A policy hub to maintain policies (guardrails) to enforce security and best practices using Cuelang, CEL, and Rego. Will also support string search algorithm soon.
Apache License 2.0
1
stars
0
forks
source link
Enhance Security Policy Library by adding polices for Kubernetes and other cloud-native tools #3
This issue proposes expanding this repository into a comprehensive security policy library, specifically for Kubernetes and cloud-native technologies. We currently have limited policies, and the goal is to leverage Rego and Common Expression Language (CEL) for a wider range of security controls.
We can cover recommendations from relevant CIS Benchmarks (e.g., CIS Kubernetes Benchmark, Dockerfile benchmarks, etc) and other Software-Supply-Chain-Security best practices to ensure secure infrastructure and applications.
This issue proposes expanding this repository into a comprehensive security policy library, specifically for Kubernetes and cloud-native technologies. We currently have limited policies, and the goal is to leverage Rego and Common Expression Language (CEL) for a wider range of security controls.
We can cover recommendations from relevant CIS Benchmarks (e.g., CIS Kubernetes Benchmark, Dockerfile benchmarks, etc) and other Software-Supply-Chain-Security best practices to ensure secure infrastructure and applications.