Announcement

Free to view yesterday and today

Customer Service: cat_manager

加载中

正在获取最新内容，请稍候...

Kyverno - Kubernetes Native Policy Management Engine

Kyverno is a policy engine designed for Kubernetes. It can validate, mutate, and generate configurations using policies. It is an open source Cloud Native Computing Foundation (CNCF) project.

Added on 2025年6月12日

View on GitHub

Kyverno - Kubernetes Native Policy Management Engine preview

6,411

Stars

1,026

Forks

Language

Project Introduction

Summary

Kyverno is a policy engine built for Kubernetes. It allows managing policies as Kubernetes resources, enabling administrators to declare policy as code to validate, mutate, and generate configurations.

Problem Solved

Ensuring configuration compliance and security policies across Kubernetes clusters at scale is challenging. Manual checks are error-prone and time-consuming. Kyverno automates this enforcement.

Core Features

Policy Enforcement

Validate, mutate, and generate Kubernetes resources based on policy rules.

Kubernetes Native Policies

Policies are managed as Kubernetes resources, using standard YAML and Kustomize.

Tech Stack

Kubernetes

YAML

CNCF

Use Cases

Kyverno is versatile and can be applied to various scenarios within a Kubernetes environment:

Enforcing Security Best Practices

Details

Automatically reject or modify resource requests that violate security best practices, such as disallowing root user or requiring resource limits.

User Value

Improves cluster security posture by preventing insecure configurations from being deployed.

Automating Configuration Standards

Details

Ensure all namespaces have specific labels, annotations, or network policies automatically applied upon creation.

User Value

Ensures consistency across the cluster and reduces manual configuration effort.

Recommended Projects

You might be interested in these projects

influxdatainfluxdb

InfluxDB is a high-performance data store built specifically for time series data. It is ideal for metrics, events, and real-time analytics, offering high ingest and query performance.

Rust

301913618

View Details

home-assistantcore

Open source home automation that puts local control and privacy first.

Python

7867833545

View Details

drawdb-iodrawdb

DrawDB offers a free, simple, and intuitive online database diagram editor with robust SQL generation capabilities. Design your database schema visually and export corresponding SQL code effortlessly.

JavaScript

304282155

View Details