Repositories list

• audit-scanner

  Public
  Reports evaluation of existing Kubernetes resources with your already deployed Kubewarden policies.

  kuberneteswebassemblyhacktoberfest+ 2policy-as-codekubernetes-security

  Go

  •

  Apache License 2.0

  •8•8•10•1•Updated Feb 27, 2025Feb 27, 2025

• pod-privileged-policy

  Public
  A Kubewarden Policy that limits the ability to create privileged containers

  webassemblyhacktoberfestpolicy-as-code+ 4pod-security-policykubernetes-securitykubewarden-policykubernetes

  Rust

  •

  Apache License 2.0

  •6•8•1•1•Updated Feb 27, 2025Feb 27, 2025

• policy-server

  Public
  Webhook server that evaluates WebAssembly policies to validate Kubernetes requests

  rustwebassemblypolicy+ 5hacktoberfestpolicy-as-codekubernetes-webhookkubernetes-securitykubernetes

  Rust

  •

  Apache License 2.0

  •19•144•19•2•Updated Feb 27, 2025Feb 27, 2025

• policy-evaluator

  Public
  Crate used by Kubewarden that is able to evaluate policies with a given input, request to evaluate and settings.

  hacktoberfest

  Rust

  •

  Apache License 2.0

  •8•15•22•1•Updated Feb 27, 2025Feb 27, 2025

• policy-fetcher

  Public
  Crate used by Kubewarden that is able to pull policies from OCI registries and HTTP servers.

  kuberneteswebassemblyhacktoberfest+ 2policy-as-codekubernetes-security

  Rust

  •

  Apache License 2.0

  •8•8•6•1•Updated Feb 27, 2025Feb 27, 2025

• kwctl

  Public
  Go-to CLI tool for Kubewarden users

  webassemblyhacktoberfestpolicy-as-code+ 2kubernetes-securitykubernetes

  Rust

  •

  Apache License 2.0

  •17•77•18•3•Updated Feb 27, 2025Feb 27, 2025

• kubewarden-controller

  Public
  Manage admission policies in your Kubernetes cluster with ease

  webassemblyhacktoberfestpolicy-as-code+ 2kubernetes-securitykubernetes

  Go

  •

  Apache License 2.0

  •33•205•74•1•Updated Feb 27, 2025Feb 27, 2025

• github-actions

  Public
  GitHub actions used by the Kubewarden project

  kuberneteswebassemblyhacktoberfest+ 2policy-as-codekubernetes-security

  Apache License 2.0

  •7•4•4•0•Updated Feb 26, 2025Feb 26, 2025

• kubecon-24-eu-kubewarden

  Public
  Experiment for Kubewarden booth at Kubecon EU 2024

  JavaScript

  •

  Apache License 2.0

  •2•2•1•22•Updated Feb 26, 2025Feb 26, 2025

• kubewarden-end-to-end-tests

  Public
  Files used to run Kubewarden end-to-end tests

  kuberneteswebassemblyhacktoberfest+ 2policy-as-codekubernetes-security

  Shell

  •

  Apache License 2.0

  •6•2•13•0•Updated Feb 26, 2025Feb 26, 2025

• kubewarden.io

  Public
  Kubewarden website

  kuberneteswebassemblyhacktoberfest+ 2policy-as-codekubernetes-security

  SCSS

  •15•11•7•1•Updated Feb 26, 2025Feb 26, 2025

• docs

  Public
  Kubewarden's documentation

  kuberneteswebassemblyhacktoberfest+ 2policy-as-codekubernetes-security

  JavaScript

  •

  Creative Commons Attribution 4.0 International

  •23•13•19•2•Updated Feb 26, 2025Feb 26, 2025

• helm-charts

  Public
  Helm charts for the Kubewarden project

  hacktoberfest

  Smarty

  •

  Apache License 2.0

  •16•27•16•2•Updated Feb 26, 2025Feb 26, 2025

• policy-sdk-rust

  Public
  Kubewarden Policy SDK for the Rust programming language

  kubernetesrust-languagewebassembly+ 5hacktoberfestpolicy-as-codekubernetes-securitykubewarden-policy-sdkrust

  Rust

  •

  Apache License 2.0

  •6•8•4•0•Updated Feb 26, 2025Feb 26, 2025

• verify-image-signatures

  Public
  A Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod

  kuberneteswebassemblyhacktoberfest+ 4policy-as-codepod-security-policykubernetes-securitykubewarden-policy

  Rust

  •

  Apache License 2.0

  •9•13•2•0•Updated Feb 25, 2025Feb 25, 2025

• deprecated-api-versions-policy

  Public
  A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources

  kuberneteswebassemblyhacktoberfest+ 3policy-as-codekubernetes-securitykubewarden-policy

  Rust

  •

  Apache License 2.0

  •4•15•1•0•Updated Feb 25, 2025Feb 25, 2025

• load-testing

  Public
  HTTP load to stress policy-server

  kuberneteswebassemblyhacktoberfest+ 2policy-as-codekubernetes-security

  Python

  •

  Apache License 2.0

  •1•1•4•0•Updated Feb 24, 2025Feb 24, 2025

• policy-sdk-js

  Public
  Experimental Kubewarden SDK for TypeScript and JavaScript

  TypeScript

  •

  Apache License 2.0

  •0•1•1•0•Updated Feb 24, 2025Feb 24, 2025

• automation

  Public
  Automation scripts for the management of the Kubewarden organization on GitHub

  hacktoberfest

  HCL

  •

  Apache License 2.0

  •4•3•2•0•Updated Feb 24, 2025Feb 24, 2025

• allowed-fsgroups-psp-policy

  Public
  Replacement for the Kubernetes Pod Security Policy that controls the usage of fsGroup in the pod security context

  kuberneteswebassemblyhacktoberfest+ 4policy-as-codepod-security-policykubernetes-securitykubewarden-policy

  Rust

  •

  Apache License 2.0

  •5•4•3•0•Updated Feb 24, 2025Feb 24, 2025

• flexvolume-drivers-psp-policy

  Public
  Replacement for the Kubernetes Pod Security Policy that controls the allowed `flexVolume` drivers

  kuberneteswebassemblyhacktoberfest+ 4policy-as-codepod-security-policykubernetes-securitykubewarden-policy

  Rust

  •

  Apache License 2.0

  •3•1•3•0•Updated Feb 24, 2025Feb 24, 2025

• cel-policy

  Public
  A policy that can run CEL expressions

  kuberneteswebassemblypolicy-as-code+ 3kubernetes-securitykubewarden-policycommon-expression-language

  Go

  •

  Apache License 2.0

  •5•5•6•0•Updated Feb 24, 2025Feb 24, 2025

• allowed-proc-mount-types-psp-policy

  Public
  Replacement for the Kubernetes Pod Security Policy that controls the usage of /proc mount types

  webassemblyhacktoberfestpolicy-as-code+ 4pod-security-policykubernetes-securitykubewarden-policykubernetes

  Rust

  •

  Apache License 2.0

  •5•7•3•0•Updated Feb 24, 2025Feb 24, 2025

• allow-privilege-escalation-psp-policy

  Public
  A Kubewarden Pod Security Policy that controls usage of allowPrivilegeEscalation

  webassemblyhacktoberfestpolicy-as-code+ 4pod-security-policykubernetes-securitykubewarden-policykubernetes

  Rust

  •

  Apache License 2.0

  •7•6•2•0•Updated Feb 24, 2025Feb 24, 2025

• raw-validation-policy

  Public
  Demo policy showing how to write a raw validating policy

  kuberneteswebassemblyhacktoberfest+ 3policy-as-codekubernetes-securitykubewarden-policy

  Rust

  •

  Apache License 2.0

  •1•0•1•0•Updated Feb 24, 2025Feb 24, 2025

• trusted-repos-policy

  Public
  A Kubewarden policy that restricts what registries, tags and images can pods on your cluster refer to

  webassemblyhacktoberfestpolicy-as-code+ 4kubernetes-securitykubernetes-compliancekubewarden-policykubernetes

  Rust

  •

  Apache License 2.0

  •3•7•2•0•Updated Feb 24, 2025Feb 24, 2025

• share-pid-namespace-policy

  Public
  Policy validates pods sharing processes PID namespace

  kuberneteswebassemblyhacktoberfest+ 3policy-as-codekubernetes-securitykubewarden-policy

  Rust

  •

  Apache License 2.0

  •1•0•1•0•Updated Feb 24, 2025Feb 24, 2025

• rancher-project-propagate-labels

  Public
  Propagate Rancher Project labels to the Namespaces it owns

  Rust

  •

  Apache License 2.0

  •3•3•1•0•Updated Feb 24, 2025Feb 24, 2025

• readonly-root-filesystem-psp-policy

  Public
  A Kubewarden policy that enforces root filesystem to be readonly

  kuberneteswebassemblyhacktoberfest+ 4policy-as-codepod-security-policykubernetes-securitykubewarden-policy

  Rust

  •

  Apache License 2.0

  •3•2•3•0•Updated Feb 24, 2025Feb 24, 2025

• seccomp-psp-policy

  Public
  A Kubewarden Pod Security Policy that controls usage of Seccomp profiles

  kuberneteswebassemblyhacktoberfest+ 4policy-as-codepod-security-policykubernetes-securitykubewarden-policy

  Rust

  •

  Apache License 2.0

  •4•4•3•0•Updated Feb 24, 2025Feb 24, 2025