Kubernetes security tool for policy enforcement
https://github.com/cruise-automation/k-rail/pull/128 implements support for all ingress types for the ingress_require_ingress_exemption
policy
Kubernetes security tool for policy enforcement
https://github.com/cruise-automation/k-rail/pull/126 adds a policy to disallow usages of all NGINX snippet annotations, in response to NGINX Ingress Controller vulnerability CVE-2021-25742. The new policy is enabled and setup in report_only
mode to allow operators to override based on individual organizational software development lifecycles.
Kubernetes security tool for policy enforcement
#120 Filter out Istio Virtual Services from Admission Requests correctly
Kubernetes security tool for policy enforcement
#119 Policy to require Istio VirtualService Gateways
Kubernetes security tool for policy enforcement
#118 Fix AppArmor violationText which was mistakenly reusing Empty Dir violationText
Kubernetes security tool for policy enforcement