kyverno
kyverno
Kubernetes-native policy management
- Validate resources
- Mutate resources
- Generate resources
- Verify OCI images
Policies are managed as Kubernetes resources
Policies
Kyverno manages community policies
These policies are searchable
Examples
Require specific labels on resources
Allowlist for image registries
Require attestations of security scans