OPA Ecosystem / Integrations / Kubernetes Admission Control using Vulnerability Scanning

Kubernetes Admission Control using Vulnerability Scanning

Admission control policies in Kubernetes can be augmented with vulnerability scanning results to make more informed decisions. This integration demonstrates how to integrate CoreOS Clair with OPA and run it as an admission controller.

Code & Repos

https://github.com/open-policy-agent/contrib/tree/master/image_enforcer

Tutorials

https://github.com/open-policy-agent/contrib/blob/master/image_enforcer/README.md

Related Software

Kubernetes in the OPA Ecosystem
- kubernetes.io
Clair in the OPA Ecosystem
- github.com/coreos/clair

Labels

Category	containers
Datasource	clair
Layer	orchestration

Do you have an OPA-based project or integration to share? Follow these instructions to get it listed or go to the #ecosystem channel in the OPA Slack if you have any questions.