Write tests against structured configuration data using the Open Policy Agent Rego query language
-
Updated
May 29, 2024 - Go
The Open Policy Agent (OPA, pronounced “oh-pa”) is an open source, general-purpose policy engine that unifies policy enforcement across the stack. OPA provides a high-level declarative language that lets you specify policy as code and simple APIs to offload policy decision-making from your software. You can use OPA to enforce policies in microservices, Kubernetes, CI/CD pipelines, API gateways, and more.
What is OPA
Write tests against structured configuration data using the Open Policy Agent Rego query language
A curated list of OPA related tools, frameworks and articles
Build a platform with the Kubernetes resource model!
Open Policy Agent (OPA) plug-in for Kafka authorization
A Helm plugin for testing Helm Charts using Open Policy Agent
Inspektor is a protocol-aware proxy that is used to enforce access policies👮
Pluggable ABAC/PBAC middleware
A GitHub Action for using Conftest
A proof of concept for RBAC on nginx with Open Policy Agent
koans for OPA
Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.
🔍 Rekor transparency log monitoring and alerting
CLI for searching Rego policies
Pre-commit git hooks for Open Policy Agent (OPA) and Rego development
A lightweight container for distributed security policy evaluation
Open Policy Agent for Spring Security
Run opa test command with GitHub Actions
Run conftest test command with GitHub Actions