Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Gatekeeper policy compatibility #526

Open
mafrosis opened this issue Mar 30, 2023 · 2 comments
Open

Gatekeeper policy compatibility #526

mafrosis opened this issue Mar 30, 2023 · 2 comments

Comments

@mafrosis
Copy link

Hi there, nice project!

I'm interested to know if anyone has thought about compatibility between the checks in kube-score and policy we might deploy into Gatekeeper?

I would much prefer the same exact same policy to by applied in both my pipeline during development, and in the cluster at deploy time. If we could somehow derive/export Rego code from kube-score then I think this could work.

Thanks!
@kmarteaux
Copy link
Contributor

@mafrosis , to be honest, I haven't thought much about it, but your question piqued my interest, but first I need to educate myself about Gatekeeper and OPA's Rego language.

@kmarteaux
Copy link
Contributor

@mafrosis, having read through the Gatekeeper/OPA documentation -- I'm wondering a bit more about your use case. If one applied gating criteria to the desired policies via a pipeline during development ... why would one need the same policies enforced at runtime? One could simply block a created artifact from being deployable.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mafrosis @kmarteaux