CheckovPrevent cloud misconfigurations during build-time for Terraform, Cloudformation, Kubernetes, Serverless framework and other infrastructure-as-code-languages with Checkov by Bridgecrew.
awesome-opaA curated list of OPA related tools, frameworks and articles
opalPolicy and data administration, distribution, and real-time updates on top of Open Policy Agent
gamechanger-dataGAMECHANGER aspires to be the Department’s trusted solution for evidence-based, data-driven decision-making across the universe of DoD requirements
azure-policy-as-codeBicep and Terraform code examples for policy-as-code workflows. Azure governance guardrails and automation - by @jesseloudon
open-source-logiciel-libreOpen Source Software Requirements and Guidance (Draft) - Exigences et guides liés aux logiciels libres (Ébauche)
awesome-azure-policyA curated list of blogs, videos, tutorials, code, tools, scripts, and anything useful to help you learn Azure Policy - by @jesseloudon
gamechangerGAMECHANGER aspires to be the Department’s trusted solution for evidence-based, data-driven decision-making across the universe of DoD requirements
interceptINTERCEPT / Policy as Code Static Analysis Auditing / SAST
awesome-policy-as-codeA curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.
chimera-admissionA Kubernetes dynamic admission controller that uses WebAssembly policies to validate incoming requests
cloudpatrolPolicy as Code for the Cloud Development Kit (CDK)
rodeRode facilitates Automated Governance in your software supply chain. This repository contains the rode API which is the primary interface between the rode UI or rode Collectors and metadata storage in Grafeas. The rode API provides functions for metadata search and storage as well as policy creation and evaluation.
policy-serverWebhook server that evaluates WebAssembly policies to validate Kubernetes requests