开源软件名称(OpenSource Name):open-policy-agent/gatekeeper-library开源软件地址(OpenSource Url):https://github.com/open-policy-agent/gatekeeper-library开源编程语言(OpenSource Language):Open Policy Agent 96.3%开源软件介绍(OpenSource Introduction):OPA Gatekeeper LibraryA community-owned library of policies for the OPA Gatekeeper project. UsagekustomizeYou can use kustomize to install some or all of the templates alongside your own contraints. First, create a apiVersion: kustomize.config.k8s.io/v1beta1
kind: Kustomization
resources:
- github.com/open-policy-agent/gatekeeper-library/library
# You can optionally install a subset by specifying a subfolder, or specify a commit SHA
# - github.com/open-policy-agent/gatekeeper-library/library/pod-security-policy?ref=0c82f402fb3594097a90d15215ae223267f5b955
- constraints.yaml Then define your constraints in a file called You can install everything with More information can be found in the kustomization documentation. kubectlInstead of using kustomize, you can directly apply the For example cd library/general/httpsonly/
kubectl apply -f template.yaml
kubectl apply -f samples/ingress-https-only/constraint.yaml
kubectl apply -f library/general/httpsonly/sync.yaml # optional: when GK is running with OPA cache TestingThe
The gator CLI may be downloaded from the Gatekeeper releases page. How to contribute to the libraryNew policyIf you have a policy you would like to contribute, please submit a pull request. Each new policy should contain:
Development
|
2023-10-27
2022-08-15
2022-08-17
2022-09-23
2022-08-13
请发表评论