Kyverno is a policy engine for Kubernetes that enables you to define and enforce policies for your cluster resources. It provides a flexible and scalable solution for managing your cluster configuration, allowing you to enforce best practices, prevent misconfigurations, and enforce compliance requirements.
The kyverno/policies offer all kinds of security and best practice policies that you could use.
Install with:
helm repo add kyverno-charts https://kyverno.github.io/kyverno/
helm install kyverno kyverno-charts/kyverno -f values.yaml
See examples from other people.
Name | Repo | Stars | Version | Timestamp |
---|---|---|---|---|
kyverno | bjw-s/home-ops | 277 | 2.7.1 | 4 days ago |
kyverno | onedr0p/home-ops | 1056 | 2.7.1 | 5 days ago |
kyverno | auricom/home-ops | 74 | 2.7.1 | 6 days ago |
kyverno | truxnell/home-cluster | 99 | 2.7.1 | 11 days ago |
kyverno | haraldkoch/kochhaus-home | 34 | 2.7.1 | 11 days ago |
See the most popular values for this chart:
Key | Types |
---|---|
boolean | |
string | |
number | |
string | |
number | |
topologySpreadConstraints[].topologyKey (29) kubernetes.io/hostname | string |
topologySpreadConstraints[].whenUnsatisfiable (29) DoNotSchedule | string |
installCRDs (23) false | boolean |
string | |
string | |
string | |
string | |
boolean | |
string | |
boolean | |
string | |
boolean | |
string | |
crds.install (9) true | boolean |
boolean | |
number | |
updateStrategy.type (7) RollingUpdate | string |
extraArgs[] (5) - --autogenInternals=false | string |
string | |
string | |
string | |
string | |
string | |
string |