Kubernetes
These projects from the OPA ecosystem make it easier to use OPA in Kubernetes use cases.
Kubernetes Admission Control
View a selection of projects and talks about integrating OPA with Kubernetes.
View Details
Styra Declarative Authorization Service
Styra DAS has native support for mutating and validating Kubernetes at admission time via a prebuilt 'system-type', this is documented here.
View Details
Fairwinds Insights Configuration Validation Software
Implements auditing and admission checking of Kubernetes resources using Rego policy using Polaris.
View DetailsOPA Gatekeeper
OPA Gatekeeper integrates with Kubernetes Admission and also uses Custom Resources and the Kubernetes API server to store policy state.
View Details
Kubernetes Authorization
View an example project showing how it's possible to integrate OPA with Kubernetes User Authorization.
View Details
Spacelift
Spacelift supports Rego as a language to describe policies for various resource types, including Kubernetes. View the policy documentation for more information.
View Details
Kubernetes Admission Control using Vulnerability Scanning
This example project in OPA contrib uses OPA to enforce admission policy in Kubernetes.
View Details
GKE Policy Automation
The GKE Policy Automation project provides a set of policies for validating Kubernetes clusters running on GKE. Review the policy library here
View Details
KubeShield
KubeShield implements runtime policy for containers in a Kubernetes cluster using eBPF. Follow the tutorial here to get up and running.
View Details