Unified Policy Observability. Monitoring and Observability Tool for the PolicyReport CRD with an optional UI.

Policy Reporter was created to make the results of your Kyverno validation policies more visible and observable. By default, Kyverno provides the option to create your validation policies in audit or enforce mode. While enforce blocks to applying a manifests that violate the given policy, audit creates PolicyReports that provide information about all resources that pass or fail your policies. Because Policy Reports are simple Custom Resource Definitions you can access them with kubectl get/describe.

• Policy Reporter @ GitHub. -Policy Reporter UI @ GitHub.

Kubernetes Native Policy Management.

Kyverno is a policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using admission controls and background scans. Kyverno policies are Kubernetes resources and do not require learning a new language. Kyverno is designed to work nicely with tools you already use like kubectl, kustomize, and Git.

• Kyverno @ GitHub.

Related contents:

• Vos politiques de conformité sur Kubernetes avec Kyverno @ Zwindler's Reflection :fr:.
• Understanding Kyverno: Enhancing Kubernetes Security with Policy Enforcement @ Jyothi Ram's blog.
• Using the Kyverno CLI to Write Policy Test Cases @ The New Stack.
• Simplify Kubernetes Security With Kyverno and OPA Gatekeeper @ The New Stack.
• Announcing Kyverno Release 1.15! @ CNCF.
• Optimizing Kyverno CLI performance: My LFX mentorship journey @ CNCF.
• GitOps architecture, patterns and anti-patterns @ Platform Engineering.
• GitOps policy-as-code: Securing Kubernetes with Argo CD and Kyverno @ CNCF.