Skip to content

A policy hub to maintain policies (guardrails) to enforce security and best practices using Cuelang, CEL, and Rego. Will also support string search algorithm soon.

License

Notifications You must be signed in to change notification settings

intelops/policyhub

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

89 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Security policies hub for Genval and Pygard

Welcome to the policyhub repository! Here, we house a comprehensive collection of policies designed to enforce security and best practices using Rego, CEL, CUELANG, and Pydantic policies, specifically crafted for use with the Genval and Pygard frameworks. Our goal is to provide a centralized resource for maintaining security standards across various Infrastructure as Code (IaC) technologies and for LLM purposes.

What's Inside?

In this repository, you'll find security policies and best practices tailored for Dockerfiles, Kubernetes, Terraform, TektonCD, ArgoCD, ClusteerAPI, Crossplane, and other cloud native tools, and also for LLMs. You can leverage policies written in Rego, CEL, and CUELANG for cloud native ecosystem, and Pydantic for LLM agent's development within their respective directories (Genval and Pygard) in this repository.

Pygard related policies will be released soon. We will update this document accordingly.

Additionally, we've included input templates designed to work seamlessly with Genval. These templates are intended for informational purposes, showcasing the required input format and demonstrating various use cases across different modes supported by Genval. You can find these input templates in the input-templates directory, covering technologies such as CUE, Dockerfiles, Kubernetes (k8s), and Terraform.

Contributing to Security Policies

We believe in the power of community collaboration. If you identify specific security policies that are missing from our current collection or have ideas for improvements, we invite you to get involved. Here's how you can contribute:

  1. Raise an Issue: If you have a proposal or wish to discuss potential security policies, please open an issue. This provides a platform for community input and feedback.

  2. Submit a Pull Request (PR): To directly contribute to your suggested security policies, submit a pull request. Our community values your expertise and insights, which will further enhance our security measures.

Your contributions play a pivotal role in maintaining the integrity and effectiveness of our security policies. Together, we can make a meaningful impact on the security landscape of IaC technologies.

Thank you for being part of our security-focused community!

About

A policy hub to maintain policies (guardrails) to enforce security and best practices using Cuelang, CEL, and Rego. Will also support string search algorithm soon.

Resources

License

Stars

Watchers

Forks

Packages

 
 
 

Languages