kubewarden repositories

sleeping-policy

Public

A test policy that simulates long running policy evaluations

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•2•0•1•1•Updated

Nov 1, 2025

go-wasi-context-aware-test-policy

Public

A test context-aware policy written using Go Wasi

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Go

•

Apache License 2.0

•2•1•1•1•Updated

Nov 1, 2025

kwctl

Public

Go-to CLI tool for Kubewarden users

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security

Rust

•

Apache License 2.0

•23•86•19•4•Updated

Nov 1, 2025

audit-scanner

Public

Reports evaluation of existing Kubernetes resources with your already deployed Kubewarden policies.

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security

Go

•

Apache License 2.0

•9•8•9•1•Updated

Nov 1, 2025

priority-class-policy

Public

Validates Pod's priority class

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•3•0•1•1•Updated

Nov 1, 2025

container-resources-policy

Public

Policy is designed to enforce constraints on the resource requirements of Kubernetes containers

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Go

•

Apache License 2.0

•5•1•2•1•Updated

Nov 1, 2025

policy-sdk-js

Public

Experimental Kubewarden SDK for TypeScript and JavaScript

javascript kubernetes typescriptwebassembly hacktoberfest policy-as-code kubernetes-security kubewarden-policy-sdk

TypeScript

•

Apache License 2.0

•4•0•8•2•Updated

Nov 1, 2025

context-aware-demo

Public

A demo policy showing how to access Kubernetes resources at policy evaluation time

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•2•1•1•1•Updated

Nov 1, 2025

go-wasi-policy-template

Public template

Template of a plain WASI policy written using Go

go kubernetes golangwebassembly hacktoberfest wasi policy-as-code kubernetes-security kubewarden-policy-template

Go

•

Apache License 2.0

•1•0•1•1•Updated

Nov 1, 2025

raw-validation-opa-policy

Public

Demo policy showing how to write a raw OPA validating policy

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Shell

•

Apache License 2.0

•1•0•1•1•Updated

Nov 1, 2025

environment-variable-policy

Public

A Kubewarden Policy that controls the usage of environment variables

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•4•2•1•1•Updated

Nov 1, 2025

load-testing

Public

HTTP load to stress policy-server

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security

Python

•

Apache License 2.0

•1•1•4•1•Updated

Nov 1, 2025

policy-server

Public

Webhook server that evaluates WebAssembly policies to validate Kubernetes requests

kubernetes rust webassemblypolicy hacktoberfest policy-as-code kubernetes-webhook kubernetes-security

Rust

•

Apache License 2.0

•20•151•23•1•Updated

Nov 1, 2025

rego-policies-library

Public

A collection of Rego policies that can be used to enforce best practices in Kubernetes clusters

kubernetes webassembly compliancegatekeeper hacktoberfest policy-as-code rego kubernetes-security kubewarden-policy

Open Policy Agent

•

Apache License 2.0

•6•3•3•1•Updated

Nov 1, 2025

volumeMounts-policy

Public

A Kubewarden Policy that controls the usage of `volumeMounts`

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•4•2•1•1•Updated

Nov 1, 2025

do-not-expose-admission-controller-webhook-services-policy

Public

A policy that detects webhook services used by admission controller that are accidentally exposed outside of the cluster

kubernetes webassembly compliancehacktoberfest policy-as-code kubernetes-security kubewarden-policy admissioncontroller

Rust

•

Apache License 2.0

•2•0•1•1•Updated

Nov 1, 2025

hostpaths-psp-policy

Public

Replacement for the Kubernetes Pod Security Policy that controls the usage of hostpaths

kubernetes webassembly hacktoberfestpolicy-as-code pod-security-policy kubernetes-security kubewarden-policy

Go

•

Apache License 2.0

•4•3•3•1•Updated

Nov 1, 2025

volumes-psp-policy

Public

Replacement for the Kubernetes Pod Security Policy that controls the usage of volumes

kubernetes webassembly hacktoberfestpolicy-as-code pod-security-policy kubernetes-security kubewarden-policy

Go

•

Apache License 2.0

•4•2•2•1•Updated

Nov 1, 2025

safe-labels-policy

Public

Kubewarden policy that validates Kubernetes' resource labels

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubernetes-compliance kubewarden-policy

Go

•

Apache License 2.0

•3•5•1•1•Updated

Nov 1, 2025

unique-service-selector-policy

Public

Policy validates that there are no services with the same set of selectors

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•1•0•1•1•Updated

Nov 1, 2025

context-aware-test-opa-policy

Public

Open Policy Agent

•

Apache License 2.0

•0•0•1•1•Updated

Nov 1, 2025

annotations-policy

Public

Validates annotations

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•1•0•2•1•Updated

Nov 1, 2025

trusted-repos-policy

Public

A Kubewarden policy that restricts what registries, tags and images can pods on your cluster refer to

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubernetes-compliance kubewarden-policy

Rust

•

Apache License 2.0

•5•7•2•1•Updated

Nov 1, 2025

high-risk-service-account-policy

Public

Rust

•

Apache License 2.0

•3•0•1•1•Updated

Nov 1, 2025

allowed-proc-mount-types-psp-policy

Public

Replacement for the Kubernetes Pod Security Policy that controls the usage of /proc mount types

kubernetes webassembly hacktoberfestpolicy-as-code pod-security-policy kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•6•7•3•1•Updated

Nov 1, 2025

namespace-label-propagator-policy

Public

Kubewarden policy designed to automatically propagate labels defined in a Kubernetes namespace to the associated resources within that namespace

kubernetes webassembly hacktoberfestpolicy-as-code kubernetes-security kubewarden-policy

Go

•

Apache License 2.0

•3•1•2•1•Updated

Nov 1, 2025

allow-privilege-escalation-psp-policy

Public

A Kubewarden Pod Security Policy that controls usage of allowPrivilegeEscalation

kubernetes webassembly hacktoberfestpolicy-as-code pod-security-policy kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•8•6•2•1•Updated

Nov 1, 2025

disallow-service-loadbalancer-policy

Public

A policy that prevents the creation of Service resources with type LoadBalancer

kubernetes webassembly gatekeeperhacktoberfest open-policy-agent policy-as-code kubernetes-security kubewarden-policy

Makefile

•

Apache License 2.0

•3•2•1•1•Updated

Nov 1, 2025

disallow-service-nodeport-policy

Public

A policy that prevents the creation of Service resources with type NodePort

kubernetes webassembly gatekeeperhacktoberfest open-policy-agent policy-as-code kubernetes-security kubewarden-policy

Makefile

•

Apache License 2.0

•2•2•1•1•Updated

Nov 1, 2025

allowed-fsgroups-psp-policy

Public

Replacement for the Kubernetes Pod Security Policy that controls the usage of fsGroup in the pod security context

kubernetes webassembly hacktoberfestpolicy-as-code pod-security-policy kubernetes-security kubewarden-policy

Rust

•

Apache License 2.0

•6•4•3•1•Updated

Nov 1, 2025

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Kubewarden

All

All

106 repositories

sleeping-policy

go-wasi-context-aware-test-policy

kwctl

audit-scanner

priority-class-policy

container-resources-policy

policy-sdk-js

context-aware-demo

go-wasi-policy-template

raw-validation-opa-policy

environment-variable-policy

load-testing

policy-server

rego-policies-library

volumeMounts-policy

do-not-expose-admission-controller-webhook-services-policy

hostpaths-psp-policy

volumes-psp-policy

safe-labels-policy

unique-service-selector-policy

context-aware-test-opa-policy

annotations-policy

trusted-repos-policy

high-risk-service-account-policy

allowed-proc-mount-types-psp-policy

namespace-label-propagator-policy

allow-privilege-escalation-psp-policy

disallow-service-loadbalancer-policy

disallow-service-nodeport-policy

allowed-fsgroups-psp-policy

All

All

Repositories list

106 repositories