Reza RashidiforDevSecOpsGuidesrezaduty-1685945445294.hashnode.dev·Jul 15, 2024Attacking PolicyOpen Policy Agent (OPA) is a versatile tool used to enforce policies and ensure compliance within a DevSecOps environment. However, security misconfigurations in OPA can lead to significant vulnerabilities. One common issue is overly permissive polic...Discuss·1 like·114 readsPolicy
SIDDHANT VIJAY SINGHforInfrasity Bloginfrasityblog.hashnode.dev·Oct 5, 2023Simplified Infrastructure Audit: Terrateam with OPA PoliciesIn the realm of Terraform, creating infrastructure was a breeze, but challenges loomed. How could teams ensure rule adherence? Were the right tags and naming conventions followed? Many organizations grappled with these questions. Terraform, though ef...Discuss·45 readsTerrateam
Jayakumar Sakthivelcloudwithjk.hashnode.dev·Sep 11, 2023Open Policy Agent (OPA) in Terraform (IaC)What is OPA? The Open Policy Agent (OPA) is a general-purpose policy engine that can assess Rego-expressed rules using information compiled in JSON format from various sources. A policy's enforcement may make use of an evaluation's findings. It offer...Discuss·1 like·53 readsTerraform
Sidharthan Chandrasekaran KamarajforThe Bug Shotsthebugshots.dev·Sep 6, 2023Safeguard Your REST APIs Using Open Policy Agent - OPAAuthorization is a crucial concern for most applications. As app logic grows, permission checks often get scattered across handlers, middlewares, and external services. This leads to duplicated logic and inconsistencies. Open Policy Agent (OPA) provi...Discuss·106 readsGolangopa
BootLabsblog.bootlabstech.com·Jul 21, 2023Gatekeeper vs KyvernoGatekeeper is a general-purpose policy engine based on Open Policy Agent (OPA). It allows you to define and enforce custom policies across various Kubernetes resources. Kyverno is specifically designed for Kubernetes policy management. It focuses o...Discuss·651 readsgatekeeper
Nicolas FränkelforApache APISIXapisix.hashnode.dev·Mar 2, 2023Make your security policy auditableLast week, I wrote about putting the right feature at the right place. I used rate limiting as an example, moving it from a library inside the application to the API Gateway. Today, I'll use another example: authentication and authorization. Securing...Discuss·5 likes·46 readsSecurity
Tyler Auerbeckblog.auerbeck.dev·Jun 8, 2020How to Detect Outdated Kubernetes ApisThis article originally appeared here on opensource.com Recently, deprecated APIs have been wreaking havoc on everyone's Kubernetes manifests. Why is this happening?!? It's because the objects that we've come to know and love are moving on to their n...Discuss·32 readsKubernetes
