Skip to content
/ policyhub Public

A policy hub to maintain policies (guardrails) to enforce security and best practices using Cuelang, CEL, and Rego. Will also support string search algorithm soon.

License

Apache-2.0 license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

intelops/policyhub

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

56 Commits
.github/workflows
.github/workflows
 
 
genval
genval
 
 
pygard
pygard
 
 
.gitignore
.gitignore
 
 
Dockerfile-sample
Dockerfile-sample
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
deployment.json
deployment.json
 
 

Repository files navigation

Security policies hub for Genval and Pygard

Welcome to the policyhub repository! Here, we house a comprehensive collection of policies designed to enforce security and best practices using Rego, CEL, CUELANG, and Pydantic policies, specifically crafted for use with the Genval and Pygard frameworks. Our goal is to provide a centralized resource for maintaining security standards across various Infrastructure as Code (IaC) technologies and for LLM purposes.

What's Inside?

In this repository, you'll find security policies and best practices tailored for Dockerfiles, Kubernetes, Terraform, TektonCD, ArgoCD, ClusteerAPI, Crossplane, and other cloud native tools, and also for LLMs. You can leverage policies written in Rego, CEL, and CUELANG for cloud native ecosystem, and Pydantic for LLM agent's development within their respective directories (Genval and Pygard) in this repository.

Pygard related policies will be released soon. We will update this document accordingly.

Additionally, we've included input templates designed to work seamlessly with Genval. These templates are intended for informational purposes, showcasing the required input format and demonstrating various use cases across different modes supported by Genval. You can find these input templates in the input-templates directory, covering technologies such as CUE, Dockerfiles, Kubernetes (k8s), and Terraform.

Contributing to Security Policies

We believe in the power of community collaboration. If you identify specific security policies that are missing from our current collection or have ideas for improvements, we invite you to get involved. Here's how you can contribute:

  1. Raise an Issue: If you have a proposal or wish to discuss potential security policies, please open an issue. This provides a platform for community input and feedback.

  2. Submit a Pull Request (PR): To directly contribute to your suggested security policies, submit a pull request. Our community values your expertise and insights, which will further enhance our security measures.

Your contributions play a pivotal role in maintaining the integrity and effectiveness of our security policies. Together, we can make a meaningful impact on the security landscape of IaC technologies.

Thank you for being part of our security-focused community!

About

A policy hub to maintain policies (guardrails) to enforce security and best practices using Cuelang, CEL, and Rego. Will also support string search algorithm soon.

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

10 tags

Packages 7

 
 
 
+ 4 packages

Contributors 2

  •  
  •  

Languages