositories and projects on Github. Explore the latest trends in your preferred languages.

C++

Ruby

Nix

Dart

Julia

Erlang

PowerShell

R

More Languages
Awesome

Awesome repositories
Discover the most awesome repositories and projects of your favorite languages. Inspired by the Awesome-* lists trend in GitHub.

Lua

R

Objective-C

PowerShell

F#

Go

Nix

Jupyter Notebook

More Languages
By Country

Rankings by Country
Discover the community of talented open source contributors in each country.

🇧🇩 Bangladesh

🇧🇴 Bolivia

🇻🇺 Vanuatu

🇴🇲 Oman

🇱🇻 Latvia

🇯🇵 Japan

🇮🇱 Israel

🇿🇲 Zambia

All Countries Compare Countries

open-policy-agent/gatekeeper

Stars
3,602
Rank 12,309 (Top 0.3 %)
Language
Go
License
Apache License 2.0
Created about 6 years ago
Updated 3 months ago

open-policy-agent/gatekeeper

open-policy-agent

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

🐊 Gatekeeper - Policy Controller for Kubernetes

Gatekeeper

How is Gatekeeper different from OPA?

Compared to using OPA with its sidecar kube-mgmt (aka Gatekeeper v1.0), Gatekeeper introduces the following functionality:

An extensible, parameterized policy library
Native Kubernetes CRDs for instantiating the policy library (aka "constraints")
Native Kubernetes CRDs for extending the policy library (aka "constraint templates")
Native Kubernetes CRDs for mutation support
Audit functionality
External data support

Getting started

Check out the installation instructions to deploy Gatekeeper components to your Kubernetes cluster.

Documentation

Please see the Gatekeeper website for more in-depth information.

Policy Library

See the Gatekeeper policy library for a collection of constraint templates and sample constraints that you can use with Gatekeeper.

Community & Contributing

Please refer to Gatekeeper's contribution guide to find out how you can help.

Code of conduct

This project is governed by the CNCF Code of conduct.

Security

For details on how to report vulnerabilities and security release process, please refer to Gatekeeper Security for more information.

opa

Open Policy Agent (OPA) is an open source, general-purpose policy engine.

conftest

Write tests against structured configuration data using the Open Policy Agent Rego query language

gatekeeper-library

📚 The OPA Gatekeeper policy library

Open Policy Agent

contrib

Integrations, examples, and proof-of-concepts that are not part of OPA proper.

opa-envoy-plugin

A plugin to enforce OPA policies with Envoy

kube-mgmt

Sidecar for managing OPA instances in Kubernetes.

npm-opa-wasm

Open Policy Agent WebAssembly NPM module (opa-wasm)

frameworks

vscode-opa

An extension for VS Code which provides support for OPA and the Rego policy language

library

The Open Policy Agent project standard library.

Open Policy Agent

example-api-authz-go

Example Go service that uses OPA for API authorization.

cert-controller

opa-docker-authz

A policy-enabled authorization plugin for Docker.

opa-idea-plugin

Open Policy Agent plugin for IntelliJ

rego-python

Python library for interacting with Rego ASTs.

opa-envoy-spire-ext-authz

OPA-Envoy-SPIRE External Authorization Example.

setup-opa

Sets up Open Policy Agent CLI in your GitHub Actions workflow.

example-api-authz-python

Example Python service that uses OPA for API authorization.

community

The Community repository is the place to go for support with OPA and OPA Sub-Projects, like Conftest and Gatekeeper.

golang-opa-wasm

Open Policy Agent WebAssembly Go SDK

gatekeeper-external-data-provider

A template repository for building external data providers for Gatekeeper.