issues
search
kyverno
/
policies
Kyverno policies for security and best practices
Apache License 2.0
333
stars
243
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
"Require runAsNonRoot" policy with "initContainers: null"
#1197
jplitza
opened
6 days ago
1
Restrict Image Registries
#1196
anuragjain08
closed
4 days ago
8
build(deps): Bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.15 to 3.0.16
#1195
dependabot[bot]
closed
1 week ago
0
update kustomization
#1194
JimBugwadia
closed
2 weeks ago
0
policy for blocking ingress if user doesn't specify tls
#1193
saiben10
closed
4 days ago
30
policy for blocking externlaIps
#1192
saiben10
closed
2 weeks ago
12
build(deps): Bump actions/setup-go from 5.0.2 to 5.1.0 in /.github/actions/setup-env
#1190
dependabot[bot]
closed
3 weeks ago
0
build(deps): Bump actions/setup-go from 5.0.2 to 5.1.0
#1189
dependabot[bot]
closed
3 weeks ago
0
[Feature] To add Karpenter Do Not Disrupt policy for Karpenter 1.x version
#1191
jkannan-talend
opened
3 weeks ago
2
build(deps): Bump actions/checkout from 4.2.1 to 4.2.2
#1188
dependabot[bot]
closed
3 weeks ago
0
Fix for issue: 1186 CEL expression is updated to support NET_RAW drop capability
#1187
epasham
closed
3 weeks ago
0
[Bug] Update CEL expression to support CAP_NET_RAW and NET_RAW drop capabilities
#1186
epasham
closed
3 weeks ago
3
Publish policies as OCI Artifact
#1185
devantler
opened
3 weeks ago
0
build(deps): Bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.14 to 3.0.15
#1184
dependabot[bot]
closed
3 weeks ago
0
chore: merge e2e tests with cel e2e tests
#1181
eddycharly
closed
1 month ago
0
feat: use chainsaw test sharding
#1180
eddycharly
closed
1 month ago
2
fix disallow-privilege-escalation policy
#1179
JimBugwadia
closed
1 month ago
0
build(deps): Bump actions/checkout from 4.1.7 to 4.2.1
#1178
dependabot[bot]
closed
1 month ago
1
chore: bump chainsaw
#1177
eddycharly
closed
1 month ago
2
fix: disallow-privilege-escalation (cel)
#1176
eddycharly
opened
1 month ago
0
build(deps): Bump sigstore/cosign-installer from 3.6.0 to 3.7.0 in /.github/actions/run-tests
#1175
dependabot[bot]
closed
1 month ago
0
build(deps): Bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.13 to 3.0.14
#1174
dependabot[bot]
closed
1 month ago
0
remove missing image and fix failing tests
#1173
JimBugwadia
closed
1 month ago
0
build(deps): Bump kyverno/action-install-chainsaw from 0.2.10 to 0.2.11 in /.github/actions/run-tests
#1172
dependabot[bot]
closed
1 month ago
1
Add Pod Anti-Affinity
#1171
gssjl2008
closed
1 month ago
1
build(deps): Bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.12 to 3.0.13
#1170
dependabot[bot]
closed
1 month ago
0
[Sample] Prevent `kubectl cp` command
#1169
JimBugwadia
opened
1 month ago
1
Fix for issue 1166: Allow CAP_NET_RAW and NET_RAW drop capabilities
#1168
epasham
closed
1 month ago
1
build(deps): Bump actions/checkout from 4.1.7 to 4.2.0
#1167
dependabot[bot]
closed
1 month ago
1
[Bug] Security Capabilites must omit the CAP prefix which is required by Kyverno policies
#1166
StraysWonderland
closed
1 month ago
5
[Bug]: Kyverno-policies helm chart has hardcoded Kubernetes version annotations
#1165
sergey198828
opened
1 month ago
2
build(deps): Bump kyverno/action-install-chainsaw from 0.2.9 to 0.2.10 in /.github/actions/run-tests
#1164
dependabot[bot]
closed
2 months ago
0
[Bug] Unique host and path ingress policy is blocking updates
#1163
Fauli
opened
2 months ago
9
[Enhancement]: Update generateExistingOnPolicyUpdate (deprecated) with new format
#1162
husnialhamdani
closed
2 months ago
0
chore: fix ci (cherry-pick #1160)
#1161
gcp-cherry-pick-bot[bot]
closed
2 months ago
0
chore: fix ci
#1160
eddycharly
closed
2 months ago
3
chore: fix ci jobs (cherry-pick #1158)
#1159
gcp-cherry-pick-bot[bot]
closed
2 months ago
0
chore: fix ci jobs
#1158
eddycharly
closed
2 months ago
1
fix: modify the ingress resource (cherry-pick #1156)
#1157
gcp-cherry-pick-bot[bot]
closed
2 months ago
0
fix: modify the ingress resource
#1156
MariamFahmy98
closed
2 months ago
2
chore: verify chainsaw with cosign
#1155
eddycharly
closed
2 months ago
0
chore: renovate validationFailureAction
#1154
eddycharly
closed
2 months ago
0
fix: restrict-node-label-changes chainsaw test
#1153
vishal-chdhry
closed
2 months ago
0
feat: bump chainsaw
#1152
eddycharly
closed
2 months ago
0
build(deps): Bump kyverno/action-install-chainsaw from 0.2.8 to 0.2.9 in /.github/actions/run-tests
#1151
dependabot[bot]
closed
2 months ago
1
build(deps): Bump zgosalvez/github-actions-ensure-sha-pinned-actions from 3.0.11 to 3.0.12
#1150
dependabot[bot]
closed
2 months ago
0
fix: aggregate clusterrole to admission controller
#1149
realshuting
closed
2 months ago
0
feat: upgrade policy ready assertion to use conditions
#1148
eddycharly
closed
2 months ago
0
chore: update dependabot to update actions
#1147
eddycharly
closed
2 months ago
0
Update require-ro-rootfs policy to include all container types in a pod
#1146
dolisss
closed
2 months ago
0
Next